Patent application number | Description | Published |
20100070518 | METHOD FOR PROTECTING PRIVATE INFORMATION AND COMPUTER-READABLE RECORDING MEDIUM STORING PROGRAM FOR EXECUTING THE SAME - Provided are a method for protecting private information and a computer-readable recording medium storing program for the same. The method may include defining a pattern corresponding to the private information, automatically searching whether the private information is included in the file and the mail stored in a personal computer, according to predetermined intervals on the basis of the pattern, and performing an information protecting operation when the file or the mail including the private information is searched. | 03-18-2010 |
20130163030 | METHOD, SYSTEM, AND TERMINAL FOR PRINTED MATTER SECURITY - Disclosed are a system and a method for printed matter security. A method for printed matter security according to an exemplary embodiment of the present invention includes: receiving policy information, information of a monitoring application program, and pattern information of personal information from a security server; inserting a printing interruption module in the monitoring application program when the monitoring application program corresponding to the information of the application program is executed; storing a content of a printing request by interrupting the printing request of the monitoring application program by the printing interruption module; verifying whether the personal information is included in the content of the printing request, using the pattern information; and performing an information protection function corresponding to the policy information when the personal information is included in the content of the printing request. | 06-27-2013 |
20130166981 | APPARATUS AND SECURITY SYSTEM FOR DATA LOSS PREVENTION, AND OPERATING METHOD OF DATA LOSS PREVENTION APPARATUS - Disclosed are a DLP security system and an operating method thereof. An operating method of a data loss prevention (DLP) apparatus, comprising: converting, into packets, Ethernet signals received from a fail over device that are transmitted and received between an external network and internal network; analyzing the packets to classify the packets into first packets required to be precisely judged and second packets not required to be precisely judged; distributing and allocating a judgment job about the first packet to at least one in-line instance according to a predetermined reference; and allocating the judgment job distributed to the in-line instance in which a fail occurs to the in-line instance which is normally operated when it is verified whether there is an in-line instance which is normally operated in the case where the fail occurs in the at least one in-line instance. | 06-27-2013 |
20140089496 | APPARATUS AND METHOD FOR MONITORING WEB APPLICATION TELECOMMUNICATION DATA BY USER - Provided are an apparatus and method for monitoring web application telecommunication data by user. An information identification apparatus includes a collector collecting web application telecommunication data transmitted and received between a web server and a web client; a storage storing an identification information profile about a method of extracting user identification information by web server; and an extractor selecting user login-related web application telecommunication data among the web application telecommunication data with reference to the identification information profile, extracting a [web server address, login session identification information, and user identification information] list from the selected web application telecommunication data, extracting at least one piece of information of the web server address and the login session identification information from the web application telecommunication data after the user login, and determining whether the extracted information is matched with at least one piece of information in the list. | 03-27-2014 |
20140101751 | HARDWARE ENGINE FOR HIGH-CAPACITY PACKET PROCESSING OF NETWORK BASED DATA LOSS PREVENTION APPLIANCE - Provided is a network-based data loss prevention (DLP) system. The network-based DLP system includes a FPGA engine including a pattern matcher and a MCP engine including a session list filter. The a pattern matcher hash-processes a payload of an input packet in units of a certain size, compares a pre-stored pattern and the hash-processed packet, checks a matching rule ID and an upload channel ID corresponding to the pre-stored pattern when there is a match therebetween, adds tagging information to a header of the input packet, and outputs the packet. The session list filter receives the packet with the tagging information added thereto, and performs pre-registered processing on the pre-registered session, or passes the received packet. The processor uploads, forwards, or drops the received packet in correspondence with the matching rule ID. | 04-10-2014 |
20140108755 | MOBILE DATA LOSS PREVENTION SYSTEM AND METHOD USING FILE SYSTEM VIRTUALIZATION - Disclosed are a mobile DLP system and method. The mobile DLP system includes a general storage that allows an access in a normal mode and a security mode, an encrypted virtual storage that disallows an access in the normal mode and allows an access in the security mode, a management program that designates the general storage as a write/read area in the normal mode and designates the general storage and the virtual storage as the write/read area in the security mode, a fuse that intercepts a file input/output of an application program including the management program to again set a file input/output path as the virtual storage according to a command of the management program in the security mode, and a VFS engine that performs a bridge function between the application program of an application layer and the fuse of a kernel layer. | 04-17-2014 |
20140157426 | PERSONAL INFORMATION PROTECTION SYSTEM FOR PROVIDING SPECIALIZED FUNCTION FOR HOST TERMINAL BASED ON UNIX AND LINUX - Provided are an information protection apparatus and system. The information protection apparatus based on Windows, Unix, or Linux includes a first check unit, a second check unit, and a security measure unit. The first check unit checks whether there is a file including monitoring information among a plurality of check target files in a local storage area, according to a predetermined check policy. The second check unit checks whether there is a file including the monitoring information among the check target files in a sharing storage area of a file system that is shared in a network drive type in an NFS scheme. The security measure unit performs a security measure conforming to a predetermined security policy for the file including the monitoring information. | 06-05-2014 |