Created Feb 6, 2025Feature
We released the ability for U.S. Federal Government customers to authenticate their signers by requiring them to use their common access cards (CAC) or personal identity verification cards (PIV). U.S. Government organizations require additional security measures to safeguard critical information and data. Common Access Cards, or CAC cards, are identification cards that are issued to U.S. Department of Defense personnel. They enable physical access to buildings and provide access to DoD computer networks and systems. While CAC cards are the primary identification cards for DoD personnel, Personal Identification Verification cards, or PIV cards, are smart cards used by other branches of the U.S. Federal Government that contain a certificate and a private key to gain access to computers, networks, and online resources.
With Box Sign, U.S. Federal Government organizations can now enable and require signature request recipients to authenticate themselves using their CAC or PIV smart cards before gaining access to sign the Box Sign signature request. Admins can configure their enablement settings to toggle CAC/PIV signer authentication on or off for specific users or groups. Additionally, senders can configure the the CAC/PIV signer authentication setting when initiating and sending a signature request. Signers are prompted to insert their CAC or PIV smart card into their smart card readers, enter their pin number successfully, and apply their signature to complete the request.
Signers can authenticate themselves via their CAC/PIV smart cards on Windows devices only. Additionally, Box Tools must be installed on the Windows device for each user receiving signature requests requiring CAC/PIV authentication. CAC/PIV smart card authentication is only available for single signers within a signature request.
To learn more about CAC/PIV smart card authentication in Box Sign, please see CAC/PIV E-Signature Authentication and Additional Recipient Authentication.
Created Feb 4, 2025Update
[Launched] We've added an additional new insight to the Admin Dashboard - Total AI Activity. This new data card displays the combined count of user queries and chargeable API queries, along with the trend analysis.
[Launched] Box has delivered a new visibility tool for our admins to provide better insight into how your organization uses the Box AI API. The new Chargeable AI API Calls insight, now available in Admin Console, helps enterprise admin to easily view and monitor Box AI API usage against their allotment. We will be continuing to roll out further AI insights in the future.
For more information about Box Reporting and Insights, please look here.
Created Jan 29, 2025Update
We are excited to announce updates to the Box web experience to continue making it easy and seamless for our users to find their right content and get their work done.
Preview on hover in list view is now available for file types, including text documents, spreadsheets, and images. By hovering over the file icon to see the preview, users are able to quickly skim and find the file they’re looking for.
Created Jan 28, 2025Feature
In an effort to empower our users and give them the insights needed to best manage their critical content, Box has launched a Beta for our new Folder Insights capability. Folder Insights provide s crucial information to folder owners on how their data is being shared and collaborated on, extending visibility previously limited only to admins. Whether it’s checking to see if other coworkers are engaging with their internal materials, or keeping an eye on sensitive content to ensure its distribution is limited, Folder Insights gives users the visibility they need to make intelligent decisions with their content.
For the Beta, organizations will be able to enable the Folder Insights feature by user, group, or across the full organization. In the initial launch, Folder Insights will offer insights into what and how many Shared Links have been created, and in the future, we will be adding:
Showing Shared Links on the verge of expiration
Allowing the changing or removal of Shared Link permissions
Enabling users to download these insights in reports
Expanding the number of different insights provided
To learn more about the Box Admin Console, look here.
Created Jan 28, 2025Feature
Overview
Box now supports customer access via Internet Protocol version 6 (IPv6) addresses. This benefits customers that have upgraded to IPv6 for security, as well as US government customers who are required to transition to IPv6 in accordance with the federal mandate. Box also supports dual stack operations (i.e., access via IPv4 and IPv6 in parallel). Note that some of your devices (e.g., most of modern smartphones) could have IPv6 enabled by default, and it will be preferred over IPv4 when connecting to Box.
Why are we doing this?
IPv6 has seen large adoption in the last five years.
Address abundance: IPv4 provides a limited number of unique addresses for global device use, while IPv6, with its 128-bit structure, offers 340 undecillion IP addresses. This ensures an ample address space.
End-to-end transparency: IPv6 removes the need for conservation measures like multiple levels of NATs (network address translators), promoting transparent connectivity, streamlined troubleshooting, and easier tracking of illicit activities.
Ease of management: The management of IPv6 networks is simplified with flatter architectures, fostering scalability, flexibility, and overall efficiency.
Do I need to do anything?
Box supports both IPv4 and IPv6 versions of the protocol going forward. Some devices (e.g., smartphones) have IPv6 enabled by default, and that means that it will be preferred over IPv4 when connecting to Box. If a device only supports IPv4, then IPv4 will be used to connect to Box. Also, if you are using the Box IP Allowlist, please contact Box Support to make sure it is set up correctly.
How to connect to Box using IPv6?
If you wish to connect to Box using IPv6, you need to make sure it is appropriately configured in your environment. There are multiple areas to consider, including your ISP support for IPv6, VPN configuration, firewall configuration, and even the configuration of your computer. You can use our test websites box-test.com and ipv6.box-test.com to test your IPv6 connectivity.
Created Jan 27, 2025Update
Last year, we introduced a new experience for external user management in the Admin Console, and are now making this experience the default view.
The new experience allows Admins to view the following:
Unmanaged users that have access to an organization’s content
Last active date of the external user
Date of the first invitation to collaborate on the organization’s content
The user who invited an external user to collaborate on an organization’s content
Status of the invite to join organization
Created Jan 27, 2025Feature
As part of our ongoing commitment to securing all of our customers’ most critical content, Box has launched the Beta for a new watermarking feature that enables organizations to apply watermarking to their video content. For many of our customers, this new capability opens up an enormous amount of new content that can be kept secure and properly handled using watermarking.
Communication is an essential piece of content security, especially when it comes to communicating the sensitivity of certain pieces of content. One of the most effective ways to communicate sensitivity has historically been applying watermarks, letting users know that this document is to be handled with care. Previously, this was not able to be applied to video content, but this Beta feature will enable our Box customers to do just that. In addition, our customers are able to customize their watermarking, ensuring that the watermarks applied to their organization’s sensitive content best fit the needs of the organization.
To learn more about the watermarking at Box, look here.
Created Jan 27, 2025Feature
To help our customers secure their content and minimize business disruption, even in the face of a ransomware incident, Box has released our new Content Recovery tool. This tool streamlines and accelerates the process of recovering content encrypted or destroyed by ransomware, while also providing a level of precision beyond that offered by simply rolling back to a system snapshot.
Ransomware is one of the most well-known and feared tools in bad actors’ arsenals, enabling them to lock up your content and hold it hostage until you meet their demands. Regardless of the method of breach, ransomware is the most common payload left behind, making it essential that organizations have methods in place to swiftly identify the malicious content, respond to it, and recover from the damage done.
Box has rolled out the first piece of our Ransomware Protection suite, Content Recovery. This new capability enables admins to view users’ activity related to ransomware events occurring within the past 30 days, and recover altered or trashed content within that timeframe. Admins can filter by date, specific actions taken on files (change action, trash action), and filenames. Content Recovery significantly reduces a recovery process that could take days or even weeks, and is able to recover thousands of files in minutes.
This new capability is available for any organizations with Box Shield.
Get Updates
Sign-in to your Box.com User Account to receive customized product notifications.
Subscribe