| CPC G06F 21/6254 (2013.01) [G06F 21/629 (2013.01)] | 17 Claims |
|
1. A method, comprising:
monitoring a presentation of data by a first application on a display;
determining that a portion of the data is restricted;
updating an identity of one or more users in real time;
wherein determining that the portion of the data is restricted comprises:
determining a restriction level for each of the one or more users; and
updating the portion of the data that is restricted based on a highest restriction level of the one or more users;
masking, in real time, with an operating system, the presentation of the portion of the data that is restricted,
wherein the masking, in real time, prevents the one or more users interaction with the portion of the data that is restricted,
wherein unmasked data is provided by an organization to the one or more users,
wherein determining the unmasked data comprises identifying one or more users that are viewing the portion of the data based on biometric data;
wherein the masking, in realtime, comprises:
preventing the one or more users interaction with restricted data provided by the organization while continuing to present the unmasked data on the display, the one or more users being an individual who is restricted from viewing the restricted data,
wherein the monitoring, determining, and masking in real time are implemented as a layer of the operating system,
wherein the layer contains one or more application windows that are monitored by a screen parser,
wherein the screen parser routes the presentation of data to the operating system; and
wherein the method comprises specifying, by an administrator, a ruleset for determining if the portion of the data is restricted.
|