Method of detecting data loss using multiple references to a file in a deduplication backup system
First Claim
Patent Images
1. A computer-implemented method, comprising:
- receiving, by a processing device, a plurality of references associated with a file from a deduplication backup system storing a backup copy of the file, the plurality of references indicating location information of a plurality of instances of the file that are stored at different locations on a network;
determining, in view of the plurality of references, whether at least one instance of the plurality of instances of the file is stored outside a storage domain specified by a policy; and
detecting a violation of the policy if the plurality of references indicate that the at least one instance of the plurality of instances of the file is stored outside of the specified storage domain.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method for improving data loss prevention (DLP) using multiple references to a file in a deduplication backup system is described. In one embodiment, a deduplication backup system generates multiple references to a file. A detection system, operating in the deduplication system or in a data loss prevention (DLP) system coupled to the deduplication system, detects the multiple references, generated by the deduplication system, determines whether the file of at least one of the multiple references is stored outside a domain as specified by a DLP policy, and detects a violation of the DLP policy when the file is stored at a location outside of the specified domain.
-
Citations
19 Claims
-
1. A computer-implemented method, comprising:
-
receiving, by a processing device, a plurality of references associated with a file from a deduplication backup system storing a backup copy of the file, the plurality of references indicating location information of a plurality of instances of the file that are stored at different locations on a network; determining, in view of the plurality of references, whether at least one instance of the plurality of instances of the file is stored outside a storage domain specified by a policy; and detecting a violation of the policy if the plurality of references indicate that the at least one instance of the plurality of instances of the file is stored outside of the specified storage domain. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computing system, comprising:
-
a deduplication backup system comprising one or more computing devices coupled to an organization network having one or more electronic devices storing a plurality of files, the deduplication backup system to; perform a backup operation to scan a file of the plurality of files stored within the organization network, wherein the backup operation stores a backup copy of a the file in a deduplication data store, and generate a plurality of references associated with the file indicating location information of a plurality of instances of the file that are stored at different locations on the network; and a detection system comprising one or more computing devices coupled to the deduplication backup system, the detection system to; receive, from the deduplication backup system, the plurality of references associated with the file, determine, in view of the plurality of references, whether at least one instance of the plurality of instances of the file is stored outside a storage domain specified by a policy, and detect a violation of the policy if the plurality of references indicate that at least one instance of the plurality of instances of the file is stored outside of the specified storage domain. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A non-transitory computer readable storage medium that provides instructions, which when executed on a processing device, cause the processing device to perform a method comprising:
-
receiving, by the processing device, a plurality of references associated with a file from a deduplication backup system storing a backup copy of a file, the plurality of references indicating location information of a plurality of instances of the file that are stored at different locations on a network; determining, in view of the plurality of references, whether at least one instance of the plurality of instances of the file is stored outside a storage domain specified by a policy; and detecting the violation of the policy if the plurality of references indicate that at least one instance of the plurality of instances of the file is stored outside of the specified storage domain. - View Dependent Claims (17, 18, 19)
-
Specification