Re: Is "McAfee DLP Endpoint" - encrypted or password protected
DLPe can report/block/quarantine an email which is: - digitally signed - protected by PGP - protected by RMS - protected by S/MIME. This can be done in DLP Policy adding "email Protection" rule in "Data protection" tab. Please take a look on "Email Envelope".
If you want to block encrypted archives in mail messages, this can be achieved in the same place, but choose "Classification" instead of "Email Envelope". Select Classification od "one of the attachments", "contains one of (OR)", "Encrypted Files (non-McAfee) [built-in]".
Action taken can be selected on "Reaction" tab, which can be: - report (Action: No Action, checked Report Incident) - block (Action: Block) - quarantine (Store original email as evidence)