Appendix

Information types

DDC ML information types

Category and Subcategories Classification

Documents are classified into following categories and subcategories. These categories and subcategories are independent of each other so that each subcategory can be associated with any category.

Category

• Finance

• Healthcare

• Legal

• HR

Subcategory

• RecordsManagement

• CertificateOfEmployment

• IndemnityAgreement

• SalaryStructure

• BusinessLicense

• OfferLetter

• Diversity

• OrganizationChart

• DressCode

• HIPAA

• DoNotResuscitateForm

• PerformanceImprovementPlan

• ArticlesOfOrganization

• TimeOff

• BusinessBalanceSheet

• Immunization

• OperativeReport

• DataPrivacy

• ConflictOfInterest

• BusinessInsurance

• Will

• PerformanceAppraisal

• BusinessAccountPayable

• Telecommuting

• MissionVisionAndStrategy

• MissedAppointmentPolicy

• MeetingMinutes

• Recruitment

• ShareHolderAgreement

• LiabilityWaiver

• BusinessPayroll

• Harassment

• EmploymentContract

Supported formats for standard agent

Files

Office files

WORD

• Legacy: Legacy filename extensions denote binary Microsoft Word formatting that became outdated with the release of Microsoft Office 2007. Although the latest version of Microsoft Word can still open them, they are no longer developed. Legacy filename extensions include:

  • .doc – Legacy Word document; Microsoft Office refers to them as "Microsoft Word 97 – 2003 Document"

  • .dot – Legacy Word templates; officially designated "Microsoft Word 97 – 2003 Template"

  • .wbk – Legacy Word document backup; referred as "Microsoft Word Backup Document"

• OOXML: Office Open XML (OOXML) format was introduced with Microsoft Office 2007 and became the default format of Microsoft Word ever since. Pertaining file extensions include:

  • .docx – Word document

  • .docm – Word macro-enabled document; same as docx, but may contain macros and scripts

  • .dotx – Word template

  • .dotm – Word macro-enabled template; same as dotx, but may contain macros and scripts

  • .docb – Word binary document introduced in Microsoft Office 2007

EXCEL

• Legacy: Legacy filename extensions denote binary Microsoft Excel formats that became outdated with the release of Microsoft Office 2007. Although the latest version of Microsoft Excel can still open them, they are no longer developed. Legacy filename extensions include:

  • .xls – Legacy Excel worksheets; officially designated "Microsoft Excel 97-2003 Worksheet"

  • .xlt – Legacy Excel templates; officially designated "Microsoft Excel 97-2003 Template"

  • .xlm – Legacy Excel macro

• OOXML: Office Open XML (OOXML) format was introduced with Microsoft Office 2007 and became the default format of Microsoft Excel ever since. Excel-related file extensions of this format include:

  • .xlsx – Excel workbook

  • .xlsm – Excel macro-enabled workbook; same as xlsx but may contain macros and scripts

  • .xltx – Excel template

  • .xltm – Excel macro-enabled template; same as xltx but may contain macros and scripts

POWERPOINT

• Legacy:

  • .ppt – Legacy PowerPoint presentation

  • .pot – Legacy PowerPoint template

  • .pps – Legacy PowerPoint slideshow

• OOXML:

  • .pptx – PowerPoint presentation

  • .pptm – PowerPoint macro-enabled presentation

  • .potx – PowerPoint template

  • .potm – PowerPoint macro-enabled template

  • .ppam – PowerPoint add-in

  • .ppsx – PowerPoint slideshow

  • .ppsm – PowerPoint macro-enabled slideshow

  • .sldx – PowerPoint slide

  • .sldm – PowerPoint macro-enabled slide

ACCESS

• Legacy:

  • .ade – Protected Access Data Project (not supported in 2013)

  • .adp - Access Data Project (not supported in 2013)

  • .mdb - Access Database (2003 and earlier)

  • .cdb - Access Database (Pocket Access for Windows CE)

  • .mda - Access Database, used for addins (Access 2, 95, 97), previously used for workgroups (Access 2)

  • .mdt - Access Add-in Data (2003 and earlier)

  • .mdf - Access (SQL Server) detached database (2000)

  • .mde - Protected Access Database, with compiled VBA and macros (2003 and earlier)

  • .ldb - Access lock files (associated with .mdb)

• Available formats since Access 2007:

  • .accdb – The file extension for the new Office Access 2007 file format. This takes the place of the MDB file extension

  • .accde – The file extension for Office Access 2007 files that are in "execute only" mode. ACCDE files have all Visual Basic for Applications (VBA) source code hidden. A user of an ACCDE file can only execute VBA code, but not view or modify it. ACCDE takes the place of the MDE file extension

  • .accdt – The file extension for Access Database Templates

  • .accdr – is a new file extension that enables you to open a database in runtime mode. By simply changing a database's file extension from .accdb to .accdr, you can create a "locked-down" version of your Office Access database. You can change the file extension back to .accdb to restore full functionality

OUTLOOK

• .pst - Outlook

• .ost - Outlook

• .msg - Outlook

• .dbx - Outlook

OTHER

• .pub – a Microsoft Publisher publication

• .xps – a XML-based document format used for printing (on Windows Vista and later) and preserving documents

Databases

• Microsoft SQL

• Oracle

• IBM DB2

• PostgresQL

• SAP HANA

• MySQL

• MongoDB

Big Data

• Hadoop

• Teradata

Binary Large Objects

Supported file formats for DDC ML

• Unstructured

  • DOCX

  • PDF

  • RTF

  • TXT

  • ZIP (contains the supported file format)

• Semi-structured

  • HTML

  • DOCX (Key-value pairs)

  • PDF (Key-value pairs)

  • RTF (Key-value pairs)

  • TXT (Key-value pairs)

  • ZIP (Key-value pairs)

Unsupported file formats for DDC ML

• All structured file formats including CSV, XLSX, and database files (RDBMS).

• Semi–structured file formats such as JSON, XML, and YAML.

• Unstructured file formats such as PPT, PPTX, HEIC, and MPS.

• All image, audio, and video file formats.

• All formats not included in supported list.

• Files with bad or inappropriate context.

Configuration backup

You can back up and restore the DDC configuration by using the Backup/Restore functionality available in CipherTrust Manager. Such a backup will include the following elements:

• Data Stores

• Locations

• Classification Profiles

• Infotypes

• Report definitions

This backup will not include the information about the scan executions.

Creating/Restoring the configuration backup

To create or restore a backup of your DDC configuration:

1. Log in to CipherTrust Manager.

2. Click the Admin Settings link on the dashboard.

3. Select Backups from the sidebar on the left. This will display the Backups screen.

4. To create a backup of your DDC configuration, click the Create Backup button.

5. To restore your DDC configuration from a backup, click the Upload Backup button.

For more details refer to these sections of the CipherTrust Manager documentation:

• CipherTrust Manager backup

• CipherTrust Manager scheduling backups

• CipherTrust Manager scheduler

Configuration backup limitations

• The configuration backup references the DDC Active Node. Restoring the backup to a different CipherTrust Manager cluster leaves DDC referencing an invalid node, and therefore without any valid active node.

• The configuration backup contains the definition of the DDC resources (such as the Scan or Data Store definitions). Restoring from a backup that does not contain a certain resource (for example, a Custom Classification Profile) or a resource version after a scan had been completed causes a TDP scan execution data to point to an invalid resource identifier.

  If you generate a report that points to the missing resource you may display incomplete data (such as not being able to display the resource name) and/or fail.

Creating/Restoring backup of scan executions

To back up or restore the your Data Discovery and Classification scan executions data you need to access the DDC data stored in Hadoop. For details, refer to the Thales Data Platform Hadoop backup section in the Thales Data Platform Administrator Guide.

Mounting an NFS share

To mount an NFS share on a Proxy agent, run this command as root:

sudo mount <nfs-server-hostname|nfs-server-ipaddress>:</target/directory/share-name>

Issues encountered while browsing target paths

You may encounter following issues while trying to navigate target paths using Browse button.

API request quota limit

Using wildcard characters

Asterisk (*) and question mark (?) are two most popular wildcard characters that you can use to traverse locations without providing absolute paths.

In DDC, you can use these characters while applying scan filters to scan selective locations instead of recursively scanning entire directory structures of data store.