Browse Prior Art Database

Method for Protecting Business internal Contents in Public, Personal, and Company Storage Space

IP.com Disclosure Number: IPCOM000240922D
Publication Date: 2015-Mar-12
Document File: 3 page(s) / 192K

Publishing Venue

The IP.com Prior Art Database

Abstract

A idea defines a method with ability to automatically protect the confidential contents from uploading to cloud storage through a client software installed on the system. The method is comprised of three major components: security file system classifier, cloud access monitor, and security cloud upload filter.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 51% of the total text.

Page 01 of 3

Method for Protecting Business internal Contents in Public , , Storage Space

In nowadays, cloud storage driver is very popular. Many employees installed third party cloud drivers (dropbox, or any kind of cloud storages) in their company devices or BYOD (Bring Your Own Device), and access confidential files and data. Then, a risk is that confidential files may be accidentally transferred and stored into the third party cloud driver. For instance, a person may simply save some of his company's confidential data into dropbox without any validation checks and alerts.

There are a lot discussions on cloud security control area (e.g. US20140143543A1, US20100257605A1), but there are few methods to prevent users to mistakenly put confidential files into a third party cloud drivers. Therefore, it is necessary to define efficient way to automatically protect confidential contents in public/personal/company storage space
This invention provides ability to automatically protect the confidential contents from uploading to cloud storage through a client software (Dropbox, Google Drive, OneDrive, etc.) installed on the system. The method is comprised of three major components: security file system classifier, cloud access monitor, and security cloud upload filter.

Security file system classifier is a real time file classification agent which can run in advance and real time to classify file security levels based on file accessing context, file contents, security bit, ACL, and security tag.

Cloud access monitor is an daemon program to identify the cloud client access event. And it is configurable to set multiple thresholds to warnvalidation cloud uploading activities.

Security cloud upload filter is routine to filter out any invalid cloud actions based on the setting of security profile. It can be a plug-in or integrated with cloud clients that protects/regulates uploading the business internal files.

FIG-1 is a general flowchart for describing the major idea.

1

,

Personal

Personal,

and Company

and Company


Page 02 of 3

Figure-1. Flowchart

The method can have following components and major steps on implementation level for managing the confidential...