Data leakage prevention analysis method and system based on user behaviors and document contents

An anti-leakage and behavioral technology, applied in the field of data security, can solve problems such as poor practicability, and achieve the effect of reducing the false alarm rate, enhancing the ability of security management and control, and improving the degree of accuracy.

Inactive Publication Date: 2018-05-08
北京明朝万达科技股份有限公司
View PDF8 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Abnormal operation behavior involves multiple factors such as the operator's emotions and temporary changes in work. Therefore, if it is not considered in combination with other factors, the practicality must not be good.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Data leakage prevention analysis method and system based on user behaviors and document contents

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0033] The present invention proposes and implements a data leakage detection method that simultaneously considers data content and user behavior. This method can consider user behavior on the basis of matching data content, thereby greatly reducing the number of false positives of the data leakage prevention system.

[0034] The present invention will be further described below with reference to the drawings and specific embodiments, but the protection scope of the present invention is not limited to this.

[0035]

[0036] The dual monitoring mechanism based on user behavior and data content proposed by the present invention is aimed at the sensitivity detection requirements of enterprise data, and effectively reduces the false alarm rate of security events of the enterprise data leakage prevention system. This patent monitors the data content based on the theme model and the precise description matching model; the monitoring of user behavior is mainly analyzed from the aspects o...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a data leakage prevention analysis method and system based on user behaviors and document contents. The method includes the following steps: acquiring related data of mail sending behaviors of a user in a scheduled long time period and a scheduled short time period respectively, performing data averaging and normalization, and acquiring a long-term behavior data vector anda short-term behavior data vector of the user respectively; according to a comparison result between the vector distance between the long-term behavior data vector and the short-term behavior data vector of the user and a predetermined vector distance threshold, determining whether the mail sending behaviors of the user have abnormalities; for mails that are sent by the user and have abnormal behaviors, extracting mail content documents, and determining the subject categories of the documents; and selecting text accurate matching strategy rules associated with the categories according to the subject categories of the documents, and determining whether sensitive data exists in the documents. According to the technical scheme of the invention, the accuracy degree of the judgment of sensitivedata leakage events can be significantly improved, and the false alarm rate of performing judgment only through content matching can be effectively reduced.

Description

Technical field [0001] The invention relates to the field of data security, in particular to a data leakage prevention analysis method and system based on user behavior and document content. Background technique [0002] The main function of the enterprise data leakage prevention system is to prevent enterprise employees from sending out sensitive data. Therefore, accurately determining whether the data sent by employees is sensitive is the key to the data leakage prevention system. The traditional method is achieved by means of exact matching, such as the number of hits of keywords or regular expressions, which are often prone to many false positives. Therefore, the data leakage prevention system urgently needs to consider more factors to determine whether the outgoing data behavior of enterprise employees is a security incident. [0003] Comparative Literature 1 [0004] Publication No. 105357217A, Title of Invention: Data theft risk assessment method and system based on user be...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/58H04L29/06G06F21/62
CPCH04L63/1416H04L63/205G06F21/6218H04L51/42
Inventor 魏效征王志海喻波安鹏
Owner 北京明朝万达科技股份有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap