US 11,899,818 B2
System and method for code-based protection of sensitive data
Chetan Conikee, Santa Clara, CA (US); Markus Lottmann, Berlin (DE); Fabian Yamaguchi, Berlin (DE); and Vlad A Ionescu, Menlo Park, CA (US)
Assigned to ShiftLeft Inc., Santa Clara, CA (US)
Filed by ShiftLeft Inc, Santa Clara, CA (US)
Filed on May 21, 2021, as Appl. No. 17/326,771.
Application 17/326,771 is a continuation of application No. 16/209,419, filed on Dec. 4, 2018, granted, now 11,074,362.
Claims priority of provisional application 62/594,368, filed on Dec. 4, 2017.
Prior Publication US 2021/0312082 A1, Oct. 7, 2021
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/62 (2013.01); G06F 21/52 (2013.01); G06F 21/57 (2013.01); G06F 40/216 (2020.01); G06F 40/30 (2020.01)
CPC G06F 21/6245 (2013.01) [G06F 21/52 (2013.01); G06F 21/577 (2013.01); G06F 40/216 (2020.01); G06F 40/30 (2020.01); G06F 2221/033 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method for monitoring and protecting sensitive data comprising:
identifying and characterizing sensitive data by processing a semantic description of data in an application code;
monitoring flow of the sensitive data during application runtime comprising:
identifying and characterizing sensitive data through data usage,
updating a characterization of the sensitive data based on data usage, and
enforcing security measures on the data according to the characterization of the sensitive data; and
responding to vulnerabilities of the sensitive data based on the characterization of the sensitive data.