FIELD: physics, computer engineering.
SUBSTANCE: invention relates to the protection of computing devices and end user data from unauthorised access. A system for applying file access rules during transfer thereof between computers comprises 1) means of determining the rules set on a local computer, designed to: intercept remote computer user requests to gain access to a local computer file; determine parameters of at least the following objects: remote computer user, file, remote computer; wherein the remote computer parameters include at the least the following: factors determining, for each disk, whether the disk is encrypted; security level, which depends on at least one of the following parameters: the date of the last antivirus database update, the presence of open vulnerabilities on the computer, the date of the last antivirus scan, results of the last antivirus scan, the list of applications installed on the computer; the disk encryption type, which assumes one of the two values: disk file encryption, overall disk encryption; determine an access rule using an access policy database based on the said determined parameters, wherein the said access rule is one of the following: denying access, granting transparent access to an encrypted file, providing encrypted files in the form of a cipher text; sending the access rule to the means of applying access rules installed on the remote computer; 2) the said means of applying access rules is linked to the means of determining access rules and is designed to apply the said determined access rule to a local computer file depending on the set parameters of the objects; 3) the said access policy database, containing the local computer file access rules for the remote computer depending on the parameters of the objects.
EFFECT: high level of protection of information from unauthorised access by applying file access rules during transfer thereof between computers.
23 cl, 5 dwg, 1 tbl
| Title | Year | Author | Number |
|---|---|---|---|
| SYSTEM AND METHOD OF PROVIDING APPLICATION ACCESS RIGHTS TO COMPUTER FILES | 2013 |
|
RU2546585C2 |
| SYSTEM AND METHOD OF ENCODING FILES FROM ENCRYPTED DRIVE | 2013 |
|
RU2559728C2 |
| SYSTEM AND METHOD OF AUTOMATIC DEPLOYMENT OF THE ENCRYPTION SYSTEM FOR USERS WHO PREVIOUSLY WORKED ON PC | 2013 |
|
RU2618684C2 |
| METHOD FOR RESTRICTION OF ACCESS TO DATA USING ATTRIBUTE-BASED ENCRYPTION | 2022 |
|
RU2804040C1 |
| SYSTEM AND METHOD OF USING SECURITY POLICY TO STORAGE IN NETWORK | 2014 |
|
RU2581559C2 |
| SYSTEM AND METHOD OF ANALYZING CONTENT OF ENCRYPTED NETWORK TRAFFIC | 2018 |
|
RU2706894C1 |
| SYSTEM AND METHOD FOR OPTIMISING EXECUTION OF ANTIVIRUS TASKS IN LOCAL AREA NETWORK | 2010 |
|
RU2453917C1 |
| FULL-DISK ENCRYPTION MODULE UPDATE INSTALLATION METHOD | 2015 |
|
RU2623887C2 |
| SYSTEM AND METHOD OF FULL DISK CODING WITH CHECK OF LOADING DISK COMPATIBILITY | 2014 |
|
RU2571724C2 |
| METHOD AND SYSTEM FOR AUTOMATIC LICENSE MANAGEMENT | 2013 |
|
RU2587422C2 |
