US Patent 11295029 Computer file security using extended metadata

A method of securing electronic computer files includes having a client-based application running in the background with a kernel extension and a communication channel over a network to a server. The client app. can intercept an interprocess communication for opening a file and then collect a swath of fingerprint information about the requesting process and the state of the computer. The fingerprint information is sent to the server, optionally through a Signal Protocol message hidden by steganography in an image. Based on the fingerprint information, the server sends a key and/or a command back, optionally through steganography, to the client. The file is then accessed and decrypted—or accessed and not decrypted—based on the server key and command. The command can include instructions to gather more data from the user or about the computer before allowing access.