| 发明名称 |
Apparatus for and Method of Preventing Unsecured Data Access |
| 摘要 |
Shown and depicted is preventing sensitive information from being exfiltrated from an organization using hypervisors. A Data Loss Prevention system is composed using virtual machines or domains to segment memory between domains which are assumed to be untrusted and domains which are known to be trusted. Sensitive information is cypher text when observed by software in Untrusted Domains, and clear text when observed by software in Trusted Domains. Sensitive information is unencrypted when it is in the address space of a protected process running inside a trusted domain. |
| 申请公布号 |
US2016196449(A1) |
申请公布日期 |
2016.07.07 |
| 申请号 |
US201615067311 |
申请日期 |
2016.03.11 |
| 申请人 |
Sikka Neil |
发明人 |
Sikka Neil |
| 分类号 |
G06F21/62;G06F21/60 |
主分类号 |
G06F21/62 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. Computer comprising a processor configured to:
execute a trusted domain and a process in the trusted domain that is executed in response to a request that is without an authentication protocol; prevent output of unsecured content from the trusted domain other than as necessary for user sensory stimulation; and one or both of: secure content from the trusted domain so as to be unsecurable only within a controlled environment; and unsecure content from data that is unsecurable only within a controlled environment. |
| 地址 |
Bethesda MD US |
