Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
185 results found
-
We are unable to respond when Geodetection alerts are triggered. Would greatly appreciate ability to prevent access.
We have had a # of Geodetection alerts from users with unexpected IP addresses accessing shared links. Currently, we are unable to block these users, so we can only remove files after the fact. Our security team is requesting an ability to prevent this access (potentially with an ability for admins to override and allow the access).
4 votesTo be delivered October/November 2023.
-
Restrict Collaboration for Individual External User
Customer would like to have the ability to block individual external users from collaborating on their enterprise content. The external domain allow list is too broad if only one or two external users need to be blocked from collaborating on content.
11 votesNot on the roadmap for FY25, will evaluate for FY26
-
Add classification columns to Collaboration and Shared Link Reports
Add columns to the Collaboration and Shared Link reports to display file/folder classification
5 votes -
Shield enhancement against EID-to-EID content move / copy
Need the ability to generate a Shield alert when someone copies or moves content from one EID repository to another EID; to include any movement of content via the api.box.com utilizing cURL or other CLI.
8 votesThis type of detection is something we want to investigate further. We are in the midst of getting additional feedback on this topic as the team works on other Threat Detection enhancements.
-
Priority of classification policies in combination with shield detection rules
Hi,
I can currently prioritize classification policies. Unfortunately, the classifications used in this way categorically overwrite those created with box shield's access policies.
For example: I have a classification only with shield access policies.. high confidential. This includes external collaboration restriction, download and print restriction.
It will be set manually on the desired folders. All files in this folder are now protected
Now i also have a classification with classification policies like credit card number or IBAN code. This should inform user automatically that there's a file with (maybe) protectable content.
This overwrites the classification which is manually set on…1 vote -
Shield Alert - mark as resolved
On the dashboard for Shield, you see a list of alerts generated through threat detection policies. We'd like to see the functionality where end users could mark an alert as seen and/or resolved so everyone who monitors the Shield alerts would know whether it's been resolved or open. This is similar to a ticketing system, but a simple notes body on the alert where someone could put an explanation of their response to the alert would greatly enhance visibility and drive better usability. Thanks!
29 votesWe are investigating the best options to implement this into our Threat Detection alerts and dashboard.
-
Shield Classification based on keywords or text terms
Shield auto-Classification on keywords or terms
1 vote -
Can we get another pop-up screen when Deleting a Shield Access policy to make sure that is the action the admin wants to take?
The 'Delete' and the 'Edit' button are right next to each other on the Shield Access Policy page. When clicking 'Delete' the policy automatically deletes. It is easy to accidentally click instead of 'Edit'. Can we get a second window that asks if that is the action the Admin/ Co-Admin wants to take on the policy?
2 votes -
Add Smart Access Security Control to cap external user permissions
Add the ability to cap external access. Example; restrict external users to Viewer/Uploader rights or below; or Viewer and below (e.g. Read Only).
1 vote -
Box Sheild can use some help
It would be great if there was a way to be able to enter notes on an incident. Also to flag an incident as complete and have it removed from the list.
3 votes -
Notify or provide options on password protected files in Automated Classification
When running automated classification, files containing passwords will not be checked for PII information. This means they are potentially at risk of getting shared externally. There should be options to classify them if they are password protected or it should have the option of alerting.
4 votes -
"Smart Access: Download restriction" for G-Suite
We want "Smart Access: Download restriction" to control the download/printing capability of G-Suite apps. We want the integration just like office online which restrict download/print on office online apps.
For security perspective, we want to minimize the risk of data breach, so we are planning to store the confidential files on box and restrict the content to be downloaded to the devices. However currently if user opened the files on G-Suite, the files can be downloaded or printed.
6 votes -
Option for Shared Link Restriction on new links only
We would like the option to apply the shared link restriction to "new links only" so that current links are not overwritten. This would be similar to the External Collaboration Restriction option to apply to "only new external collaborations"
1 voteNot on the roadmap for FY25, will evaluate for FY26
-
Automatically classify content based off uploader
Automatically classify content based off uploader of document. Use case: anything a legal team member uploads should automatically be classified as confidential
2 votes -
Auto classification of files/folders based on metadata and comments
It would be helpful if Box's auto classification feature were able to trigger file classification (and thus, security controls) if metadata on a file/folder is sensitive in nature or if a file has comments/tasks/annotations that contain sensitive information.
2 votes -
Allow configuration of permissions to apply and change each classification created
To apply or change a classification, select "Owners/co-owners and editors" in the classification settings, and then click Users with editorial privileges or higher can apply and change the classifications.
However, by implementing a feature that allows configuration of permissions to apply and change each classification created, the Security can be enhanced.4 votes -
Make available list of countries available for a Shield List
The input fields are not the easiest way to find a value to add to a Shield List. Naming convention is different across systems, so it would be helpful to know the values that are available to be added.
3 votes -
Add a Birthdate / Birth date infotype to Automated Classification
Birthday is not an an InfoType in automated classification. Please add this field.
2 votes -
Increase the maximum number of Shield Classifications beyond 25 so that we can classify each clients content to prevent mis-sharing
I would like to see the ability to add Shield Classifications per client - with the appropriate access policy (restricting to client email domain) we could avoid any possibility to overshare when inviting the wrong clients into a folder or sharing a shared link - There is a maximum number of classifications of 25 so could this be extended to facilitate this use case/control.
25 votesWe will have a different solution to address the use case.
-
View only ability as admin to view Detection rules, policies, and lists.
Isolate the EDIT SHIELD CONFIGURATION co-admin permission to 2 different permissions:
- View-only detection rules, access policies, lists
- View, Edit, and Create Detection rules, access policies, and lists.
3 votes
- Don't see your idea?