Method and system for identifying the content of files in a network
First Claim
1. A method for identifying the content of a file in a network environment, said network environment comprising at least one local computing device linked to a remaining part of the network environment including a central infrastructure and, the method comprising calculating a reference value for a new file on one of said at least one local computing devices using a one-way-function, transmitting said calculated reference value o said central infrastructure, comparing said calculated reference value with reference values previously stored within the remaining part of the network environment, after comparing, deciding that the content of the new file is already identified if a match between said calculated reference value and a previously stored reference value is found and retrieving the corresponding content attributes;
- or deciding that the content of the new file is not yet identified if no match between said calculated reference value and any of the previously stored reference values is found, followed by sharing the new file on the local computing device to said central infrastructure and said central infrastructure identifying the content of said new file by remotely identifying the content over the network environment, determining content attributes corresponding with the content of the new file and storing a copy of said content attributes, after deciding, triggering an action on said local computing device in accordance with said content attributes.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for performing securing and controlling of a network using content identification of files in a network having a central infrastructure and local computing devices is presented. The method comprises calculating a hash value of a new file created or received on a local computing device, transmitting the hash value to the central infrastructure, comparing the hash value with a previously determined hash value stored in a database on the central infrastructure to determine whether the file is new to the network and if the file is new to the network, checking the file content with a content identifying engine, installed and updated on the central infrastructure. Content attributes are determined for the files which allow to perform appropriate actions on the local computing devices according to policy rules.
112 Citations
19 Claims
-
1. A method for identifying the content of a file in a network environment, said network environment comprising at least one local computing device linked to a remaining part of the network environment including a central infrastructure and, the method comprising
calculating a reference value for a new file on one of said at least one local computing devices using a one-way-function, transmitting said calculated reference value o said central infrastructure, comparing said calculated reference value with reference values previously stored within the remaining part of the network environment, after comparing, deciding that the content of the new file is already identified if a match between said calculated reference value and a previously stored reference value is found and retrieving the corresponding content attributes; - or
deciding that the content of the new file is not yet identified if no match between said calculated reference value and any of the previously stored reference values is found, followed by sharing the new file on the local computing device to said central infrastructure and said central infrastructure identifying the content of said new file by remotely identifying the content over the network environment, determining content attributes corresponding with the content of the new file and storing a copy of said content attributes, after deciding, triggering an action on said local computing device in accordance with said content attributes. - View Dependent Claims (2, 3, 4, 5, 6)
- or
-
7. A system for identifying the content of a file in a network environment, said network environment comprising at least one local computing device linked to a remaining part the network environment which includes a central infrastructure and, said remaining part including a stored database, whereby the system comprises:
-
means for calculating a reference value for a new file on said local computing device using a one-way-function, means for transmitting said calculated reference value to said central infrastructure, means for comparing said calculated reference value with previously stored reference values from the database, whereby the system further comprises;
means for deciding whether the content of the new file is already identified based on comparison of said calculated reference value and reference values previously stored within the remaining part, means for sharing the new file on the local computing device to said central infrastructure means located on the central infrastructure, for remotely identifying the content of the new file over the network and as to assign content attributes if the new file has not been identified yet and means for storing said content attributes within the remaining part, and means for triggering an action on said local computing device in accordance with content attributes for said new file. - View Dependent Claims (8)
-
-
9. A method for altering a system for identifying the content of a file in a network environment, said network environment comprising means for calculating a one-way function, at least one local computing device linked to a remaining part of the network environment including a central infrastructure and means for identifying the content and said remaining part including a stored database, the method comprising
altering said means for identifying the content or said means for calculating a one-way function scanning the remaining part of the network environment for reference values calculated with a one-way function for each of said reference values, requesting a file that corresponds with said reference value from said network environment identifying the content of said file and determining content attributes corresponding with the content of the file and storing a copy of said content attributes sending the content attributes to every local computing device containing the file after sending; - triggering an action on said local computing device in accordance with said content attributes.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18)
-
19. (canceled)
Specification