Data Loss Prevention

Overview

A snapshot of the threat landscape for the APIs:

• Application Under Threat
• Risk Level
• Number of Sensitive Data
• Access Trend to Sensitive Data

Time Ranges: Last hour, last 24 hours, last 7 days, last 30 days, last month, and this month.

Detection Rules

Displays a list of managed rules that detect sensitive data in API requests and responses.

Note: The basic information of managed rules - name, description, risk level, and target (request/response) - cannot be modified after creation.

Configuration:

• Whitelist: Configure metrics, matching condition, and value to define exceptions.
• Response Data Masking:
  • Enable masking to obfuscate sensitive data in responses.
  • Configure the number of leading and trailing characters to remain visible.
  • Apply the rule to all APIs or specific APIs.