Method, apparatus, and system for data protection
First Claim
1. A data loss prevention (DLP) server deployed in a local area network of an enterprise, the DLP server comprising:
- a receiver configured to receive outgoing data, a user grade, and a credit value from a proxy server deployed at a border between the local area network and an external network, wherein the outgoing data is sent by a user in the enterprise to the external network and carries an identifier of the user,wherein the user grade is determined based on an administrative grade of the user, a department of the user, a job category of the user, or a probability that the user is exposed to internal sensitive data of the enterprise, wherein the user grade comprises one or more of;
an exempted from inspection grade, an inspection grade corresponding to an inspection algorithm for inspecting the outgoing data, or an outgoing permission prohibition grade, andwherein the credit value is a violation percentage of historical outgoing data of the user calculated based on a number of times that historical outgoing data of the user passes a security inspection and a number of times that historical outgoing data of the user fails the security inspection;
a processor coupled to the receiver;
a memory coupled to the processor and configured to store instructions that when executed by the processor cause the DLP server to;
inspect security of the outgoing data based on the user grade and the credit value, wherein inspecting security of the outgoing data when the user grade comprises the inspection grade comprises;
selecting the inspection algorithm based on a specific grade of the inspection grade;
restoring the outgoing data based on a preset restoration policy; and
using the inspection algorithm to inspect restored outgoing data with reference to the credit value; and
generate a message comprising an inspection result, wherein the inspection result comprises either a pass or a fail; and
a transmitter configured to send, to the proxy server, the message comprising the inspection result.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, an apparatus, and a system for data protection. A specific solution is: a proxy server receives outgoing data from a user terminal, where the outgoing data carries an identifier of a user; acquires a user grade and a credit value of the user from a credit server according to the identifier, where the credit value is a violation percentage of historical outgoing data of the user; sends the outgoing data, the user grade, and the credit value to a DLP server so that the DLP server inspects security of the outgoing data according to the user grade and the credit value, and further generates a message including an inspection result; and receives, from the DLP server, the message including the inspection result and uses a policy corresponding to the inspection result to process the outgoing data. The present invention is used during a protection process of outgoing data.
-
Citations
13 Claims
-
1. A data loss prevention (DLP) server deployed in a local area network of an enterprise, the DLP server comprising:
-
a receiver configured to receive outgoing data, a user grade, and a credit value from a proxy server deployed at a border between the local area network and an external network, wherein the outgoing data is sent by a user in the enterprise to the external network and carries an identifier of the user, wherein the user grade is determined based on an administrative grade of the user, a department of the user, a job category of the user, or a probability that the user is exposed to internal sensitive data of the enterprise, wherein the user grade comprises one or more of;
an exempted from inspection grade, an inspection grade corresponding to an inspection algorithm for inspecting the outgoing data, or an outgoing permission prohibition grade, andwherein the credit value is a violation percentage of historical outgoing data of the user calculated based on a number of times that historical outgoing data of the user passes a security inspection and a number of times that historical outgoing data of the user fails the security inspection; a processor coupled to the receiver; a memory coupled to the processor and configured to store instructions that when executed by the processor cause the DLP server to; inspect security of the outgoing data based on the user grade and the credit value, wherein inspecting security of the outgoing data when the user grade comprises the inspection grade comprises; selecting the inspection algorithm based on a specific grade of the inspection grade; restoring the outgoing data based on a preset restoration policy; and using the inspection algorithm to inspect restored outgoing data with reference to the credit value; and generate a message comprising an inspection result, wherein the inspection result comprises either a pass or a fail; and a transmitter configured to send, to the proxy server, the message comprising the inspection result. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A data protection method implemented by a data loss prevention (DLP) server deployed in a local area network of an enterprise, the method comprising:
-
receiving outgoing data, a user grade, and a credit value from a proxy server that deployed at a border between the local area network and an external network, wherein the outgoing data is sent by a user in the enterprise to the external network and carries an identifier of the user, wherein the user grade is determined based on an administrative grade of the user, a department of the user, a job category of the user, or a probability that the user is exposed to internal sensitive data of the enterprise, wherein the user grade comprises one or more of; an exempted from inspection grade, an inspection grade corresponding to an inspection algorithm for inspecting the outgoing data, or an outgoing permission prohibition grade, and wherein the credit value is a violation percentage of historical outgoing data of the user calculated based on a number of times that historical outgoing data of the user passes the security inspection and a number of times that historical outgoing data of the user fails the security inspection; inspecting security of the outgoing data based on the user grade and the credit value, wherein inspecting the security of the outgoing data when the user grade comprises the inspection grade comprises; selecting the inspection algorithm based on a specific grade of the inspection grade; restoring the outgoing data based on a preset restoration policy; and using the inspection algorithm to inspect restored outgoing data with reference to the credit value; generating a message comprising an inspection result, wherein the inspection result comprises either a pass or a fail; and sending, to the proxy server, the message comprising the inspection result. - View Dependent Claims (10, 11, 12, 13)
-
Specification