发明名称 |
Systems and methods for detecting attempts to transmit sensitive information via data-distribution channels |
摘要 |
The disclosed computer-implemented method for detecting attempts to transmit sensitive information via data-distribution channels may include (1) identifying an attempt to transmit a file through a data-distribution channel, (2) comparing, using an image-matching technique, the file with at least one known sensitive file that is both stored in an image format and protected by a data-loss-prevention policy, (3) determining, based on the results of the image-matching technique, that the file violates the data-loss-prevention policy, and (4) performing a security action in response to determining that the file violates the data-loss-prevention policy. Various other methods, systems, and computer-readable media are also disclosed. |
申请公布号 |
US9436821(B2) |
申请公布日期 |
2016.09.06 |
申请号 |
US201414483131 |
申请日期 |
2014.09.10 |
申请人 |
Symantec Corporation |
发明人 |
Antoun Ramzi Abi;Lindsay Michael |
分类号 |
H04K1/00;G06F21/50;G06F21/60;G06F21/62;H04L29/06 |
主分类号 |
H04K1/00 |
代理机构 |
ALG Intellectual Property, LLC |
代理人 |
ALG Intellectual Property, LLC |
主权项 |
1. A computer-implemented method for detecting attempts to transmit sensitive information via data-distribution channels, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising:
identifying an attempt to transmit a file through a data-distribution channel; comparing, using an image-matching technique, the file with a plurality of known sensitive files that are both stored in image formats and protected by a data-loss-prevention policy; comparing, using a finer image-matching technique that consumes more computing resources than the image-matching technique, the file and at least one known sensitive file from the plurality of known sensitive files that was not discarded by the image-matching technique; determining, based on the results of the finer image-matching technique, that the file violates the data-loss-prevention policy; performing a security action in response to determining that the file violates the data-loss-prevention policy. |
地址 |
Mountain View CA US |