发明授权
US08938511B2 Method and apparatus for detecting unauthorized bulk forwarding of sensitive data over a network
有权
用于检测通过网络的敏感数据的未经批准转发的方法和装置
- 专利标题: Method and apparatus for detecting unauthorized bulk forwarding of sensitive data over a network
- 专利标题(中): 用于检测通过网络的敏感数据的未经批准转发的方法和装置
-
申请号: US13494101申请日: 2012-06-12
-
公开(公告)号: US08938511B2公开(公告)日: 2015-01-20
- 发明人: Mihai Christodorescu , Josyula R. Rao , Reiner Sailer , Douglas Lee Schales
- 申请人: Mihai Christodorescu , Josyula R. Rao , Reiner Sailer , Douglas Lee Schales
- 申请人地址: US NY Armonk
- 专利权人: International Business Machines Corporation
- 当前专利权人: International Business Machines Corporation
- 当前专利权人地址: US NY Armonk
- 代理机构: Ryan, Mason & Lewis, LLP
- 主分类号: G06F15/16
- IPC分类号: G06F15/16 ; H04L12/58
摘要:
Methods and apparatus are provided for detecting unauthorized bulk forwarding of sensitive data over a network. A bulk forwarding of email from a first network environment is automatically detected by determining an arrival rate for internal emails received from within the first network environment into one or more user accounts; determining a sending rate for external emails sent from the one or more user accounts to a second network environment; and detecting the bulk forwarding of email from a given user account by comparing the arrival rate for internal emails and the sending rate for external emails. The bulk forwarding of email from a given user account can be detected by determining whether statistical models of the arrival rate for internal emails and of the sending rate for external emails are correlated in time.
公开/授权文献
信息查询
