System and method for controlling and tracking network content flow
First Claim
Patent Images
1. A system for controlling a flow of information content in a secure network, said system comprising:
- a tracking module, for storing;
a sensitivity level of information content; and
a location of said information content with respect to said system;
wherein the tracking module is configured to statically track one or more locations of said information content responsive to a user input and dynamically track one or more locations of said information content responsive to reproduction commands or feedback from a discovery agent, or combinations thereof;
a marking module that receives said sensitivity level from said tracking module upon a call for said information content to be packetized in a packet with a packet header, wherein said packet header is associated with transmission of said information content through a secure network, wherein said marking module appends a sensitivity tag to said packet header associated with said information content in the packet according to said sensitivity level;
controlling said flow of said information content in the packet in said secure network according to said sensitivity tag; and
not approving a routing transaction, wherein the routing transaction involves an unauthorized request for the information content or unauthorized sending of the information content to a non-controlled domain or combinations thereof based on the sensitivity tag;
wherein said flow of said information content is controlled according to said sensitivity tag at Network Layer or Transport Layer.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods for controlling the flow of information content in a network are described. The system includes a tracking module that remembers a sensitivity level of the information content and a location of that information content with respect to the system. A marking module is included that receives the sensitivity level from the tracking module upon a call for the information content. The marking module marks a sensitivity tag in a packet header associated with the information content according to the sensitivity level. Flow of the information content in the network is controlled according to the sensitivity tag.
74 Citations
24 Claims
-
1. A system for controlling a flow of information content in a secure network, said system comprising:
-
a tracking module, for storing; a sensitivity level of information content; and a location of said information content with respect to said system; wherein the tracking module is configured to statically track one or more locations of said information content responsive to a user input and dynamically track one or more locations of said information content responsive to reproduction commands or feedback from a discovery agent, or combinations thereof; a marking module that receives said sensitivity level from said tracking module upon a call for said information content to be packetized in a packet with a packet header, wherein said packet header is associated with transmission of said information content through a secure network, wherein said marking module appends a sensitivity tag to said packet header associated with said information content in the packet according to said sensitivity level; controlling said flow of said information content in the packet in said secure network according to said sensitivity tag; and not approving a routing transaction, wherein the routing transaction involves an unauthorized request for the information content or unauthorized sending of the information content to a non-controlled domain or combinations thereof based on the sensitivity tag; wherein said flow of said information content is controlled according to said sensitivity tag at Network Layer or Transport Layer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method, comprising:
-
identifying information content that is called by a client device prior to packetizing said information content; encapsulating, by the client device, the information content in a packet with a packet header, wherein said packet header is added to said information content prior to said information content being transmitted over a controlled network; determining a sensitivity level of said information content; storing the sensitivity level of said information content; storing a location of said information content, wherein an associated tracking module configured to determine the location of the information content is configured to statically track the location of said information content responsive to a user input or dynamically track the location of said information content responsive to reproduction commands or feedback from a discovery agent, or combinations thereof; marking a sensitivity tag in said packet header according to said sensitivity level upon said call for said information content, wherein said packet header is marked with said sensitivity tag by said client device and wherein the sensitivity tag comprises data to be used by network devices to route said information content; and controlling a flow of said information content through said controlled network according to said sensitivity tag, wherein said flow of said information content is controlled at a Network Layer or a Transport Layer; and not approving a routing transaction through the controlled network, wherein the routing transaction is associated with an unauthorized request for the information content or an unauthorized request to send the packet including the information content to a non-controlled domain based on the sensitivity tag; wherein said controlling of the flow of said information content is controlled according to said sensitivity tag at Network Layer or Transport Layer. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A non-transitory computer readable medium that contains encoded thereon computer usable code that causes a computer system to perform a process comprising:
-
identifying a call for information content, wherein said information content is packetized, in a packet to include a packet header associated with transmission of said information content through a controlled network; determining a sensitivity level of said information content; tracking said information content, wherein said tracking comprises; storing the sensitivity level of said information content; at least one of statically tracking one or more locations of said information content responsive to a user input or dynamically tracking one or more locations of said information content responsive to reproduction commands or feedback from a discovery agent, or combinations thereof; storing location information of said information content, wherein said information content is stored at a location identified by said location information as metadata; maintaining an association between said sensitivity level and said metadata; marking a sensitivity tag in said packet header associated with said information content according to said sensitivity level; and routing said information content in said controlled network according to said sensitivity tag; not approving a routing transaction including an unauthorized request for the information content in the packet or an unauthorized request to send the packet including the information content to a non-controlled domain or combinations thereof based on the sensitivity tag; wherein said routing of said information content is controlled according to said sensitivity tag at Network Layer or Transport Layer. - View Dependent Claims (19, 20, 21, 22, 23)
-
-
24. A system comprising:
-
means for determining a sensitivity level of information content identified for transmission in a controlled network; means for tracking said information content; means for statically tracking one or more locations of said information content responsive to a user input and dynamically tracking one or more locations of said information content responsive to reproduction commands or feedback from a discovery agent, or combinations thereof; means for storing location information of said information content, wherein said information content is stored at a location identified by said location information as metadata; means for maintaining an association between said sensitivity level and said metadata; means for marking a sensitivity tag in a packet header associated with said information content according to said sensitivity level wherein said sensitivity tag includes data to be used for routing a flow of said information content in said controlled network at a Network Layer or a Transport Layer of an OSI network protocol; means for not approving a routing transaction if the routing transaction is associated with an unauthorized request for the information content or is associated with an unauthorized request to send the information content to a non-controlled domain, wherein the not approving is based on the sensitivity.
-
Specification