公开(公告)号：US20240078333A1

公开(公告)日：2024-03-07

申请号：US18332671

申请日：2023-06-09

申请人： NextLabs, Inc.

发明人： Keng Lim ,  Poon Fung

IPC分类号： G06F21/62 ,  G06F16/2455

CPC分类号： G06F21/6227 ,  G06F16/24553

摘要： A method and system of masking, redacting, filtering, and encrypting data retrieved from or stored into a database using policies in an information management system. The system comprises application, data protection, and database components. A data protection component is placed between an application component and a database component to provide protection to data in a database by applying data access policies to requests sent from the application component to the database component.

公开(公告)号：US11797703B1

公开(公告)日：2023-10-24

申请号：US17449237

申请日：2021-09-28

申请人： NextLabs, Inc.

发明人： Keng Lim ,  Poon Fung

IPC分类号： G06F21/62 ,  G06F21/60

CPC分类号： G06F21/6218 ,  G06F21/602 ,  G06F21/604

摘要： A technique and system protects documents at rest and in motion using declarative policies, access rights, and encryption. Methods, techniques, and systems control access to documents and use of content in documents to support information management policies.

公开(公告)号：US20210312584A1

公开(公告)日：2021-10-07

申请号：US17353687

申请日：2021-06-21

申请人： NextLabs, Inc.

发明人： Keng Lim ,  Poon Fung

IPC分类号： G06T1/00 ,  G06F3/14 ,  G09G5/14 ,  G09G5/397 ,  G09G5/399 ,  G06T11/00 ,  G06F21/84

摘要： A method and system of augmenting display content in a graphical user interface environment. Content produced by a graphical user interface is augmented with additional content before the content is displayed. In an example, a security marker may be rendered on top of an existing display content using the method described to protect high-value or sensitive information.

公开(公告)号：US11057355B2

公开(公告)日：2021-07-06

申请号：US16781990

申请日：2020-02-04

申请人： NextLabs, Inc.

发明人： Keng Lim ,  Poon Fung ,  Andrew Han

IPC分类号： G06F21/00 ,  H04L9/00 ,  G06F21/60 ,  G06F21/62 ,  H04L29/06 ,  H04L9/08 ,  H04L12/58

摘要： A system protects documents at rest and in motion using declarative policies and encryption. A document at rest includes documents on a device such as the hard drive of a computer. A document in motion is a document that is passing through a policy enforcement point. The policy enforcement point can be a server (e.g., mail server, instant messenger server, file server, or network connection server).

公开(公告)号：US10911223B2

公开(公告)日：2021-02-02

申请号：US16730996

申请日：2019-12-30

申请人： NextLabs, Inc.

发明人： Keng Lim ,  Poon Fung

IPC分类号： H04L9/08 ,  H04L29/06 ,  G06F21/60 ,  G06F21/62

摘要： A method and system of creating and managing encryption keys that facilitates sharing of encrypted content. The system may include an information management system with a key management server and a computing device having an encryption service module. The encryption service module detects operations at the computing device and encrypts a document with an encryption key created using user information and a secret.

公开(公告)号：US10592683B1

公开(公告)日：2020-03-17

申请号：US15957878

申请日：2018-04-19

申请人： NextLabs, Inc.

发明人： Keng Lim ,  Poon Fung

IPC分类号： H04L29/06 ,  G06F21/62 ,  G06F21/60 ,  G06F16/958 ,  H04L29/08 ,  G06F17/22 ,  G06F16/93 ,  G06F16/9535

摘要： A technique and system provide protection to information or documents via an authorization policy that is applied to multiple application programs and authorization requests are submitted through a REST API over HTTP or HTTPS. Methods, techniques, and systems control access to protected information or documents and use of content in protected information or documents to support information management policies.

公开(公告)号：US10536485B2

公开(公告)日：2020-01-14

申请号：US15352522

申请日：2016-11-15

申请人： NextLabs, Inc.

发明人： Keng Lim

IPC分类号： H04L29/06 ,  G06F21/51 ,  G06F9/46 ,  G06F21/00 ,  G06F21/62 ,  H04L12/24 ,  G06F21/55

摘要： A method and apparatus for controlling document access and application usage using centrally managed rules. The rules are stored and manipulated in a central rule database via a rule server. Policy enforcers are installed on client systems and/or on servers and perform document access and application usage control for both direct user document accesses and application usage, and application program document accesses by evaluating the rules sent to the policy enforcer. The rule server decides which rules are required by each policy enforcer. A policy enforcer can also perform obligation and remediation operations as a part of rule evaluation. Policy enforcers on client systems and servers can operate autonomously, evaluating policies that have been received, when communications have been discontinued with the rule server.

公开(公告)号：US10181047B2

公开(公告)日：2019-01-15

申请号：US14798388

申请日：2015-07-13

申请人： NextLabs, Inc.

发明人： Keng Lim

IPC分类号： G06F21/62 ,  G06F17/30 ,  G06F21/60 ,  G06Q10/06 ,  G06Q10/10 ,  H04L12/24 ,  H04L29/06 ,  G06F11/30 ,  H04L29/08 ,  G06F21/31 ,  H04L12/58

摘要： An information management system approves or denies user requests to access information of the system. The information includes all types of information including documents and e-mail. The information management system is driven using a policy language having policies and policy abstractions. The information management system may approve or deny many different types of requests including opening a document or file, copying a file, printing a file, sending an e-mail, reading an e-mail, cut and paste of a portion of a document, saving a document, executing an application on a file, and many others.

公开(公告)号：US10104125B2

公开(公告)日：2018-10-16

申请号：US15199634

申请日：2016-06-30

申请人： NextLabs, Inc.

发明人： Keng Lim

IPC分类号： G06F17/00 ,  H04L29/06 ,  G06F21/62

摘要： A method and apparatus for controlling document access and application usage using centrally managed rules. The rules are stored and manipulated in a central rule database via a rule server. Policy enforcers are installed on client systems and/or on servers and perform document access and application usage control for both direct user document accesses and application usage, and application program document accesses by evaluating the rules sent to the policy enforcer. The rule server decides which rules are required by each policy enforcer. A policy enforcer can also perform obligation and remediation operations as a part of rule evaluation. Policy enforcers on client systems and servers can operate autonomously, evaluating policies that have been received, when communications have been discontinued with the rule server.

公开(公告)号：US20180248855A1

公开(公告)日：2018-08-30

申请号：US15968664

申请日：2018-05-01

申请人： NextLabs, Inc.

发明人： Keng Lim ,  Poon Fung ,  Andrew Han

IPC分类号： H04L29/06 ,  G06F21/60 ,  H04L12/58 ,  H04L9/08 ,  G06F21/62

CPC分类号： H04L63/0428 ,  G06F21/602 ,  G06F21/606 ,  G06F21/6218 ,  H04L9/0822 ,  H04L9/083 ,  H04L51/08 ,  H04L63/0457 ,  H04L63/06 ,  H04L63/107 ,  H04L63/20 ,  H04L67/42 ,  H04L2209/60

摘要： A system protects documents at rest and in motion using declarative policies and encryption. A document at rest includes documents on a device such as the hard drive of a computer. A document in motion is a document that is passing through a policy enforcement point. The policy enforcement point can be a server (e.g., mail server, instant messenger server, file server, or network connection server).