Data leak protection in upper layer protocols
US9225734B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Sep 10, 2014 |
| Grant date | Dec 29, 2015 |
| Priority date | — |
| Expiry date | Sep 10, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/168
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Methods and systems for Data Leak Prevention (DLP) in a private network are provided. According to one embodiment, a data packet is received by a network security appliance. The data packet is originated by a first networking device within a network protected by the network security appliance and is directed to a second networking device that is outside the network. The data packet is decoded in accordance with an upper layer protocol through which the data packet is being transmitted. A command, request or method of the upper layer protocol that is specified by or represented by the data packet is determined. A field of the command, request or method, which is not designed for carrying a message or a file, is scanned for sensitive or confidential information based on a sensor rule. When the scanning results in a match, then an action associated with the sensor rule is performed.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.