×

Identifying and preventing leaks of sensitive information

  • US 10,152,611 B2
  • Filed: 02/08/2013
  • Issued: 12/11/2018
  • Est. Priority Date: 02/08/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method for identifying and preventing leaks of sensitive information, the method comprising:

  • in a knowledge profiler implemented on a computer system, the computer system comprising one or more computer processors, generating a plurality of personal knowledge profiles, wherein each personal knowledge profile in the plurality of personal knowledge profiles is associated with a particular user in a plurality of users using a network of electronics devices;

    generating, by a computer-implemented content analyzer in communication with the knowledge profiler of the computer system, the content analyzer implemented using at least one of the one or more computer processors, a plurality of associated inferred meanings for a plurality of terms from a plurality of documents, the documents associated with the plurality of personal knowledge profiles, wherein the plurality of associated inferred meanings for the plurality of terms is generated for each term based at least on a syntactic analysis of the use of the term within a sentence in relation to a usage of the term in a context of the plurality of documents, the context comprising one or more of;

    another sentence, a title, a footnote, and a parenthetical definition;

    in the content analyzer, using the plurality of associated inferred meanings to generate, for each personal knowledge profile in the plurality of personal knowledge profiles, a plurality of categorical terms based on the plurality of inferred meanings, wherein the plurality of categorical terms generated for each personal knowledge profile categorizes the plurality of terms based on the associated inferred meanings;

    in the knowledge profiler, using the plurality of associated inferred meanings to generate a plurality of associated categorical term frequencies based on a plurality of associated frequencies of term occurrences of terms associated with the categorical terms in each of the plurality of personal knowledge profiles, wherein each of the plurality of associated categorical term frequencies is associated with one of the plurality of categorical terms, and storing the plurality of associated inferred meanings and the plurality of associated categorical term frequencies in corresponding ones of the plurality of personal knowledge profiles;

    determining, by a computer-implemented sensitivity analyzer in communication with the knowledge profiler of the computer system, the sensitivity analyzer implemented using at least one of the one or more computer processors, a plurality of sensitivity level values for the plurality of categorical terms based on the plurality of associated categorical term frequencies;

    determining, by at least one of the one or more computer processors of the computer system, a plurality of link strength values, wherein;

    each of the link strength values is associated respectively with a pair of personal knowledge profiles in a plurality of personal knowledge profiles,each of the plurality of personal knowledge profiles is associated with a user in the plurality of users,the determining of each of the link strength values is based on an occurrence of common terms in its associated pair of personal knowledge profiles, such that each of the plurality of link strength values describes a relationship between an associated pair of users in the plurality of users, andsensitivity level values in the plurality of sensitivity level values are further based on the plurality of link strength values;

    storing, by the knowledge profiler of the computer system, the plurality of sensitivity level values for the plurality of categorical terms, wherein the plurality of sensitivity level values are used to analyze whether an information transaction comprising at least one of the plurality of terms is permitted;

    detecting, by the computer system, a first information transaction between a first pair of users in the plurality of pairs of users that includes a first term associated with a first categorical term in the plurality of categorical terms;

    determining a first sensitivity level value for the first categorical term;

    generating an alert in response to the first sensitivity level value; and

    automatically blocking the information transaction in response to the alert.

View all claims
  • 11 Assignments
Timeline View
Assignment View
    ×
    ×