Unobtrusive protection for large-scale data breaches utilizing user-specific data object access budgets
US9674201B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Dec 29, 2015 |
| Grant date | Jun 6, 2017 |
| Priority date | — |
| Expiry date | Dec 29, 2035 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04W12/088
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Techniques for unobtrusively protecting against large-scale data breaches over time are described. A security gateway coupled between clients and servers receives data object (DO) access requests from the clients on behalf of users of an enterprise. Each of the users is allocated a budget for each of one or more time periods. The security gateway determines an access cost for each DO access request based on characteristics of the DO request, where lower access costs are indicative expected DO access consumption for users of the enterprise, and charges the determined access cost against the budget for that user corresponding to the time period when the DO access request was received. Alert messages are transmitted based on different ones of the users exceeding their budget(s), and the transmission of the DO access requests to the data object servers is not prevented.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.