Concentric AI was awarded its third recent patent, furthering the company’s development of AI-based identification of permission creep and over-permissioned users in order to protect sensitive data from inappropriate access.
The patent – dubbed “Methods and Systems for Identifying Anomalous Users Exhibiting Overreaching Access Permissions to Data Objects” – protects existing IP for a Semantic Intelligence data security governance platform. It recognizes how technology leverages document semantics to identify users with unusual access permissions, indicative of permission creep.
The patent follows the recently announced “Methods and Systems for Clustering Documents based on Semantic Similarity” and “Method and Electronic Device for Managing Sensitive Data based on Semantic Categorization” patents. It highlights how Concentric AI addresses real-world, enterprise challenges to help businesses implement the principles of zero trust and least-privilege access.
“The most recent of four important patents awarded to Concentric AI, three of which have been awarded within three weeks of each other, addresses one of the most vexing challenges enterprises face when it comes to data security – the problem of permission creep,” said Karthik Krishnan, Concentric AI’s founder and CEO. “Without a clear way to define appropriate access levels, it becomes difficult to accurately assess whether a user has been granted excessive or unnecessary permissions. Our unique technology provides a way for enterprises to identify over-permissioned users so they can address this risk.”
Concentric AI’s patent-protected technology recognizes its unique ability to understand the semantics of the content within each data record and to categorize data assets by grouping similar documents together, without manual user effort or rules, to manage and secure repositories. This innovation leverages that capability to deliver methods for identifying over-permissioned users and protecting sensitive data.
Unlike other data security tools, Semantic Intelligence data security governance solution scans organizations’ data records in their entirety. Its proprietary AI technology understands context to identify not just PII, PCI and PHI data, but also more difficult types of sensitive data, including intellectual property and critical business documents. After discovery, it can identify the most appropriate classification category and autonomously tag the data. In addition, Semantic Intelligence monitors and autonomously identifies risks to sensitive data due to inappropriate permissions, wrong entitlements and risky sharing. It can automatically remediate permissions and sharing issues or leverage other security solutions and cloud APIs to quickly and continuously protect at-risk data.
