Information security system for tracing the information outflow and a method for tracing the same
First Claim
1. An information security system for tracing information outflow, comprising:
- an internal communication system which has internal computers for transmitting security information by tracing data through a communication equipment, outputting data to a predetermined external output means and connecting said internal computers to a predetermined external network; and
a communication monitoring device which stores a predetermined information regarding the data to be transmitted by applying an established security policy according to a security grade of a destination to which the data is to be transmitted by said internal computers, said security grade being classified into a same group, a cooperative group, or a competitive group according to a characteristic of the destination;
wherein, said communication monitoring device, comprises;
a destination extracting means for extracting the destination from the data to be transmitted; and
a communication monitoring server for storing and displaying said predetermined information about the data to be transmitted and determining whether the tracing information is stored according to said security grade for the extracted destination.
1 Assignment
0 Petitions
Accused Products
Abstract
An information security system for tracing information outflow from a remotely accessible computer or computer network is disclosed. The system includes an internal communication system that has at least one internal computer for transmitting security information by tracing data through communication equipment, outputting the data to an external output means, and connecting the internal computer to an external network. A communication monitoring device stores information regarding the data that is to be transmitted by applying a security policy according to a security grade assigned to the destination to which the data is to be transmitted. The communication monitoring device is configured for extracting the identification of the destination from the transmitted data. It also includes a communication monitoring server for storing and displaying predetermined information about the data to be transmitted and for determining whether the tracing information is stored according to the security grade for the identified destination. A method of operating the disclosed system is also described.
-
Citations
20 Claims
-
1. An information security system for tracing information outflow, comprising:
-
an internal communication system which has internal computers for transmitting security information by tracing data through a communication equipment, outputting data to a predetermined external output means and connecting said internal computers to a predetermined external network; and a communication monitoring device which stores a predetermined information regarding the data to be transmitted by applying an established security policy according to a security grade of a destination to which the data is to be transmitted by said internal computers, said security grade being classified into a same group, a cooperative group, or a competitive group according to a characteristic of the destination; wherein, said communication monitoring device, comprises; a destination extracting means for extracting the destination from the data to be transmitted; and a communication monitoring server for storing and displaying said predetermined information about the data to be transmitted and determining whether the tracing information is stored according to said security grade for the extracted destination. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An information security method for tracing an information outflow in a security system having a monitoring server for connecting an internal computer in an internal network to an external network, comprising the steps of:
-
storing information about a changed hardware by sensing the change of a hardware of said internal computer; transmitting the stored information about the changed hardware to said monitoring server when a communication is established between said internal computer and said monitoring server; storing information about an output operation when a communication is not established between said internal computer and said monitoring server and the information outflow is generated from the internal computer; determining whether an information outflow operation is generated in said internal computer, after transmitting the information about the changed hardware to said monitoring server; detecting a destination to which data is transmitted, when the information outflow operation is performed by a communication means; acquiring a security grade corresponding to the detected destination, said security grade being classified into a same group, a cooperative group, or a competitive group according to a characteristic of the destination; transmitting data according to said acquired security grade; and transmitting data on the information outflow to said monitoring server, when the information outflow operation is performed by said communication means. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification