×

Systems and methods for sensitive data remediation

  • US 8,549,649 B2
  • Filed: 04/16/2010
  • Issued: 10/01/2013
  • Est. Priority Date: 04/30/2009
  • Status: Active Grant
First Claim
Patent Images

1. A computer network auditing method, comprising:

  • deploying agents on respective computers among a plurality of computers throughout a network;

    using the agents to collect information about the volume and sensitivity of data stored on the respective computers and the programs running on the respective computers;

    receiving the information from the agents at a central location;

    for each computer for which the information has been received, calculating a risk score, where the risk score is based on the volume and sensitivity of data stored on said each computer and a security of said each computer;

    comparing, at the central location, calculated risk scores of multiple computers and ranking the multiple computers in a risk score order; and

    for a given one of the multiple computers in the risk score order, performing a remediation technique that has the effect of reducing the risk score for the given computer,wherein calculating the risk score comprises separately taking account of (i) for a given one of the computers, data considered to be of a first sensitivity value stored on the given one of the computers, (ii) data considered to be of a second sensitivity value, different form the first sensitivity value, stored on the given one of the computers, (iii) an exposure level of the data stored on the given one of the computers, and (iv) an integrity assessment of the given one of the computers, andwherein the risk score is based on a probability of loss that is itself based on the exposure level of the data stored on the given one of the computers and the integrity assessment of the given one of the computers, and an impact of loss metric that is itself based on the first and second sensitivity values.

View all claims
  • 12 Assignments
Timeline View
Assignment View
    ×
    ×