Automatic information sanitizer
First Claim
1. A method for use in a multi-level secure system for sanitizing a message, said multi-level secure system including at least first and second security levels wherein first security level users are authorized to receive sensitive information that second security level users are not authorized to receive, said method comprising the steps of:
- establishing a computer-based sanitization tool for sanitizing messages based on predefined sanitization rules;
operating said computer-based sanitization tool to receive a first message from a first external system associated with said first security level, said first message including said sensitive information and additional information;
first operating said computer-based sanitization tool to identify said sensitive information within said message and to sanitize said message relative to said sensitive information, thereby generating a sanitized message; and
second operating said computer-based sanitization tool for transmission of said sanitized message to a second external system, said second external system being associated with said second security level.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention relates to a utility for automatically sanitizing transmitted messages based on stored sanitization rules. In one embodiment, an automatic data sanitizer module (900) sanitized formatted data from an external source system (902) according to stored sanitization rules for release to an external destination system (904) so that the destination system receives only that portion of the original data for which it is authorized access. The module (900) generally includes an Input Comms module (906), a Message Processor (908), an Output Guard ((10), a Downgrader (914) and an Output Comms module (912). The Input Comms module (906) supports the communications protocol dictated by the external source system (902). The Processor (908) sanitizes the message according to the rules written for the specific external system (904) under consideration. The Guard (910) verifies the modifications performed by the Processor (908). The Downgrader (914) moves the resulting file to the Output Comms working directory and the Output Comms (912) makes the resulting message available to the destination system (904). The system supports a variety of different formats and greatly facilitates the timely dissemination of information within a multi-level secure (MLS) environment while protecting security interests.
-
Citations
1 Claim
-
1. A method for use in a multi-level secure system for sanitizing a message, said multi-level secure system including at least first and second security levels wherein first security level users are authorized to receive sensitive information that second security level users are not authorized to receive, said method comprising the steps of:
-
establishing a computer-based sanitization tool for sanitizing messages based on predefined sanitization rules;
operating said computer-based sanitization tool to receive a first message from a first external system associated with said first security level, said first message including said sensitive information and additional information;
first operating said computer-based sanitization tool to identify said sensitive information within said message and to sanitize said message relative to said sensitive information, thereby generating a sanitized message; and
second operating said computer-based sanitization tool for transmission of said sanitized message to a second external system, said second external system being associated with said second security level.
-
Specification