FILE SCANNING TOOL

US 20100250509A1
Filed: 03/23/2010
Published: 09/30/2010
Est. Priority Date: 03/27/2009
Status: Abandoned Application

First Claim

Patent Images

1. A method of determining the origin location of compromised information in a structured data file, comprising:

receiving, in a scanning tool, at least one of format information or content information from the compromised information in the structured data file, using a processing device operatively coupled to a memory device and a communication device, and configured to execute computer-readable program code of the scanning tool;

scanning a plurality of networked devices for origin structured data files with at least one of format information or content information similar to the compromised information in the structured data file, using the processing device; and

outputting a potential origin location for the compromised information in the structured data file based on the location of the origin structured data files scanned, using the processing device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the invention relate to systems, methods, and computer program products for improved file identification. Embodiments herein disclosed provide for a file scanning tool that receives input related to compromised information in a structured data file and scans databases, servers, systems, or computers throughout a company for origin structured data files that contain the same or similar information as the compromised information in the structured data file. The file scanning tool then outputs the location of the origin structured data files that have the same or similar information. The file scanning tool can be used for various purposes, especially as a tool for investigators trying to determine if other information from the same location could have been compromised, the responsible parties, and the contact information of customers whose information was compromised, so the company can notify customers if their account information has changed.

195 Citations

37 Claims

1. A method of determining the origin location of compromised information in a structured data file, comprising:
- receiving, in a scanning tool, at least one of format information or content information from the compromised information in the structured data file, using a processing device operatively coupled to a memory device and a communication device, and configured to execute computer-readable program code of the scanning tool;
  
  scanning a plurality of networked devices for origin structured data files with at least one of format information or content information similar to the compromised information in the structured data file, using the processing device; and
  
  outputting a potential origin location for the compromised information in the structured data file based on the location of the origin structured data files scanned, using the processing device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein scanning databases, servers, systems, or computers for origin structured data files further comprises identifying a header in a scanned origin structured data file, using the processing device.
  - 3. The method of claim 2, wherein identifying a header in a scanned origin structured data file further comprises determining the content of the header in the scanned origin structured data file, using the processing device.
  - 4. The method of claim 1, wherein scanning a plurality of networked devices for origin structured data files further comprises identifying a sample value in a scanned origin structured data file, using the processing device.
  - 5. The method of claim 4, wherein identifying a sample value in a scanned origin structured data file further comprises determining the format of the sample value in the scanned origin structured data file, using the processing device.
  - 6. The method of claim 4, wherein scanning a plurality of networked devices for origin structured data files comprises determining the content of the sample value in the scanned origin structured data file, using the processing device.
  - 7. The method of claim 4, wherein scanning a plurality of networked devices for origin structured data files comprises assigning a header most likely associated with the sample value in the scanned origin structured data file when the sample value does not have the header, using the processing device.
  - 8. The method of claim 1, wherein scanning a plurality of networked devices for origin structured data files further comprises comparing at least one of a header or a sample value from the compromised information in the structured data file with a corresponding header or a sample value from the origin structured data files, using the processing device.
  - 9. The method of claim 1, further comprising:
    - determining additional information located at the potential origin location that is potentially compromised, using the processing device.
  - 10. The method of claim 1, further comprising:
    - comparing identifier information from the compromised information in the structured data file with identifier information in the origin structured data file to determine contact information for a customer whose accounts could have been compromised, using the processing device.
  - 11. The method of claim 1, further comprising:
    - determining an identity of an accessing party to the origin structured data files, using the processing device.

12. A method of determining the origin location of compromised information in a structured data file, comprising:
- receiving, in a scanning tool, at least one of format information or content information from the compromised information in the structured data file, using a processing device operatively coupled to a memory device and a communication device, and configured to execute computer-readable program code of the scanning tool;
  
  scanning a plurality of networked devices for origin structured data files with the format information or content information similar to the compromised information in the structured data file, using the processing device, wherein scanning comprises;
  
  identifying a header in a scanned origin structured data file;
  
  determining the content of the header in the scanned origin structured data file;
  
  identifying a sample value in a scanned origin structured data file;
  
  determining the format of the sample value in the scanned origin structured data file;
  
  determining the content of the sample value in the scanned origin structured data file;
  
  assigning the header most likely associated with the sample value in the scanned origin structured data file when the sample value does not have a header;
  
  comparing at least one of the header or the sample value from the compromised information in the structured data file with the corresponding header or the sample value from the origin structured data files; and
  
  outputting a potential origin location for the compromised information in the structured data file based on the location of the origin structured data files scanned, using the processing device.
- View Dependent Claims (13, 14, 15)
- - 13. The method of claim 12, further comprising:
    - determining additional information located at the potential origin location that is potentially compromised.
  - 14. The method of claim 12, further comprising:
    - comparing identifier information from the compromised information in the structured data file with identifier information in the origin structured data file to determine contact information for a party whose accounts potentially have been compromised.
  - 15. The method of claim 12, further comprising:
    - determining who had access to the origin structured data files.

16. A file scanning tool system for determining the origin location of compromised information in a structured data file, comprising:
- a memory device;
  
  a communication device;
  
  a processing device, operatively coupled to the memory device and the communication device, and configured to execute computer-readable program code to;
  
  receive format information or content information from the compromised information in the structured data file;
  
  scan a plurality of networked devices for origin structured data files with at least one of format information or content information similar to the compromised information in the structured data file; and
  
  output a potential origin location for the compromised information in the structured data file based on the location of the origin structured data files scanned.
- View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
- - 17. The file scanning tool system of claim 16, wherein the processing device configured to execute computer-readable program code to scan the plurality of networked devices for origin structured data files is further configured to identify a header in a scanned origin structured data file.
  - 18. The file scanning tool system of claim 17, wherein the processing device configured to execute computer-readable program code to scan the plurality of networked devices for origin structured data files is further configured to determine the content of the header in the scanned origin structured data file.
  - 19. The file scanning tool system of claim 16, wherein the processing device configured to execute computer-readable program code to scan the plurality of networked devices for origin structured data files is further configured to identify a sample value in a scanned origin structured data file.
  - 20. The file scanning tool system of claim 19, wherein the processing device configured to execute computer-readable program code to scan the plurality of networked devices for origin structured data files is further configured to determine the format of the sample value in the scanned origin structured data file.
  - 21. The file scanning tool system of claim 19, wherein the processing device configured to execute computer-readable program code to scan the plurality of networked devices for origin structured data files is further configured to determine the content of the sample value in the scanned origin structured data file.
  - 22. The file scanning tool system of claim 19, wherein the processing device configured to execute computer-readable program code to scan the plurality of networked devices for origin structured data files is further configured to assign a header most likely associated with the sample value in the scanned origin structured data file when the sample value does not include the header.
  - 23. The file scanning tool system of claim 16, wherein the processing device configured to execute computer-readable program code to scan the plurality of networked devices for origin structured data files is further configured to compare at least one of a header or a sample value from the compromised information in the structured data file with a corresponding header or a sample value from the origin structured data files.
  - 24. The file scanning tool system of claim 16, wherein the processing device is further configured to execute computer-readable program code to determine additional information located at the potential origin location that potentially is compromised.
  - 25. The file scanning tool system of claim 16, wherein the processing device is further configured to execute computer-readable program code to compare identifier information from the compromised information in the structured data file with identifier information in the origin structured data file to determine contact information for a party whose accounts are potentially compromised.
  - 26. The file scanning tool system of claim 16, wherein the processing device is further configured to execute computer-readable program code to determine who had access to the origin structured data files.

27. A computer program product for a file scanning tool, for determining the origin location of compromised information in a structured data file, comprising at least one computer-readable medium having computer-readable program code portions embodied therein, the computer-readable program code portions comprising:
- an executable portion configured for receiving format information or content information from the compromised information in the structured data file, using a processing device operatively coupled to a memory device and a communication device;
  
  an executable portion configured for scanning a plurality of networked devices for origin structured data files with at least one of format information or content information similar to the compromised information in the structured data file, using the processing device; and
  
  outputting a potential origin location for the compromised information in the structured data file based on the location of the origin structured data files scanned, using the processing device.
- View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35, 36, 37)
- - 28. The computer program product of claim 27, wherein the executable portion configured for scanning the plurality of networked devices for origin structured data files is further configured for identifying a header in a scanned origin structured data file.
  - 29. The computer program product of claim 28, wherein the executable portion configured for scanning the plurality of networked devices is further configured for determining the content of the header in the scanned origin structured data file.
  - 30. The computer program product of claim 27, wherein the executable portion configured for scanning the plurality of networked devices is further configured for identifying a sample value in a scanned origin structured data file.
  - 31. The computer program product of claim 30, wherein the executable portion configured for scanning the plurality of networked devices is further configured for determining the format of the sample value in the scanned origin structured data file.
  - 32. The computer program product of claim 30, wherein the executable portion configured for scanning the plurality of networked devices is further configured for determining the content of the sample value in the scanned origin structured data file.
  - 33. The computer program product of claim 30, wherein the executable portion configured for scanning the plurality of networked devices is further configured for assigning a header most likely associated with the sample value in the scanned origin structured data file when the sample value does not have the header.
  - 34. The computer program product of claim 27, wherein the executable portion configured for scanning the plurality of networked devices is further configured for comparing at least one of a header or a sample value from the compromised information in the structured data file with a corresponding header or a sample value from the origin structured data files.
  - 35. The computer program product of claim 27, further comprising:
    - an executable portion configured for determining additional information located at the potential origin location that could have been compromised.
  - 36. The computer program product of claim 27, further comprising:
    - an executable portion configured for comparing identifier information from the compromised information in the structured data file with identifier information in the origin structured data file to determine contact information for a customer whose accounts are potentially compromised.
  - 37. The computer program product of claim 27, further comprising:
    - an executable portion configured for determining who had access to the origin structured data files.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
Andersen, David M.

Application Number

US12/729,987
Publication Number

US 20100250509A1
Time in Patent Office

Days
Field of Search
US Class Current

707/705
CPC Class Codes

G06Q 10/10 Office automation; Time man...

FILE SCANNING TOOL

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

195 Citations

37 Claims

Specification

Use Cases

Quick Links

Others

FILE SCANNING TOOL

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

195 Citations

37 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others