| 发明名称 | Secure endpoint file export in a business environment | ||
| 摘要 | Embodiments for preventing data loss in a business environment are provided. In some embodiments, a secure endpoint file export application assigns users to different classes having different permissions for accessing and writing data. In an embodiment, the system and method are configured to identify a plurality of users in a business environment; classify the plurality of users according to business needs; assign the users to one of at least two classes based on the classification; determine that the first user is permitted to access the data; transmit the secure file to a second user who is permitted to write the data in the secure file to removable media; write the data in the secure file to the removable media; and track a location of the removable media. | ||
| 申请公布号 | US9378384(B2) | 申请公布日期 | 2016.06.28 |
| 申请号 | US201414480969 | 申请日期 | 2014.09.09 |
| 申请人 | Bank of America Corporation | 发明人 | Kurian Manu Jacob;Cismas Sorin N. |
| 分类号 | G06F17/30;G06F21/60;G06F21/62 | 主分类号 | G06F17/30 |
| 代理机构 | Moore & Van Allen PLLC | 代理人 | Springs Michael A.;Moore & Van Allen PLLC |
| 主权项 | 1. A system for preventing data loss in a business environment, whereby a secure endpoint file export application assigns users to different classes having different permissions for accessing and writing data, the system comprising: a computer apparatus including a processor and a memory; and a secure endpoint file export application stored in the memory, comprising executable instructions that when executed by the processor cause the processor to: identify a plurality of users logged into a secure endpoint file export application in a business environment;classify the plurality of users according to business needs;monitor the plurality of users logged into the secure endpoint file export application;assign the users to a class as the users logged into the secure endpoint file export application change, wherein the users are assigned to one of at least two classes based on the classification, wherein class A permits users to access the data but not write the data to removable media, andwherein class B permits users to write the data to removable media but not access the data;determine that a first user is attempting to access data on a secure file;determine that the first user is permitted to access the data on the secure file by comparing the identity of the user to a database comprising the plurality of users in the business environment and their respective classes;transmit the secure file to a second user who is permitted to write the data in the secure file to removable media;write the data in the secure file to the removable media; andtrack a location of the removable media. | ||
| 地址 | Charlotte NC US | ||