Context-based Encryption Applied to Data Leakage Prevention Solutions

Data leakage pose a serious threat to companies as the number of leakage incidents and the cost continues to increase. Data Leakage Prevention (DLP) has been studied to solve this information leakage. We propose a DLP solution applying context-based encryption concept, thus sensitive files are encrypted at all time. The cipher key is obtained through the execution of challenges based in the environment context and the company policies. In this paper, we explain the architecture and the design of our DLP system and the proposed challenges.

[1]  Brent Waters,et al.  Attribute-based encryption for fine-grained access control of encrypted data , 2006, CCS '06.

[2]  Lior Rokach,et al.  A Survey of Data Leakage Detection and Prevention Solutions , 2012, SpringerBriefs in Computer Science.

[3]  Roy H. Campbell,et al.  Context and location-aware encryption for pervasive computing environments , 2006, Fourth Annual IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOMW'06).

[4]  Zhenfu Cao,et al.  Efficient Generation of Linear Secret Sharing Scheme Matrices from Threshold Access Trees , 2014 .

[5]  Sung-Min Oh,et al.  A Work in Progress: Context based Encryption Scheme for Internet of Things , 2015, FNC/MobiSPC.

[6]  Brent Waters,et al.  Ciphertext-Policy Attribute-Based Encryption: An Expressive, Efficient, and Provably Secure Realization , 2011, Public Key Cryptography.

[7]  Imad M. Abbadi,et al.  Preventing Insider Information Leakage for Enterprises , 2008, 2008 Second International Conference on Emerging Security Information, Systems and Technologies.