Device, method and program for preventing information leakage
First Claim
1. A device for preventing information leakage, comprising:
- a request information storage configured to store a message time, request source information, and request destination information in relation to each information requesting message transmitted from a client terminal to a server device;
at least one memory operable to store program code; and
at least one hardware processor operable to read said program code and operate as instructed by said program code, said program code comprising;
suspending processing code configured to suspend a response message containing personal information in response messages transmitted from the server device in response to the information requesting messages, for a predetermined suspended time from the message time of the corresponding information requesting message, and output a response message not containing the personal information in the response messages without suspending the response message not containing the personal information;
counting code configured to, based on information concerning the information requesting message stored in the request information storage, count the number of information requesting messages indicating a same request source and a same request destination and corresponding to the suspended response message containing the personal information; and
response processing code configured to, in a case where the number of the information requesting messages counted by the counting code exceeds a predetermined threshold value, apply a protection process to the suspended response message so the personal information contained in the suspended response message is not received by the client terminal serving as the request source.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided is a device for preventing information leakage including: a storage unit that stores message time, request source information, and request destination information in relation to each information requesting message; a unit that suspends a response message containing personal information in response messages in response to the information requesting messages, for a predetermined suspended time from a message time of the corresponding information requesting message; a unit that counts the number of information requesting messages transmitted from the same request source to the same destination and corresponding to the suspended response message on the basis of information stored in the storage unit; and a unit that, in the case where the counted number of the information requesting messages exceeds a predetermined threshold value, applies a protection process to the suspended response message so that the personal information contained in the suspended response message is not received by the request source.
-
Citations
12 Claims
-
1. A device for preventing information leakage, comprising:
-
a request information storage configured to store a message time, request source information, and request destination information in relation to each information requesting message transmitted from a client terminal to a server device; at least one memory operable to store program code; and at least one hardware processor operable to read said program code and operate as instructed by said program code, said program code comprising; suspending processing code configured to suspend a response message containing personal information in response messages transmitted from the server device in response to the information requesting messages, for a predetermined suspended time from the message time of the corresponding information requesting message, and output a response message not containing the personal information in the response messages without suspending the response message not containing the personal information; counting code configured to, based on information concerning the information requesting message stored in the request information storage, count the number of information requesting messages indicating a same request source and a same request destination and corresponding to the suspended response message containing the personal information; and response processing code configured to, in a case where the number of the information requesting messages counted by the counting code exceeds a predetermined threshold value, apply a protection process to the suspended response message so the personal information contained in the suspended response message is not received by the client terminal serving as the request source. - View Dependent Claims (2, 3, 4, 8)
-
-
5. A device for preventing information leakage, comprising:
-
at least one memory operable to store program code; and at least one hardware processor operable to read said program code and operate as instructed by said program code, said program code comprising; suspending processing code configured to suspend a response message containing personal information in response messages transmitted from a server device in response to information requesting messages transmitted from a client terminal to the server device, for a predetermined suspended time from a message time related to each response message, and output a response message not containing the personal information in the response messages without suspending the response message not containing the personal information; counting code configured to count the number of response messages related to a same request source and a same request destination in the suspended response message containing the personal information; and response processing code configured to, in a case where the number of the response messages counted by the counting code exceeds a predetermined threshold value, apply a protection process to the suspended response message so the personal information contained in the suspended response message is not received by the client terminal serving as the request source. - View Dependent Claims (6, 7)
-
-
9. A method for preventing information leakage, which is executed by a computer, the method including:
-
storing, in a request information storage, a message time, request source information, and request destination information in relation to each information requesting message transmitted from a client terminal to a server device; suspending a response message containing personal information in response messages transmitted from the server device in response to the information requesting messages, for a predetermined suspended time from a message time of the corresponding information requesting message, and outputting a response message not containing the personal information in the response messages without suspending the response message not containing the personal information; counting the number of information requesting messages indicating a same request source and a same request destination and corresponding to the suspended response message containing the personal information, based on information concerning the information requesting message stored in the request information storage; and in a case where the counted number of the information requesting messages exceeds a predetermined threshold value, applying a protection process to the suspended response message so the personal information contained in the suspended response message is not received by the client terminal serving as the request source.
-
-
10. A non-transitory computer-readable storage medium storing a program for causing the computer to realize:
-
a request information storage that stores a message time, request source information, and request destination information in relation to each information requesting message transmitted from a client terminal to a server device; a suspending processor that suspends a response message containing personal information in response messages transmitted from the server device in response to the information requesting messages, for a predetermined suspended time from the message time of the corresponding information requesting message, and outputs a response message not containing the personal information in the response messages without suspending the response message not containing the personal information; a counter that, based on information concerning the information requesting message stored in the request information storage, counts the number of information requesting messages indicating a same request source and a same request destination and corresponding to the suspended response message containing the personal information; and a response processor that, in a case where the number of the information requesting messages counted by the counter exceeds a predetermined threshold value, applies a protection process to the suspended response message so the personal information contained in the suspended response message is not received by the client terminal serving as the request source.
-
-
11. A method for preventing information leakage, which is executed by a computer, the method including:
-
suspending a response message containing personal information in response messages transmitted from a server device in response to information requesting messages transmitted from a client terminal to the server device, for a predetermined suspended time from a message time related to each response message, and outputting a response message not containing the personal information in the response messages without suspending the response message not containing the personal information; counting the number of response messages related to a same request source and a same request destination in the suspended response message containing the personal information; and in a case where the counted number of the response messages exceeds a predetermined threshold value, applying a protection process to the suspended response message so the personal information contained in the suspended response message is not received by the client terminal serving as a request source.
-
-
12. A non-transitory computer-readable storage medium storing a program for causing the computer to realize:
-
a suspending processor that suspends a response message containing personal information in response messages transmitted from a server device in response to information requesting messages transmitted from a client terminal to the server device, for a predetermined suspended time from a message time related to each response message, and outputs a response message not containing the personal information in the response messages without suspending the response message not containing the personal information; a counter that counts the number of response messages related to a same request source and a same request destination in the suspended response message containing the personal information; and a response processor that, in a case where the number of the response messages counted by the counter exceeds a predetermined threshold value, applies a protection process to the suspended response message so the personal information contained in the suspended response message is not received by a client terminal serving as the request source.
-
Specification