An approach is provided for securing data. Concept expansion on a data structure and names of attributes of the data is performed. Values of fields of the data are matched to a pattern in a repository that includes patterns that specify concepts. Based on the concept expansions and the field values matched to the pattern, a concept of the data is identified and an inference score is determined. The inference score indicates whether the identified score requires a validation. If the inference score exceeds a threshold score, a policy associated with the concept is identified and an action to secure the data based on the policy is performed. If the inference score does not exceed the threshold score, (i) a validation of the concept is received or (ii) an indication that the identified concept is not valid and a new concept of the data are received.
展开▼