"Symantec is also publishing a set of open APIs and a software development kit (SDK) to facilitate support for security controls through additional products," said Rob Greer, Senior Director- Product Management, Symantec. "Suppose I scan a file server, finding information not secured, not encrypted. For remediation I could apply PGP encryption," he said. The data can also be brought under the control of various DRM products so there can be controls placed on viewing, printing or adding to content.

Symantec DLP v.10, expected to ship in December, will have a workflow process that can alert managers to data that's out of compliance with corporate DLP policies; let them choose to apply encryption and DRM; and confirm that security policies have been enforced.

Other changes in DLP Suite v. 10 are expected to tighten ties with other Symantec products. There will also be integration with Symantec's Control Compliance Suite for risk assessment of operating systems and applications. "You will get a full risk position view," said Greer.

Symantec has already begun adding ways to trigger policy-based DLP actions on its Symantec Endpoint Protection security software, such as making [a desktop] a brick if it's determined sensitive data is at high risk, Greer said. Other automated actions are also being added to DLP v. 10 to allow interaction between Symantec's DLP and its flagship security software.

Symantec DLP v.10 starts at $25,000.