End-to-End Kubernetes with Rancher, RKE2, K3s, Fleet, Longhorn, and NeuVector

DLP Sensors: Protecting Sensitive Data

In the previous section, we have exported a security policy for the WordPress application that includes Data Loss Prevention (DLP) features.

[...]

spec:
  # Enable Data Loss Prevention (DLP) features
  dlp:
    status: true

[...]

DLP is a security strategy designed to detect and prevent the unauthorized transmission of sensitive information. Whether it's personal data, financial records, intellectual property, or other confidential information, DLP focuses on ensuring that such data doesn't leave your organization’s network without proper authorization. By monitoring and controlling data flows, NeuVector's DLP rules can protect you against accidental leaks and malicious breaches.

By default, at least in the used version, NeuVector provides 2 predefined DLP rules:

• sensors.creditcard: detects credit card numbers.
• sensors.ssn: detects social security numbers.

Sensors act as detectors in 4 different locations:

• Packet: inspects the packet payload.
• URL: inspects the URL path.
• Header: inspects the header of the request.
• Body: inspects the body of the request.

For example, the sensors.ssn rule is configured to detect the following regular expression at the body level:

\b(?!\b(\d)\1+-?(\d)\1+-?(\d)\1+\b)(?!123-?45-?6789|219-?09-?9999|078-?05-?1120)(?!666|000|9\d{