Techniques for preventing large-scale data breaches utilizing differentiated protection layers
US9674202B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Dec 29, 2015 |
| Grant date | Jun 6, 2017 |
| Priority date | — |
| Expiry date | Dec 29, 2035 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/2107
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Techniques related to preventing large-scale data breaches utilizing differentiated data object (DO) protection layers are described. A security gateway placed within a communication path between client end stations and servers receives DO access requests from the client end stations. The DOs are divided into a first subset that are currently classified as active and a second subset that are currently classified as inactive based upon a likelihood of further legitimate access to the DOs. Those of the DO access requests for DOs determined to be in the first subset are subjected to a first protection layer utilizing zero or more protection mechanisms. Those of the plurality of DO access requests for DOs not in the first subset are subjected to a second protection layer utilizing one or more protection mechanisms. Large-scale data breaches are efficiently prevented without disruption to legitimate DO access requests.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.