This article gives an overview of content control, Content Control Lists (CCLs), and how to create and update lists of controlled content.
Known to apply to the following Sophos product(s) and version(s)
Sophos Endpoint Security and Control
Sophos Email Appliance
What is a Content Control List?
A Content Control List (CCL) is a set of conditions that describe structured file content. A Content Control List may describe a single type of data (for example, a postal address or social securitynumber) or a combination of data types (for example, a project name near to the term "confidential").
What sorts of content can be controlled?
SophosLabs Content Control Lists provide expert definitions for common financial and personally identifiable data types, for example, credit card numbers, social security numbers, postal addresses,or email addresses. Advanced techniques, such as checksums, are used in SophosLabs Content Control Lists to increase the accuracy of sensitive data detection.
What Sophos products use Content Control Lists?
The following products allow CCLs to be configured:
- Sophos Endpoint Security and Control
- Sophos Email Appliance
How do I create my own content control lists?
Depending on which product you are using the procedure is different:
Where can I see the latest SophosLabs Content Control Lists?
The most recent list is displayed in the Enterprise Console within the Data Control policy. You can also read the forum thread: Latest SophosLabs Content Control Lists.
If you are using our email appliance see the product help and search for the term
CCL for further information.
I am trying to control content that is not listed in the SophosLabs Content Control Lists.
You cannot edit SophosLabs Content Control Lists, but you can submit a request to Sophos to create a new SophosLabs Content Control List, or provide feedback on existing Content Control Lists as follows:
Send an email to firstname.lastname@example.org with the subject line Content Control List request and incorporating the following information:
- Company name:
- Contact name:
- Email address:
- Telephone number:
- CCL(s) name / description (please provide as much information as possible):
- Any associated legislation / regulation:
Requests are sent to the Sophos product management team who will provide an initial response via email.