Abstract: An example security device receives a plurality of data units carrying traffic in a message encoded in accordance with an application layer protocol for a server. The message comprises payload. The security device analyzes the plurality of data units to identify the application layer protocol; selects a data extraction algorithm in dependence on the identified application layer protocol; extracts selected data from the payload, in accordance with one or more tokenizing rules; and forwards selected data to a token encoder, to allow the token encoder to store selected data and return at least one token used to identify the selected data. The device receives from the token encoder, at least one token and replaces the selecting data in the payload with the at least one token to form modified payload and forming and forwards a modified message comprising the payload data, in place of the message, thereby securing the original message.

Abstract: A security device for securing a peripheral link between a computing device and a peripheral comprising is interposed on the peripheral link, between said computing device and said peripheral. The security device queries an identifier of a peripheral, and imitating said peripheral to said computing device by way of a host port of said security device. Once interposed the security device intercepts data transferred between the computing device and the peripheral device; and obfuscates selected portions of said data intercepted by the security device. Obfuscation may be performed by transferring the data to a tokenizing server, and replacing the data with a corresponding token received from the tokenizing server. The data may be securely stored at the tokenizing server, for later retrieval using the token.

Abstract: A method of securing user data provided through a webpage includes receiving an electronic file defining a webpage displayable by a computer. The webpage is initially configured to present an input field for receiving user data from a user, and instruct the computer to transmit the user data to a defined server. The method includes executing code that causes the computer to reconfigure the webpage to present a replacement field for receiving the user data from the user instead of the input field; and upon receiving user data in the replacement field, transmit said user data to a secured server instead of the defined server. The secured server may tokenize the data. The computer receives token data from the secured server; and transmits the token data instead of the user data to the defined server.

Abstract: An example security device receives a plurality of data units carrying traffic in a message encoded in accordance with an application layer protocol for a server. The message comprises payload. The security device analyzes the plurality of data units to identify the application layer protocol; selects a data extraction algorithm in dependence on the identified application layer protocol; extracts selected data from the payload, in accordance with one or more tokenizing rules; and forwards selected data to a token encoder, to allow the token encoder to store selected data and return at least one token used to identify the selected data. The device receives from the token encoder, at least one token and replaces the selecting data in the payload with the at least one token to form modified payload and forming and forwards a modified message comprising the payload data, in place of the message, thereby securing the original message.

Abstract: An example security device receives a plurality of data units carrying traffic in a message encoded in accordance with an application layer protocol for a server. The message comprises payload. The security device analyzes the plurality of data units to identify the application layer protocol; selects a data extraction algorithm in dependence on the identified application layer protocol; extracts selected data from the payload, in accordance with one or more tokenizing rules; and forwards selected data to a token encoder, to allow the token encoder to store selected data and return at least one token used to identify the selected data. The device receives from the token encoder, at least one token and replaces the selecting data in the payload with the at least one token to form modified payload and forming and forwards a modified message comprising the payload data, in place of the message, thereby securing the original message.

Abstract: A security device for securing a peripheral link between a computing device and a peripheral comprising is interposed on the peripheral link, between said computing device and said peripheral. The security device queries an identifier of a peripheral, and imitating said peripheral to said computing device by way of a host port of said security device. Once interposed the security device intercepts data transferred between the computing device and the peripheral device; and obfuscates selected portions of said data intercepted by the security device. Obfuscation may be performed by transferring the data to a tokenizing server, and replacing the data with a corresponding token received from the tokenizing server. The data may be securely stored at the tokenizing server, for later retrieval using the token.

Abstract: An example security device receives a plurality of data units carrying traffic in a message encoded in accordance with an application layer protocol for a server. The message comprises payload. The security device analyzes the plurality of data units to identify the application layer protocol; selects a data extraction algorithm in dependence on the identified application layer protocol; extracts selected data from the payload, in accordance with one or more tokenizing rules; and forwards selected data to a token encoder, to allow the token encoder to store selected data and return at least one token used to identify the selected data. The device receives from the token encoder, at least one token and replaces the selecting data in the payload with the at least one token to form modified payload and forming and forwards a modified message comprising the payload data, in place of the message, thereby securing the original message.

Abstract: A method of securing user data provided through a webpage includes receiving an electronic file defining a webpage displayable by a computer. The webpage is initially configured to present an input field for receiving user data from a user, and instruct the computer to transmit the user data to a defined server. The method includes executing code that causes the computer to reconfigure the webpage to present a replacement field for receiving the user data from the user instead of the input field; and upon receiving user data in the replacement field, transmit said user data to a secured server instead of the defined server. The secured server may tokenize the data. The computer receives token data from the secured server; and transmits the token data instead of the user data to the defined server.