System and method for adding context to prevent data leakage over a computer network
First Claim
Patent Images
1. A system for preventing unauthorized transmission of data over a computer network, the system comprising:
- a network gateway device in communication with the computer network, the network gateway device configured to receive data in transit between a source and a destination, wherein the network gateway device comprises;
a classification module configured to determine whether the data in transit includes prohibited content,a context information module configured to generate destination contextual information related to the destination of the received data, wherein the destination contextual information comprises a categorization of an Internet Protocol (IP) address of the destination, and wherein the categorization of the IP address of the destination is based at least in part on website content stored at the destination, anda transmission policy module configured to determine a transmission policy based on the determination of the classification module and the destination contextual information.
8 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for adding context to prevent data leakage over a computer network are disclosed. Data is classified and contextual information of the data is determined. A transmission policy is determined in response to the classification and contextual information. The data is either transmitted or blocked in response to the classification and the contextual information.
202 Citations
18 Claims
-
1. A system for preventing unauthorized transmission of data over a computer network, the system comprising:
-
a network gateway device in communication with the computer network, the network gateway device configured to receive data in transit between a source and a destination, wherein the network gateway device comprises; a classification module configured to determine whether the data in transit includes prohibited content, a context information module configured to generate destination contextual information related to the destination of the received data, wherein the destination contextual information comprises a categorization of an Internet Protocol (IP) address of the destination, and wherein the categorization of the IP address of the destination is based at least in part on website content stored at the destination, and a transmission policy module configured to determine a transmission policy based on the determination of the classification module and the destination contextual information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of preventing an unauthorized transmission of data over a computer network, the method comprising:
-
receiving, at a network gateway device connected to the computer network, data in transit between a source and a destination; classifying, using one or more electronic processing circuits, the data to determine whether the data includes prohibited content; generating, using the one or more electronic processing circuits, destination contextual information related to the destination of the data, wherein the destination contextual information comprises a categorization of an Internet Protocol (IP) address of the destination, wherein the categorization of the IP address of the destination is based on website content stored at the destination; and determining, using the one or more electronic processing circuits, a transmission policy for the data in response to the classification of the data and the destination contextual information. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
Specification