Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

James Brammer

My feedback

  1. 32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    James Brammer supported this idea  · 
    James Brammer commented  · 

    Sophos wouldn't even need to create this since in the non-SGN environment it already exists. It's called BitLocker Network Unlock and it's been around since Windows 8/Server 2012 so it's kind of crazy that Sophos hasn't added support for it to SGN Server.

    Sophos please add BitLocker Network Unlock support.

    https://docs.microsoft.com/en-us/windows/device-security/bitlocker/bitlocker-how-to-enable-network-unlock

  2. 10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Data Protection » New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
    James Brammer commented  · 

    EDIT: There is a General policy to set default Outlook add-in to No Encryption, but it relies on a Whitelist that does not accept wildcards or partial domain names so No Encryption domains must be individually specified.

    Enhancement could be as simple as allowing Whitelist to accept wildcards.

    James Brammer commented  · 

    For example, my email text and email attachment encryption is performed on all outgoing email by ZixGateway. SGN Synchronized adds an extra opportunity for mistakes for my end-users and extra opportunity for our recipients.

    James Brammer shared this idea  · 
  3. 37 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    James Brammer supported this idea  · 
    James Brammer commented  · 

    Also allow us to import existing keys from YubiKeys if they are of an appropriate type to be accepted by SGN, and allow POA authentication with YubiKey+PIN.

  4. 48 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    James Brammer commented  · 

    Yes this. Give it to us as both Computer and User policies. Synchronized Encryption policies are currently applied as closest to the workstation, but allow User to override Computer on Allow Decryption/Password Encryption, and we could essentially whitelist a few trusted users to decrypt while denying everyone else.

    James Brammer commented  · 

    @Vincent Vanbiervliet
    Assuming that the user is able to install OpenOffice and/or is sufficiently knowledgeable or determined to, or that their INTENT is to leak data. Perhaps they decrypt for a quick convenience of some kind and forget to re-encrypt.

    James Brammer supported this idea  · 

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.