Collaborative data anti-leakage method and system

Abstract

The invention discloses a collaborative data anti-leakage method and system. The method comprises the following steps: collecting network traffic data generated by a host, and establishing and training a sensitive data model by combining a data anti-leakage strategy; capturing, by a terminal, the network traffic data generated by the host, and redirecting and sending the network traffic data to anoptimal access node; determining, by the access node, whether to establish an encrypted communication link with a target address according to the network traffic data; selecting, by the access node,an appropriate detection node according to the current operation status of a detection node and other reference data, and issuing a detection task; identifying, by the detection node, sensitive data in real time by combining a detection strategy with the sensitive data model, and feeding back the sensitive data to the access node; deciding, by the access node, whether to manage and control the network traffic data by combining the feedback result and a management and control strategy. By adoption of the technical scheme of the invention, the external sensitive data can be identified, managed and controlled in time, and the security protection ability of the data anti-leakage system on the data is improved.

Description

technical field [0001] The invention relates to the field of data security, in particular to a method and a system for a leakage system gateway and a terminal to jointly complete the analysis and detection of host encrypted network traffic. Background technique [0002] With the rapid development of computer science, the scope of application of Internet technology is becoming wider and wider, and the benefits brought by the interconnection of information systems to all walks of life are becoming more and more obvious. However, the ensuing data leakage problem has formed an obstacle to the widespread development of information and interconnection. As a security protection measure for the entire data life cycle, the data leakage prevention system also faces many challenges. Among them, the use of encrypted network traffic communication on the host side of the information system to avoid the detection and discovery of the data leakage prevention system has become an effective ...

AI Technical Summary

Problems solved by technology

[0008] To sum up, the existing data leakage prevention system has deficiencies in the analysis and detection of encrypted network traffic, that is, the gateway has low participation (cannot effectively analyze encrypted network traffic), terminal analysis ability is low (cannot analyze encrypted traffic content in depth), and collaborative Poor performance (the gateway and the terminal failed to effectively link to complete the data leakage prevention of encrypted traffic)

Among them, the terminal analysis capability can be realized by applying efficient data analysis algorithms, but in the scenario of high network traffic, it may occupy more host system resources, interfere with normal user operations, affect work efficiency, and restrict productivity

At the same time, this method has poor scalability and low resource usage efficiency.

Images