US 12,470,570 B2
Method and system for processing data packages
Jack Chapman, London (GB); and Thomas Hazell, London (GB)
Assigned to Egress Software Technologies IP Limited, London (GB)
Filed by Egress Software Technologies IP Limited, London (GB)
Filed on Mar. 28, 2023, as Appl. No. 18/191,622.
Claims priority of application No. 2204562 (GB), filed on Mar. 30, 2022; application No. 2204563 (GB), filed on Mar. 30, 2022; application No. 2204564 (GB), filed on Mar. 30, 2022; and application No. 2204565 (GB), filed on Mar. 30, 2022.
Prior Publication US 2023/0325414 A1, Oct. 12, 2023
Int. Cl. G06F 16/00 (2019.01); G06F 16/28 (2019.01); H04L 9/40 (2022.01); H04L 45/74 (2022.01); H04L 51/212 (2022.01); H04L 69/22 (2022.01)
CPC H04L 63/1416 (2013.01) [G06F 16/285 (2019.01); H04L 45/74 (2013.01); H04L 51/212 (2022.05); H04L 63/0245 (2013.01); H04L 63/123 (2013.01); H04L 69/22 (2013.01)] 13 Claims
OG exemplary drawing
 
1. A method for classifying a received data package, using a framework, the framework comprising:
at least one classifier;
a processing component configured to execute instructions for processing the received data package using the at least one classifier; and
a database for storing at least relationship data indicating a plurality of relationships between a sender and at least one recipient;
wherein the at least one classifier is configured to perform the steps of:
obtaining header data of the received data package, the header data comprising at least user identifiers corresponding to at least the sender and the at least one recipient;
obtaining relationship data, from the database, the data representing a relationship between the sender and the at least one recipient, wherein the relationship is indicative of at least a previous communication history between the sender and the at least one recipient;
determining a relationship metric between the sender and the at least one recipient based on the relationship, the relationship metric being indicative of a plurality of different levels of trust between the sender and the at least one recipient, wherein:
determining the relationship metric comprises:
establishing a direction of transmission for each data package in the previous communication history between the sender and the at least one recipient;
determining a frequency of transmission between the sender and the at least one recipient; and
when the direction of transmission of each data package in the previous communication history is one way, and when the frequency of transmission exceeds a predetermined frequency threshold in a predetermined time period, the relationship metric has an upper threshold value that limits a level of trust achievable for the sender;
when the relationship metric has the upper threshold value, applying at least one handling action to the received data package, wherein the handling action consists of quarantining the data package or encrypting the data package or preventing access to the data package; and
updating the relationship data between the sender and the at least one recipient in the database based on the handling action that is applied for the received data package.