Action to minimise data loss based on current and previous access policy violations

Action to minimise data loss based on current and previous access policy violations

In an arrangement for safeguarding sensitive information, a user attempt to perform an operation to move data off a computing device is detected 205 as the result of a DLP (data loss prevention) policy violation. Optionally, the data is scanned 210 to ascertain whether the data actually includes sen...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
1. Verfasser: IAN BARILE
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In an arrangement for safeguarding sensitive information, a user attempt to perform an operation to move data off a computing device is detected 205 as the result of a DLP (data loss prevention) policy violation. Optionally, the data is scanned 210 to ascertain whether the data actually includes sensitive information 215 and/or whether the user is authorised to perform the operation 220. The DLP policy that has been contravened is determined 225 and, preferably, the current infringement is stored 230 in a policy violation record. The presence of any previous policy violation for the device is determined 235 - previous violations also preferably being stored in the policy violation record - and an action is performed to minimise a risk of data loss. If there are no previous violations, the action 240 may be based on a response rule associated 232 with the current violation alone. However, if there are previous violations, the action 245 may also be based on a response rule associated 243 with the previous violations.