System And Method For Automation Of Information Or Data Classification For Implementation Of Controls
First Claim
1. A system, comprising:
- a monitoring tool configured to monitor communication of a first computer over a network; and
a classification tool configured to assign one of a plurality of predetermined security classifications to said first computer based at least in part on said monitored communication.
4 Assignments
0 Petitions
Accused Products
Abstract
A system, method and computer program product are provided for monitoring data traffic on one or more networks, determining the classification of the data based on an organization'"'"'s classification rules, and assigning a classification to one or more entities involved in the transmission of the data, the classification being based at least in part on the classification of the data being transmitted. The classification rules may be based on an organization'"'"'s classification categories of confidentiality, integrity and availability (CIA). The system, method and computer program product are also provided for implementing controls based on the classifications of the various entities, such as issuing an alert and/or preventing transmission of data if the data is transmitted between two entities that have different classifications.
22 Citations
20 Claims
-
1. A system, comprising:
-
a monitoring tool configured to monitor communication of a first computer over a network; and a classification tool configured to assign one of a plurality of predetermined security classifications to said first computer based at least in part on said monitored communication. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method, comprising:
-
monitoring communication of a first computer over a network, said communication comprising transmission of one or more first types of data; determining a first security classification for at least some of said types of data, said first security classification being selected from a plurality of predetermined security classifications; and assigning a second security classification to said first computer based at least in part on said first security classification, said second security classification being selected from said plurality of predetermined security classifications. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer program product, comprising:
-
a memory having computer readable code embodied therein, for execution by a computing device having at least a processor and a memory, said code comprising; a first computer executable code portion for monitoring communication of a first computer over a network, said communication comprising transmission of one or more first types of data; a second computer executable code portion for determining a first security classification for at least some of said types of data, said first security classification being selected from a plurality of predetermined security classifications; and a third computer executable code portion for assigning a second security classification to said first computer based at least in part on said first security classification, said second security classification being selected from said plurality of predetermined security classifications. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification