Abstract: Embodiments for tracking multi-layer secured transactions include systems for providing a dedicated secure transaction channel to a user and sending pre-authorization code to the user via the transaction channel. The systems allow the user to encrypt transaction data and receive the encrypted transaction data from the user via the transaction channel. The systems further unlock the encrypted data and match the sent pre-authorization code to the received pre-authorization code. The systems send a post verification notification to the user comprising the one or more transactions via the transaction channel and receive a post verification confirmation from user in response to the post verification notification.

Abstract: Embodiments for preventing data loss in a business environment are provided. In some embodiments, a secure endpoint file export application assigns users to different classes having different permissions for accessing and writing data. In an embodiment, the system and method are configured to identify a plurality of users in a business environment; classify the plurality of users according to business needs; assign the users to one of at least two classes based on the classification; determine that the first user is permitted to access the data; transmit the secure file to a second user who is permitted to write the data in the secure file to removable media; write the data in the secure file to the removable media; and track a location of the removable media.

Abstract: Embodiments for preventing data loss in a business environment are provided. In some embodiments, a secure endpoint file export application assigns users to different classes having different permissions for accessing and writing data. In an embodiment, the system and method are configured to identify a plurality of users in a business environment; classify the plurality of users according to business needs; assign the users to one of at least two classes based on the classification; determine that the first user is permitted to access the data; transmit the secure file to a second user who is permitted to write the data in the secure file to removable media; write the data in the secure file to the removable media; and track a location of the removable media.

Abstract: A platform for providing authorization of electronic communication of secure data to external entities, e.g., vendors, third parties or the like based on an assessment of the data risk associated with communicating the data to the external entity. The secure data that is to be communicated, in the form of specific data items, are identified as well as the associated security standards. The external identity is assessed to ensure their capabilities to properly meet the enterprise/sender's information security, business privacy and continuity standards, along with applicable industry standards. Based on the results of the assessment, remediation action may be required to address critical vulnerabilities or recommendations may be presented to a decision-making entity to grant authorization to electronically communicate the data in question to the external entity. In response to granting authorization, secure communication channels are allocated and established to allow for communication of the data.

Abstract: Embodiments for tracking multi-layer secured transactions include systems for providing a dedicated secure transaction channel to a user and sending pre-authorization code to the user via the transaction channel. The systems allow the user to encrypt transaction data and receive the encrypted transaction data from the user via the transaction channel. The systems further unlock the encrypted data and match the sent pre-authorization code to the received pre-authorization code. The systems send a post verification notification to the user comprising the one or more transactions via the transaction channel and receive a post verification confirmation from user in response to the post verification notification.

Abstract: Embodiments for tracking multi-layer secured transactions include systems for providing a first transaction channel to a user and sending pre-authorization code to the user via the first transaction channel. The systems terminate the first transaction channel and provide a second transaction channel to the user and receive transaction data from the user comprising the pre-authorization code via the second transaction channel. The systems further identify one or more verifiers associated with the user for one or more transactions based on the transaction data, send a post verification notification to the one or more verifiers, and receive a post verification confirmation from at least one of the one or more verifiers in response to the post verification notification.

Abstract: Embodiments for secure data storage that include systems and methods that receive, from a second system maintained by a second entity, a data payload to be stored by the system; secure the data payload at a first time; store the secured data payload; receive a request for access to the data payload; and provide certification, corresponding to a second time subsequent to the first time, that the data payload has not been altered since the first time.

Abstract: Embodiments of the invention are directed to a system, method, or computer program product for generating resource tag systems and integration of the tag systems on machines for machine use, valuation, and distribution. The tags comprise sensors for monitoring activity of the machine or product and identifies stagnant periods in the use of the machine or product. Based on a triggering stagnant duration, the tag system provides signals to the user indicating product inactivity. The tag may generate a communicable link with outside sources to identify and present the user with a current market value of the machine or product that the tag is affixed. Upon authorization, the tag may post the machine or product for sale and/or present the product for donation. Furthermore, upon sale of the product, the tag may be able to transfer warranty information along with the product.

Abstract: The present invention relates to verification of the contents of a data file prior to external recipient communication. Specifically, the invention provides for a data file registration repository that registers information associated with data files. In specific embodiments, data registration occurs automatically be capturing the file header metadata. Prior to communicating the file to an external recipient, the payload of the data file is interrogated to determine actual content and the actual content is compared to the registered information to insure that the data being communicated is the same as what the data file is purported to contain (i.e., matches the registered information). Other verifications, such as date type authorization, recipient authorization and the like may also occur in conjunction with the content verification. If the verification(s) is successful, the data is authorized to be placed in the data channel for communication to the external recipient.

Abstract: A centralized workflow management system is described that provides for the ability to manage workflows existing throughout a large enterprise regardless of the format of the workflow platform/system providing the workflows. The system and other embodiments provide for workflow extensibility, such that changes to existing workflows and/or addition of new workflows result in automatic adaption to all downstream and upstream workflows that are affected by the change or addition.

Abstract: Embodiments for preventing data loss and allowing selective data access are provided. In some embodiments, the system and method are configured to receive task protocols and registration requests; determine an allowed list based on the protocols or requests, the list comprising registered data and codes needed to execute a task; allow a user to establish a connection to a device to execute the task on the device; identify data being transferred to and from the device; compare the data being transferred and the allowable list; and determine that at least some of the data being transferred is allowable.

Abstract: Embodiments for secure data storage that include systems and methods that receive, from a second system maintained by a second entity, a data payload to be stored by the system; secure the data payload at a first time; store the secured data payload; receive a request for access to the data payload; and provide certification, corresponding to a second time subsequent to the first time, that the data payload has not been altered since the first time.

Abstract: A technology/operating system-agnostic and protocol-agnostic modular-based service delivery system that includes a management of enterprise-wide deployment of services and updates to services delivered by the modules of the system. Management includes determination and automatic implementation of an optimal schedule for service deployment, service version updates and service version roll-backs based on (i) predetermined lifecycle levels assigned to networked devices in the enterprise executing the service delivery application, and/or (ii) segments within the enterprise.

Abstract: Management over data movement/transfer is accomplished by employing a data transmission rating system that assigns a data transmission rating to each server in the enterprise-wide communication network and subsequently makes determinations as to whether a data connection can be established between two or more servers based on the assigned data transmission rating. The enterprise-wide servers may be assigned a primary data transmission rating based on the type of data that the server is authorized to exchange and, optionally, the servers are assigned a secondary data transmission rating, (or a tertiary rating and so on) based on the geographic/physical location of the server. In this regard, in order for a data connection to be established between the two or more servers, the primary rating, and in those embodiments that implement a secondary rating, a tertiary rating and so on, must be determined to be authorized for establishing a data connection.

Abstract: A technology/operating system-agnostic and protocol-agnostic modular-based service delivery system that includes a management of enterprise-wide deployment of services and updates to services delivered by the modules of the system. Management includes determination and automatic implementation of an optimal schedule for service deployment, service version updates and service version roll-backs based on (i) predetermined lifecycle levels assigned to networked devices in the enterprise executing the service delivery application, and/or (ii) segments within the enterprise.

Abstract: Embodiments of the invention are directed to a system, method, or computer program product for generating resource tag systems and integration of the tag systems on machines for machine use, valuation, and distribution. The tags comprise sensors for monitoring activity of the machine or product and identifies stagnant periods in the use of the machine or product. Based on a triggering stagnant duration, the tag system provides signals to the user indicating product inactivity. The tag may generate a communicable link with outside sources to identify and present the user with a current market value of the machine or product that the tag is affixed. Upon authorization, the tag may post the machine or product for sale and/or present the product for donation. Furthermore, upon sale of the product, the tag may be able to transfer warranty information along with the product.

Abstract: Embodiments for preventing data loss in a business environment are provided. In some embodiments, a secure endpoint file export application assigns users to different classes having different permissions for accessing and writing data. In an embodiment, the system and method are configured to identify a plurality of users in a business environment; classify the plurality of users according to business needs; assign the users to one of at least two classes based on the classification; determine that the first user is permitted to access the data; transmit the secure file to a second user who is permitted to write the data in the secure file to removable media; write the data in the secure file to the removable media; and track a location of the removable media.

Abstract: Embodiments of a secure media container and a method of using same are provided. In some embodiments, the secure media container includes a portable power supply; an antenna; a receptacle for receiving removable data storage; and a computer apparatus including a processor and a memory, comprising executable instructions that cause the processor to: determine that a removable data storage device has been input into the receptacle; track a location of the secure media container using the antenna; determine an action associated with the location of the secure media container by: accessing a database comprising a plurality of locations and associated actions; and comparing the location of the secure media container to the plurality of locations and associated actions in the database; and apply the action to the removable storage device based on the location of the secure media container.

Abstract: Embodiments for preventing data loss and allowing selective access data include systems and methods that determine that a file has been created or received; determine a fingerprint of the file, wherein the fingerprint is a record of the file for comparison to the file at a later time; determine at least one permitted use related to the file, wherein the permitted uses comprises a permitted user and a permitted action; determine that the file is being accessed by a user; determine whether the user is a permitted user of the file based on an identity of the user; compare the file to the associated fingerprint of the file when the user is a permitted user; determine the action being taken by the user when the file matches the associated fingerprint; and permit the action to occur when the action is a permitted action of the file.

Abstract: Embodiments for providing secure data containers and allowing selective access to files stored in the containers include systems and methods that receive a request to create a container, wherein the container is a file system comprising access parameters that define one or more permitted actions and one or more permitted users for the container; determine duration parameters for the container, wherein the duration parameter comprise a time duration during which the container may be accessed; determine a fingerprint of the container, the fingerprint being a record of the container for comparison to the container at a later time; generate the container with the access parameters, duration parameters, and fingerprint; monitor the container for compliance with the access parameters, duration parameters, and fingerprint; and apply a consequence when the container is not in compliance with the access parameters, duration parameters, or fingerprint.