Method and system of quantifying risk

US 20040193870A1
Filed: 03/25/2003
Published: 09/30/2004
Est. Priority Date: 03/25/2003
Status: Active Grant

First Claim

Patent Images

1. A method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data comprising:

categorizing each one of said security sensitive words, data objects, characters or icons into one of a plurality of categories;

obtaining and compiling preexisting data for each category;

ranking said categories and assigning a rank quantifier to each respective category and preexisting data subsumed therein;

comparing said data to said preexisting data and generating an output representative of all rank quantifiers associated with preexisting data found therein.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The method of quantifying risk, implemented as a computerized program, quantifies the risk of releasing security sensitive words, data objects, characters or icons which may be part of data subject to analysis (target data). Security words, etc. are categorized, pre-existing data for each category is obtained and the categories (and subsumed pre-existing data) are ranked by risk. The target data is compared to the compiled pre-existing data and a risk output is generated. For unknown or undefined words, an indeterminable category is created and is ranked. The method may include inference engines, and contextual routines to add semantic equivalents and opposites to the critical list. Search engines may be employed to add to the list. A differential rank quantifier is assigned to the security words, etc. which has a different rank than the associated category. Frequency analysis, source analysis and stochastic analysis is also used. The risk output is altered.

109 Citations

View as Search Results

141 Claims

1. A method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data comprising:
- categorizing each one of said security sensitive words, data objects, characters or icons into one of a plurality of categories;
  
  obtaining and compiling preexisting data for each category;
  
  ranking said categories and assigning a rank quantifier to each respective category and preexisting data subsumed therein;
  
  comparing said data to said preexisting data and generating an output representative of all rank quantifiers associated with preexisting data found therein.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 2. A method as claimed in claim 1 including:
    - establishing an indeterminable category for unknown or undefined words, data objects, characters or icons which are not present in said preexisting data in the plurality of ranked categories;
      
      ranking and assigning a respective rank quantifier to said indeterminable category;
      
      modifying said output with rank quantifiers representing said indeterminable words, data objects, characters or icons in said data.
  - 3. A method as claimed in claim 2 wherein the step of comparing said data to said preexisting data compilation occurs after establishing said indeterminable category for unknown or undefined words.
  - 4. A method as claimed in claim 2 including aggregating rank quantifiers representing said indeterminable words, data objects, characters or icons in said data with said rank quantifiers associated with preexisting data found in said data.
  - 5. A method as claimed in claim 1 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 6. A method as claimed in claim 5 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 7. A method as claimed in claim 1 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories.
  - 8. A method as claimed in claim 1 wherein the step of categorizing said security sensitive words, data objects, characters or icons includes matching said security sensitive words, data objects, characters or icons with a predetermined plurality of preexisting categories.
  - 9. A method as claimed in claim 8 wherein each preexisting category of said predetermined plurality of preexisting categories has associated therewith preexisting data and the step of matching correlates said security sensitive words, data objects, characters or icons with said preexisting data in said predetermined plurality of preexisting categories.
  - 10. A method as claimed in claim 1 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the method includes inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 11. A method as claimed in claim 10 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 12. A method as claimed in claim 11 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 13. A method as claimed in claim 1 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 14. A method as claimed in claim 1 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.
  - 15. A method as claimed in claim 3 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 16. A method as claimed in claim 15 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 17. A method as claimed in claim 16 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories.
  - 18. A method as claimed in claim 17 wherein the step of categorizing said security sensitive words, data objects, characters or icons includes matching said security sensitive words, data objects, characters or icons with a predetermined plurality of preexisting categories.
  - 19. A method as claimed in claim 18 wherein each preexisting category of said predetermined plurality of preexisting categories has associated therewith preexisting data and the step of matching correlates said security sensitive words, data objects, characters or icons with said preexisting data in said predetermined plurality of preexisting categories.
  - 20. A method as claimed in claim 19 including inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 21. A method as claimed in claim 20 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 22. A method as claimed in claim 21 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 23. A method as claimed in claim 22 including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 24. A method as claimed in claim 23 including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.

25. A method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data comprising:
- categorizing said security sensitive words, data objects, characters or icons into one of a plurality of categories;
  
  obtaining and compiling preexisting data for each category;
  
  ranking said categories with respect to each other;
  
  assigning a rank quantifier to each respective category and associating the assigned rank quantifier to preexisting data subsumed in each category;
  
  forming a template which includes said security sensitive words, data objects, characters or icons and the compiled preexisting data; and
  
  generating an output representative of all rank quantifiers associated with security sensitive words, data objects, characters or icons and preexisting data found in said data by comparing said data to said template.

26. A method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data comprising:
- compiling said security sensitive words, data objects, characters or icons;
  
  associating a respective categorical identifier with each of said security sensitive words, data objects, characters or icons;
  
  subdividing, if necessary, each respective categorical identifier into subcategories;
  
  compiling preexisting data per categorical identifier and subcategory;
  
  ranking said categorical identifiers and, if necessary, said subcategories, with respect to each other, and assigning a rank quantifier to each respective categorical identifiers and subcategory and to said preexisting data compiled for each categorical identifier and subcategory and said security sensitive words, data objects, characters or icons;
  
  forming a template which includes said security sensitive words, data objects, characters or icons and the compiled preexisting data;
  
  generating an output representative of all risk quantifiers associated with said security sensitive words, data objects, characters or icons and the compiled preexisting data found in said data by comparing said data to said template.

27. A computerized method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data in a computer system comprising:
- categorizing each one of said security sensitive words, data objects, characters or icons into one of a plurality of categories;
  
  obtaining and compiling preexisting data for each category;
  
  ranking said categories and assigning a rank quantifier to each respective category and preexisting data subsumed therein;
  
  comparing said data to said preexisting data and generating an output representative of all rank quantifiers associated with preexisting data found therein.
- View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50)
- - 28. A computerized method as claimed in claim 27 including:
    - establishing an indeterminable category for unknown or undefined words, data objects, characters or icons which are not present in said preexisting data in the plurality of ranked categories;
      
      ranking and assigning a respective rank quantifier to said indeterminable category;
      
      modifying said output with rank quantifiers representing said indeterminable words, data objects, characters or icons in said data.
  - 29. A computerized method as claimed in claim 28 wherein the step of comparing said data to said preexisting data compilation occurs after establishing said indeterminable category for unknown or undefined words.
  - 30. A computerized method as claimed in claim 28 including aggregating rank quantifiers representing said indeterminable words, data objects, characters or icons in said data with said rank quantifiers associated with preexisting data found in said data.
  - 31. A computerized method as claimed in claim 27 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 32. A computerized method as claimed in claim 31 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 33. A computerized method as claimed in claim 27 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories.
  - 34. A computerized method as claimed in claim 27 wherein the step of categorizing said security sensitive words, data objects, characters or icons includes matching said security sensitive words, data objects, characters or icons with a predetermined plurality of preexisting categories.
  - 35. A computerized method as claimed in claim 34 wherein each preexisting category of said predetermined plurality of preexisting categories has associated therewith preexisting data and the step of matching correlates said security sensitive words, data objects, characters or icons with said preexisting data in said predetermined plurality of preexisting categories.
  - 36. A computerized method as claimed in claim 27 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the method includes inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 37. A computerized method as claimed in claim 36 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 38. A computerized method as claimed in claim 37 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 39. A computerized method as claimed in claim 27 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 40. A computerized method as claimed in claim 27 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.
  - 41. A computerized method as claimed in claim 29 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 42. A computerized method as claimed in claim 41 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 43. A computerized method as claimed in claim 42 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories.
  - 44. A computerized method as claimed in claim 43 wherein the step of categorizing said security sensitive words, data objects, characters or icons includes matching said security sensitive words, data objects, characters or icons with a predetermined plurality of preexisting categories.
  - 45. A computerized method as claimed in claim 44 wherein each preexisting category of said predetermined plurality of preexisting categories has associated therewith preexisting data and the step of matching correlates said security sensitive words, data objects, characters or icons with said preexisting data in said predetermined plurality of preexisting categories.
  - 46. A computerized method as claimed in claim 45 including inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 47. A computerized method as claimed in claim 46 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 48. A computerized method as claimed in claim 47 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 49. A computerized method as claimed in claim 48 including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 50. A computerized method as claimed in claim 49 including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.

51. A computerized method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data comprising:
- categorizing said security sensitive words, data objects, characters or icons into one of a plurality of categories;
  
  obtaining and compiling preexisting data for each category;
  
  ranking said categories with respect to each other;
  
  assigning a rank quantifier to each respective category and associating the assigned rank quantifier to preexisting data subsumed in each category forming a template which includes said security sensitive words, data objects, characters or icons and the compiled preexisting data; and
  
  generating an output representative of all rank quantifiers associated with security sensitive words, data objects, characters or icons and preexisting data found in said data by comparing said data to said template.

52. A computerized method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data comprising:
- compiling said security sensitive words, data objects, characters or icons;
  
  associating a respective categorical identifier with each of said security sensitive words, data objects, characters or icons;
  
  subdividing, if necessary, each respective categorical identifier into subcategories;
  
  compiling preexisting data per categorical identifier and subcategory;
  
  ranking said categorical identifiers and, if necessary, said subcategories, with respect to each other, and assigning a rank quantifier to each respective categorical identifiers and subcategory and to said preexisting data compiled for each categorical identifier and subcategory and said security sensitive words, data objects, characters or icons;
  
  forming a template which includes said security sensitive words, data objects, characters or icons and the compiled preexisting data;
  
  generating an output representative of all risk quantifiers associated with said security sensitive words, data objects, characters or icons and the compiled preexisting data found in said data by comparing said data to said template.

53. A method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data wherein each one of said security sensitive words, data objects, characters or icons is categorized into one of a plurality of categories, the method comprising:
- obtaining and compiling preexisting data for each category;
  
  ranking said categories and assigning a rank quantifier to each respective category and to preexisting data subsumed therein;
  
  comparing said data to said preexisting data and generating an output representative of all rank quantifiers associated with preexisting data found therein.
- View Dependent Claims (54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68)
- - 54. A method as claimed in claim 53 wherein said plurality of categories include an indeterminable category for unknown or undefined words, data objects, characters or icons which are not present in said preexisting data in the plurality of categories, the method including:
    - ranking and assigning a respective rank quantifier to said indeterminable category;
      
      modifying said output with rank quantifiers representing said indeterminable words, data objects, characters or icons in said data.
  - 55. A method as claimed in claim 53 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 56. A method as claimed in claim 55 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 57. A method as claimed in claim 53 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the method includes inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 58. A method as claimed in claim 57 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 59. A method as claimed in claim 58 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 60. A method as claimed in claim 53 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 61. A method as claimed in claim 53 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.
  - 62. A method as claimed in claim 54 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 63. A method as claimed in claim 62 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 64. A method as claimed in claim 63 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the method including inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 65. A method as claimed in claim 64 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 66. A method as claimed in claim 65 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 67. A method as claimed in claim 66 including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 68. A method as claimed in claim 67 including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.

69. A computerized method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data in a computer system wherein each one of said security sensitive words, data objects, characters or icons is categorized into one of a plurality of categories, the method comprising:
- obtaining and compiling preexisting data for each category;
  
  ranking said categories and assigning a rank quantifier to each respective category and to preexisting data subsumed therein;
  
  comparing said data to said preexisting data and generating an output representative of all rank quantifiers associated with preexisting data found therein.
- View Dependent Claims (70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84)
- - 70. A computerized method as claimed in claim 69 wherein said plurality of categories include an indeterminable category for unknown or undefined words, data objects, characters or icons which are not present in said preexisting data in the plurality of categories, the method including:
    - ranking and assigning a respective rank quantifier to said indeterminable category;
      
      modifying said output with rank quantifiers representing said indeterminable words, data objects, characters or icons in said data.
  - 71. A computerized method as claimed in claim 69 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 72. A computerized method as claimed in claim 71 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 73. A computerized method as claimed in claim 69 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the method includes inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 74. A computerized method as claimed in claim 73 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 75. A computerized method as claimed in claim 74 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 76. A computerized method as claimed in claim 69 wherein said security sensitive words, data objects characters or icons are subsumed in respective ones of said plurality of categories, the method including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 77. A computerized method as claimed in claim 69 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.
  - 78. A computerized method as claimed in claim 70 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 79. A computerized method as claimed in claim 78 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 80. A computerized method as claimed in claim 79 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the method including inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 81. A computerized method as claimed in claim 80 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 82. A computerized method as claimed in claim 81 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 83. A computerized method as claimed in claim 82 including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 84. A computerized method as claimed in claim 83 including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.

85. A computerized method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data, the method deployed in a client-server computer system with at least one server computer operatively coupled to at least one client computer over a communications network comprising:
- categorizing each one of said security sensitive words, data objects, characters or icons into one of a plurality of categories on said at least one server computer;
  
  obtaining and compiling preexisting data for each category via said at least one server computer;
  
  ranking said categories and assigning a rank quantifier to each respective category and preexisting data subsumed therein via said at least one server computer;
  
  comparing said data to said preexisting data and generating an output representative of all rank quantifiers associated with preexisting data found therein in an exchange between said at least one server computer and said at least one client computer.
- View Dependent Claims (86, 87, 88, 89, 90, 91, 92, 93, 94, 95, 96, 97, 98)
- - 86. A computerized method as claimed in claim 85 including:
    - establishing an indeterminable category for unknown or undefined words, data objects, characters or icons which are not present in said preexisting data in the plurality of ranked categories on said at least one server computer;
      
      ranking and assigning a respective rank quantifier to said indeterminable category via said at least one server computer;
      
      modifying said output with rank quantifiers representing said indeterminable words, data objects, characters or icons in said data during said exchange between said at least one server computer and said at least one client computer.
  - 87. A computerized method as claimed in claim 86 wherein the step of comparing said data to said preexisting data compilation occurs after establishing said indeterminable category for unknown or undefined words.
  - 88. A computerized method as claimed in claim 86 including aggregating rank quantifiers representing said indeterminable words, data objects, characters or icons in said data with said rank quantifiers associated with preexisting data found in said data via said at least one server computer.
  - 89. A computerized method as claimed in claim 85 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 90. A computerized method as claimed in claim 89 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 91. A computerized method as claimed in claim 85 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories.
  - 92. A computerized method as claimed in claim 85 wherein the step of categorizing said security sensitive words, data objects, characters or icons includes matching said security sensitive words, data objects, characters or icons with a predetermined plurality of preexisting categories on said at least one server computer.
  - 93. A computerized method as claimed in claim 92 wherein each preexisting category of said predetermined plurality of preexisting categories has associated therewith preexisting data and the step of matching correlates said security sensitive words, data objects, characters or icons with said preexisting data in said predetermined plurality of preexisting categories.
  - 94. A computerized method as claimed in claim 85 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the method includes inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories on said at least one server computer.
  - 95. A computerized method as claimed in claim 94 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 96. A computerized method as claimed in claim 95 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet via said at least one server computer, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 97. A computerized method as claimed in claim 85 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category on said at least one server computer.
  - 98. A computerized method as claimed in claim 85 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data via said at least one server computer; and
      
      altering said output based upon said analysis in said exchange between said at least one server computer and said at least one client computer

99. A computerized method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data, the method deployed in a client-sever computer system with at least one server computer operatively coupled to at least one client computer over a communications network comprising:
- categorizing said security sensitive words, data objects, characters or icons into one of a plurality of categories on said at least one server computer;
  
  obtaining and compiling preexisting data for each category via said at least one server computer;
  
  ranking said categories with respect to each other via said at least one server computer;
  
  assigning a rank quantifier to each respective category and associating the assigned rank quantifier to preexisting data subsumed in each category via said at least one server computer;
  
  forming a template which includes said security sensitive words, data objects, characters or icons and the compiled preexisting data at server; and
  
  generating an output representative of all rank quantifiers associated with security sensitive words, data objects, characters or icons and preexisting data found in said data by comparing said data to said template either during an in an exchange between said at least one server computer and said at least one client computer or via a download from said at least one server computer to said at least one client computer.
- View Dependent Claims (100)
- - 100. A computerized method as claimed in claim 99 wherein said template is downloaded to said at least one client computer via said at least one server computer prior to generating said output.

101. A computerized method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data, the method deployed in a client-server computer system with at least one server computer operatively coupled to at least one client computer over a communication network comprising:
- compiling said security sensitive words, data objects, characters or icons;
  
  associating a respective categorical identifier with each of said security sensitive words, data objects, characters or icons;
  
  subdividing, if necessary, each respective categorical identifier into subcategories;
  
  compiling preexisting data per categorical identifier and subcategory;
  
  ranking said categorical identifiers and, if necessary, said subcategories, with respect to each other, and assigning a rank quantifier to each respective categorical identifiers and subcategory and to said preexisting data compiled for each categorical identifier and subcategory and said security sensitive words, data objects, characters or icons;
  
  forming a template which includes said security sensitive words, data objects, characters or icons and the compiled preexisting data;
  
  the steps of compiling, associating, subdividing, compiling preexisting data, ranking and forming said template carried out on said at least one server computer;
  
  generating an output, directed at said at least one client computer, representative of all risk quantifiers associated with said security sensitive words, data objects, characters or icons and the compiled preexisting data found in said data by comparing said data to said template.

102. A server-based computerized method of quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data, the method deployed in a client-server computer system with at least one server computer operatively coupled to at least one client computer over a communications network comprising:
- categorizing each one of said security sensitive words, data objects, characters or icons into one of a plurality of categories on said at least one server computer;
  
  obtaining and compiling preexisting data for each category via said at least one server computer;
  
  ranking said categories and assigning a rank quantifier to each respective category and preexisting data subsumed therein via said at least one server computer;
  
  comparing said data to said preexisting data and generating an output, directed at said at least one client computer, representative of all rank quantifiers associated with preexisting data found therein.
- View Dependent Claims (103, 104, 105, 106, 107, 108, 109, 110, 111, 112, 113, 114, 115)
- - 103. A server-based computerized method as claimed in claim 102 including:
    - establishing an indeterminable category for unknown or undefined words, data objects, characters or icons which are not present in said preexisting data in the plurality of ranked categories on said at least one server computer;
      
      ranking and assigning a respective rank quantifier to said indeterminable category via said at least one server computer;
      
      modifying said output with rank quantifiers representing said indeterminable words, data objects, characters or icons in said data and directing the modified output to said at least one client computer.
  - 104. A server-based computerized method as claimed in claim 103 wherein the step of comparing said data to said preexisting data compilation occurs after establishing said indeterminable category for unknown or undefined words.
  - 105. A server-based computerized method as claimed in claim 103 including aggregating rank quantifiers representing said indeterminable words, data objects, characters or icons in said data with said rank quantifiers associated with preexisting data found in said data via said at least one server computer.
  - 106. A server-based computerized method as claimed in claim 102 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 107. A server-based computerized method as claimed in claim 106 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 108. A server-based computerized method as claimed in claim 102 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories.
  - 109. A server-based computerized method as claimed in claim 102 wherein the step of categorizing said security sensitive words, data objects, characters or icons includes matching said security sensitive words, data objects, characters or icons with a predetermined plurality of preexisting categories on said at least one server computer.
  - 110. A server-based computerized method as claimed in claim 109 wherein each preexisting category of said predetermined plurality of preexisting categories has associated therewith preexisting data and the step of matching correlates said security sensitive words, data objects, characters or icons with said preexisting data in said predetermined plurality of preexisting categories.
  - 111. A server-based computerized method as claimed in claim 102 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the method includes inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories on said at least one server computer.
  - 112. A server-based computerized method as claimed in claim 111 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 113. A server-based computerized method as claimed in claim 112 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet via said at least one server computer, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 114. A server-based computerized method as claimed in claim 102 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category on said at least one server computer.
  - 115. A server-based computerized method as claimed in claim 102 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the method including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data via said at least one server computer; and
      
      altering said output based upon said analysis and directing the altered output to said at least one client computer.

116. A computer readable medium containing programming instructions for quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data, the programming instructions comprising:
- categorizing each one of said security sensitive words, data objects, characters or icons into one of a plurality of categories;
  
  obtaining and compiling preexisting data for each category;
  
  ranking said categories and assigning a rank quantifier to each respective category and preexisting data subsumed therein;
  
  comparing said data to said preexisting data and generating an output representative of all rank quantifiers associated with preexisting data found therein.
- View Dependent Claims (117, 118, 119, 120, 121, 122, 123, 124, 125, 126, 127, 128, 129, 130, 131, 132, 133, 134, 135, 136, 137, 138, 139)
- - 117. A computer readable medium with programming instructions as claimed in claim 116 including:
    - establishing an indeterminable category for unknown or undefined words, data objects, characters or icons which are not present in said preexisting data in the plurality of ranked categories ranking and assigning a respective rank quantifier to said indeterminable category;
      
      modifying said output with rank quantifiers representing said indeterminable words, data objects, characters or icons in said data.
  - 118. A computer readable medium with programming instructions as claimed in claim 117 wherein the step of comparing said data to said preexisting data compilation occurs after establishing said indeterminable category for unknown or undefined words.
  - 119. A computer readable medium with programming instructions as claimed in claim 117 including aggregating rank quantifiers representing said indeterminable words, data objects, characters or icons in said data with said rank quantifiers associated with preexisting data found in said data.
  - 120. A computer readable medium with programming instructions as claimed in claim 116 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 121. A computer readable medium with programming instructions as claimed in claim 120 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 122. A computer readable medium with programming instructions as claimed in claim 117 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories.
  - 123. A computer readable medium with programming instructions as claimed in claim 116 wherein the step of categorizing said security sensitive words, data objects, characters or icons includes matching said security sensitive words, data objects, characters or icons with a predetermined plurality of preexisting categories.
  - 124. A computer readable medium with programming instructions as claimed in claim 123 wherein each preexisting category of said predetermined plurality of preexisting categories has associated therewith preexisting data and the step of matching correlates said security sensitive words, data objects, characters or icons with said preexisting data in said predetermined plurality of preexisting categories.
  - 125. A computer readable medium with programming instructions as claimed in claim 116 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories and the computer readable medium with programming instructions includes inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 126. A computer readable medium with programming instructions as claimed in claim 125 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 127. A computer readable medium with programming instructions as claimed in claim 126 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 128. A computer readable medium with programming instructions as claimed in claim 116 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the computer readable medium with programming instructions including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 129. A computer readable medium with programming instructions as claimed in claim 116 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories, the computer readable medium with programming instructions including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.
  - 130. A computer readable medium with programming instructions as claimed in claim 118 wherein the step of ranking includes ranking said security sensitive words, data objects, characters or icons.
  - 131. A computer readable medium with programming instructions as claimed in claim 130 wherein ranking said security sensitive words, data objects, characters or icons occurs concurrently or prior to ranking said categories.
  - 132. A computer readable medium with programming instructions as claimed in claim 131 wherein said security sensitive words, data objects, characters or icons are subsumed in respective ones of said plurality of categories.
  - 133. A computer readable medium with programming instructions as claimed in claim 132 wherein the step of categorizing said security sensitive words, data objects, characters or icons includes matching said security sensitive words, data objects, characters or icons with a predetermined plurality of preexisting categories.
  - 134. A computer readable medium with programming instructions as claimed in claim 133 wherein each preexisting category of said predetermined plurality of preexisting categories has associated therewith preexisting data and the step of matching correlates said security sensitive words, data objects, characters or icons with said preexisting data in said predetermined plurality of preexisting categories.
  - 135. A computer readable medium with programming instructions as claimed in claim 134 including inferring additional security sensitive words, data objects, characters and icons from said respective ones of said plurality of categories.
  - 136. A computer readable medium with programming instructions as claimed in claim 135 wherein the step of inferring utilizes contextual and semantic rules to identify said additional security sensitive words, data objects, characters and icons.
  - 137. A computer readable medium with programming instructions as claimed in claim 136 including the step of searching one or more data sources from the group of data sources including the Internet, an intranet and an extranet, the step of searching used to infer said additional security sensitive words, data objects, characters and icons.
  - 138. A computer readable medium with programming instructions as claimed in claim 137 including assigning a differential rank quantifier to said security sensitive words, data objects, characters or icons which is different than said rank quantifier assigned to the subsumed category.
  - 139. A computer readable medium with programming instructions as claimed in claim 138 including:
    - analyzing the presence of said security sensitive words, data objects, characters or icons in said data, said analysis including a frequency analysis in said and a stochastic analysis in said data; and
      
      altering said output based upon said analysis.

140. A computer readable medium containing programming instructions for quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data, the programming instructions comprising:
- categorizing said security sensitive words, data objects, characters or icons into one of a plurality of categories;
  
  obtaining and compiling preexisting data for each category;
  
  ranking said categories with respect to each other;
  
  assigning a rank quantifier to each respective category and associating the assigned rank quantifier to preexisting data subsumed in each category;
  
  forming a template which includes said security sensitive words, data objects, characters or icons and the compiled preexisting data; and
  
  generating an output representative of all rank quantifiers associated with security sensitive words, data objects, characters or icons and preexisting data found in said data by comparing said data to said template.

141. A computer readable medium containing programming instructions for quantifying the risk of releasing security sensitive words, data objects, characters or icons which may be part of data, the programming instructions comprising:
- compiling said security sensitive words, data objects, characters or icons;
  
  associating a respective categorical identifier with each of said security sensitive words, data objects, characters or icons;
  
  subdividing, if necessary, each respective categorical identifier into subcategories;
  
  compiling preexisting data per categorical identifier and subcategory;
  
  ranking said categorical identifiers and, if necessary, said subcategories, with respect to each other, and assigning a rank quantifier to each respective categorical identifiers and subcategory and to said preexisting data compiled for each categorical identifier and subcategory and said security sensitive words, data objects, characters or icons;
  
  forming a template which includes said security sensitive words, data objects, characters or icons and the compiled preexisting data;
  
  generating an output representative of all risk quantifiers associated with said security sensitive words, data objects, characters or icons and the compiled preexisting data found in said data by comparing said data to said template.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
DigitalDoors, Inc.
Original Assignee
DigitalDoors, Inc.
Inventors
Nemzow, Martin A., Redlich, Ron M.

Granted Patent

US 8,533,840 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/154
CPC Class Codes

G06F 16/355   Class or cluster creation o...

G06F 16/951   Indexing; Web crawling tech...

G06F 21/6245   Protecting personal data, e...

G06F 40/247   Thesauruses; Synonyms

Method and system of quantifying risk

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

109 Citations

141 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system of quantifying risk

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

109 Citations

141 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links