| 发明名称 | Methods and systems for active data security enforcement during protected mode use of a system | ||
| 摘要 | Systems and method are provided for enforcing data security. One example method includes receiving user identification information from a screen of a device that is connectable to a database of secure information. The method includes authenticating the user identification information. The authenticating includes capturing image data of a user associated with the user identification information. The method provides access to the database of secure information upon authenticating the user identification information, such that while the access is provided the capturing of the image data of the user is maintained. The method includes recording data of user interactive input and viewed images displayed on the screen while the access provided. The method disables the access to the database of secure information upon detecting a predefined security enforcement violation associated with an activity by the user during access to the database. The method being executed by a processor. | ||
| 申请公布号 | US9053335(B2) | 申请公布日期 | 2015.06.09 |
| 申请号 | US201313830527 | 申请日期 | 2013.03.14 |
| 申请人 | NSS Lab Works LLC | 发明人 | Sambamurthy Namakkal S.;Krishnan Parthasarathy |
| 分类号 | G06F21/60;G06F21/62;G06F21/55;G06F21/84;G06F21/31;G06F21/32 | 主分类号 | G06F21/60 |
| 代理机构 | Martine Penilla Group, LLP | 代理人 | Martine Penilla Group, LLP |
| 主权项 | 1. A method for enforcing data security, comprising: receiving user identification information from a screen of a device that is connectable to a database of secure information, the database being stored on a non-transitory computer readable medium; receiving captured image data of a user associated with the user identification information; authenticating the user initially based on the received identification information and the received captured image data; providing access to the database, during a session, of secure information upon authenticating the user, and re-authenticating the user while the access is provided during the session, the re-authenticating occurring one or more times during the session and being based on analysis of captured image data received after the initial authentication and during the session; and recording data of user interactive input, viewed images displayed on the screen, and captured image data corresponding to the user interactive input and viewed images while the access is provided; monitoring the user interactive input and viewed images displayed to identify activities of the user for accessing the database while the access is provided; and disabling the access to the database of secure information when the monitoring identifies a predefined security enforcement violation associated with an activity by the user during access to the database, wherein rules are assigned to the user to enable detection of the predefined security enforcement violation for the activities of the user, wherein the re-authenticating occurring one or more times during the session includes periodically performing the re-authentication or continuously performing the re-authentication during the session and the method being executed by a processor. | ||
| 地址 | Saratoga CA US | ||