US 12,137,125 B2
Classification-based data privacy and security management
Nagendra Kumar Nainar, Morrisville, NC (US); Vinay Saini, Karnatka (IN); Akram Sheriff, Newark, CA (US); Rajesh Indira Viswambharan, Karnataka (IN); and David John Zacks, Vancouver (CA)
Assigned to Cisco Technology, Inc., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Aug. 11, 2022, as Appl. No. 17/886,030.
Prior Publication US 2024/0056488 A1, Feb. 15, 2024
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/205 (2013.01) [H04L 63/0478 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A network device, comprising:
one or more processors; and
one or more non-transitory computer-readable media storing computer-executable instructions that, when executed by the one or more processors, cause the one or more processors to perform operations comprising:
receiving data traffic generated by a source device;
identifying at least one of an access trust score indicating a security risk associated with the data traffic or a data confidentiality score indicating a measure of confidentiality of data in the data traffic;
classifying the data traffic with a classification based on the at least one of the access trust score or the data confidentiality score;
identifying, using the classification, an encryption mode from amongst first and second encryption modes, the first encryption mode resulting in more of the data traffic being encrypted than the second encryption mode; and
transmitting, to the source device, an indication that the source device is to use the encryption mode from amongst the first and second encryption modes.