Network caching of outbound content from endpoint device to prevent unauthorized extraction
First Claim
1. A method comprising:
- receiving, by a processor in a network, a security policy for a user endpoint device, the security policy defining a type of content for storing in a network cache, wherein the processor is distinct from the user endpoint device;
determining, by the processor, that traffic from the user endpoint device to a destination device includes content of the type of content for storing in the network cache;
instantiating, by the processor, the network cache;
storing, by the processor, the content in the network cache;
sending, by the processor, a notification to a designated device that the content is stored in the network cache, the notification including at least one parameter associated with the content, wherein the user endpoint device is associated with a user, and wherein the designated device comprises another device that is associated with the user;
receiving, by the processor, a user input comprising a decision from the designated device after the sending the notification, wherein the decision is to allow the content to be sent to the destination device from the network cache or to stop the content from being sent to the destination device; and
performing, by the processor, a task regarding the content in response to the decision.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods, computer-readable media and devices are disclosed for storing content from an endpoint device in a network cache. For example, a processor receives a security policy for the endpoint device defining a type of content for storing in the network cache, and determines that traffic from the endpoint device includes content of the content type for storing in the network cache. When it is determined that the traffic includes the content of the content type for storing in the network cache, the processor instantiates the network cache, stores the content in the network cache, and sends a notification to a designated device. The notification includes at least one parameter associated with the content. The processor further receives a decision from the designated device and performs a task regarding the content in response to the decision.
37 Citations
20 Claims
-
1. A method comprising:
-
receiving, by a processor in a network, a security policy for a user endpoint device, the security policy defining a type of content for storing in a network cache, wherein the processor is distinct from the user endpoint device; determining, by the processor, that traffic from the user endpoint device to a destination device includes content of the type of content for storing in the network cache; instantiating, by the processor, the network cache; storing, by the processor, the content in the network cache; sending, by the processor, a notification to a designated device that the content is stored in the network cache, the notification including at least one parameter associated with the content, wherein the user endpoint device is associated with a user, and wherein the designated device comprises another device that is associated with the user; receiving, by the processor, a user input comprising a decision from the designated device after the sending the notification, wherein the decision is to allow the content to be sent to the destination device from the network cache or to stop the content from being sent to the destination device; and performing, by the processor, a task regarding the content in response to the decision. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A device deployed in a network, the device comprising:
-
a processor; and
a non-transitory computer-readable medium storing instructions which, when executed by the processor, cause the processor to perform operations, the operations comprising;receiving a security policy for a user endpoint device, the security policy defining a type of content for storing in a network cache, wherein the processor is distinct from the user endpoint device; determining that traffic from the user endpoint device to a destination device includes content of the type of content for storing in the network cache; instantiating the network cache; storing the content in the network cache; sending a notification to a designated device that the content is stored in the network cache, the notification including at least one parameter associated with the content, wherein the user endpoint device is associated with a user, and wherein the designated device comprises another device that is associated with the user; receiving a user input comprising a decision from the designated device after the sending the notification, wherein the decision is to allow the content to be sent to the destination device from the network cache or to stop the content from being sent to the destination device; and performing a task regarding the content in response to the decision.
-
-
16. A non-transitory computer-readable medium storing instructions which, when executed by a processor in a network, cause the processor to perform operations, the operations comprising:
-
receiving a security policy for a user endpoint device, the security policy defining a type of content for storing in a network cache, wherein the processor is distinct from the user endpoint device; determining that traffic from the user endpoint device to a destination device includes content of the type of content for storing in the network cache; instantiating the network cache; storing the content in the network cache; sending a notification to a designated device that the content is stored in the network cache, the notification including at least one parameter associated with the content, wherein the user endpoint device is associated with a user, and wherein the designated device comprises another device that is associated with the user; receiving a user input comprising a decision from the designated device after the sending the notification, wherein the decision is to allow the content to be sent to the destination device from the network cache or to stop the content from being sent to the destination device; and performing a task regarding the content in response to the decision. - View Dependent Claims (17, 18, 19, 20)
-
Specification