公开(公告)号：US09740877B2

公开(公告)日：2017-08-22

申请号：US14862086

申请日：2015-09-22

Applicant: GOOGLE INC.

Inventor： Ivan Medvedev

IPC: H04L29/06 ,  G06F21/62 ,  G06F21/60 ,  H04L9/30 ,  H04W12/02 ,  H04W12/12

CPC classification number: G06F21/6218 ,  G06F21/602 ,  G06F21/6245 ,  H04L9/14 ,  H04L9/302 ,  H04L63/0428 ,  H04L63/0478 ,  H04L63/1416 ,  H04W12/02 ,  H04W12/12

Abstract: Systems and methods for data loss prevention while preserving privacy are described, including receiving a data communication originating from an online account of a user device associated with the enterprise; performing an analysis to determine that the data communication is a candidate data leakage, based on a context of the data communication; encrypting the data communication, and providing the host-encrypted data communication to a software agent at the enterprise; receiving a software agent-encrypted database of enterprise communication and the host-encrypted data communication, re-encrypted by the software agent; decrypting a host-encrypted aspect of the re-encrypted data communication to generate a software agent-encrypted data communication; performing a matching operation to determine whether a match exists between the encrypted database of information and the software agent-encrypted data communication; if the match exists, reporting the match to the software agent; and if the match does not exist, the host taking an action.

公开(公告)号：US09177174B1

公开(公告)日：2015-11-03

申请号：US14174723

申请日：2014-02-06

Applicant: GOOGLE INC.

Inventor： Garth Shoemaker ,  Ivan Medvedev

IPC: G06F21/00 ,  G06F21/62

CPC classification number: G06F21/6245 ,  G06F21/6227 ,  G06F21/6254 ,  H04L63/08 ,  H04L63/108

Abstract: Systems and methods for protecting sensitive data in communications are described, including identifying first information in content created by a user for a communication; sending the first information to a vault; receiving, from the vault, an identifier associated with the first information; replacing the first information in the content with second information that is associated with the first information and does not provide any indication of the content of the first information; and sending the communication comprising the content with the second information and the identifier.

Abstract translation: 描述了用于保护通信中的敏感数据的系统和方法，包括识别由用户为通信创建的内容中的第一信息; 将第一个信息发送到保险库; 从所述保管库接收与所述第一信息相关联的标识符; 用与第一信息相关联的第二信息替换内容中的第一信息，并且不提供关于第一信息的内容的任何指示; 以及发送包含所述内容的所述通信与所述第二信息和所述标识符。

公开(公告)号：US20170048245A1

公开(公告)日：2017-02-16

申请号：US14824873

申请日：2015-08-12

Applicant: Google Inc.

Inventor： Russell Owen ,  Ivan Medvedev ,  Garth Shoemaker ,  Andrew Swerdlow ,  Yevgeniy Eugene Shteyn ,  Amanda Elwell Walker

IPC: H04L29/06 ,  G06F17/30

CPC classification number: H04L63/10 ,  G06F17/30864 ,  G06F21/6227 ,  G06F21/6245 ,  G06F21/6272 ,  H04L63/0428 ,  H04L63/0471 ,  H04L63/061 ,  H04W12/02

Abstract: Systems and methods for managing privacy settings of shared content include receiving content associated with an object; receiving privacy settings associated with the object associated with the received content; based on the received privacy settings, obfuscating, at least a portion of the content associated with the object to generated obfuscated content; and transmitting the obfuscated content to a publishing server, wherein the publishing server publishes the obfuscated content to one or more third parties.

Abstract translation: 用于管理共享内容的隐私设置的系统和方法包括：接收与对象相关联的内容; 接收与所接收的内容相关联的对象相关联的隐私设置; 基于接收到的隐私设置，模糊与对象相关联的内容的至少一部分以产生混淆内容; 以及将所述混淆内容发送到发布服务器，其中所述发布服务器将所述混淆内容发布到一个或多个第三方。

公开(公告)号：US20170213041A1

公开(公告)日：2017-07-27

申请号：US15004586

申请日：2016-01-22

Applicant: GOOGLE INC.

Inventor： Ivan Medvedev

IPC: G06F21/60 ,  H04L9/30 ,  H04L29/06

CPC classification number: G06F21/602 ,  G06F21/60 ,  H04L9/008 ,  H04L9/0894 ,  H04L9/30 ,  H04L63/02 ,  H04L63/0428 ,  H04L67/02 ,  H04L2209/08 ,  H04W12/02

Abstract: Systems and methods for privacy-preserving data loss detection include performing a sweep of online information for a candidate data leakage to generate an online data set; performing an analysis of the online data set to determine that the online information is a candidate data leakage; the host encrypting the data communication and providing the host-encrypted data communication to a software agent at the enterprise; in response to receiving the host-encrypted data communication, the software agent encrypting a database of enterprise information and re-encrypting the host-encrypted data communication, and providing the same to the host; the host decrypting a host-encrypted aspect of the re-encrypted data communication to generate a software agent-encrypted data communication; determining whether a match exists between the encrypted database of information and the software agent-encrypted data communication; and based on whether the match exists, the software agent taking a first action or the host taking a second action.

公开(公告)号：US20170083717A1

公开(公告)日：2017-03-23

申请号：US14862086

申请日：2015-09-22

Applicant: GOOGLE INC.

Inventor： Ivan Medvedev

IPC: G06F21/62 ,  G06F21/60 ,  H04L29/06

CPC classification number: G06F21/6218 ,  G06F21/602 ,  G06F21/6245 ,  H04L9/14 ,  H04L9/302 ,  H04L63/0428 ,  H04L63/0478 ,  H04L63/1416 ,  H04W12/02 ,  H04W12/12

Abstract: Systems and methods for data loss prevention while preserving privacy are described, including receiving a data communication originating from an online account of a user device associated with the enterprise; performing an analysis to determine that the data communication is a candidate data leakage, based on a context of the data communication; encrypting the data communication, and providing the host-encrypted data communication to a software agent at the enterprise; receiving a software agent-encrypted database of enterprise communication and the host-encrypted data communication, re-encrypted by the software agent; decrypting a host-encrypted aspect of the re-encrypted data communication to generate a software agent-encrypted data communication; performing a matching operation to determine whether a match exists between the encrypted database of information and the software agent-encrypted data communication; if the match exists, reporting the match to the software agent; and if the match does not exist, the host taking an action.

公开(公告)号：US09830463B2

公开(公告)日：2017-11-28

申请号：US15004586

申请日：2016-01-22

Applicant: GOOGLE INC.

Inventor： Ivan Medvedev

IPC: G06F21/60 ,  H04L29/06 ,  H04L9/30

CPC classification number: G06F21/602 ,  G06F21/60 ,  H04L9/008 ,  H04L9/0894 ,  H04L9/30 ,  H04L63/02 ,  H04L63/0428 ,  H04L67/02 ,  H04L2209/08 ,  H04W12/02

Abstract: Systems and methods for privacy-preserving data loss detection include performing a sweep of online information for a candidate data leakage to generate an online data set; performing an analysis of the online data set to determine that the online information is a candidate data leakage; the host encrypting the data communication and providing the host-encrypted data communication to a software agent at the enterprise; in response to receiving the host-encrypted data communication, the software agent encrypting a database of enterprise information and re-encrypting the host-encrypted data communication, and providing the same to the host; the host decrypting a host-encrypted aspect of the re-encrypted data communication to generate a software agent-encrypted data communication; determining whether a match exists between the encrypted database of information and the software agent-encrypted data communication; and based on whether the match exists, the software agent taking a first action or the host taking a second action.