Method and a system for outbound content security in computer networks
First Claim
1. A system for controlling data transfers from a protected internal network to an unprotected outside network comprising:
- an inspection device coupled to said network to monitor all transmissions out of said internal network, said inspection device comprising;
means for identifying file boundaries in the transmitted data,means for determining format of said files,means for extracting data of interest from said files,means for comparing said data of interest with pre-defined data,means for blocking data transmission, if a threshold amount of said data of interest matches pre-defined data
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to a method and a system for protecting data in a computer network. A device is placed on a network edge in such a way, that all outgoing data has to pass through it. Separately, a set of data that is not allowed to leave the network is defined and stored in a secure form (typically, one way hash). The device determines the network protocol, file types, transforms and normalizes the passing data, and seeks the presence of the data from the defined set. If a threshold amount of the protected data is present, the device interrupts the connection or takes another appropriate action.
94 Citations
1 Claim
-
1. A system for controlling data transfers from a protected internal network to an unprotected outside network comprising:
-
an inspection device coupled to said network to monitor all transmissions out of said internal network, said inspection device comprising; means for identifying file boundaries in the transmitted data, means for determining format of said files, means for extracting data of interest from said files, means for comparing said data of interest with pre-defined data, means for blocking data transmission, if a threshold amount of said data of interest matches pre-defined data
-
Specification