TR202009848A2 - An isolation method and system for data control and sharing - Google Patents

An isolation method and system for data control and sharing Download PDF

Info

Publication number
TR202009848A2
TR202009848A2 TR2020/09848A TR202009848A TR202009848A2 TR 202009848 A2 TR202009848 A2 TR 202009848A2 TR 2020/09848 A TR2020/09848 A TR 2020/09848A TR 202009848 A TR202009848 A TR 202009848A TR 202009848 A2 TR202009848 A2 TR 202009848A2
Authority
TR
Turkey
Prior art keywords
documents
data
isolation
submodule
data warehouse
Prior art date
Application number
TR2020/09848A
Other languages
Turkish (tr)
Inventor
Demi̇ray Emre
Original Assignee
Deytek Bilisim Muehendislik Sanayi Ve Ticaret Ltd Sirketi
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Deytek Bilisim Muehendislik Sanayi Ve Ticaret Ltd Sirketi filed Critical Deytek Bilisim Muehendislik Sanayi Ve Ticaret Ltd Sirketi
Priority to TR2020/09848A priority Critical patent/TR202009848A2/en
Publication of TR202009848A2 publication Critical patent/TR202009848A2/en
Priority to PCT/TR2021/050496 priority patent/WO2021262117A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/105Arrangements for software license management or administration, e.g. for managing licenses at corporate level
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/106Enforcing content protection by specific content processing
    • G06F21/1063Personalisation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2151Time stamp

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Health & Medical Sciences (AREA)
  • Databases & Information Systems (AREA)
  • Document Processing Apparatus (AREA)
  • Accessory Devices And Overall Control Thereof (AREA)
  • Storage Device Security (AREA)

Abstract

Buluş, işletme veri ambarındaki belgelerin (15), indirilmeden ve kontrollü bir şekilde paylaşılarak görüntülenebilmesini ve belge (15) üzerinde düzenleme yapılabilmesini sağlayan, belgenin yazdırılmasını ve kopyalanmasını engelleyerek işletme veri ambarından sızdırılmasının önüne geçen bir veri izolasyon yöntemi ve sistemi ile ilgilidir.The invention relates to a data isolation method and system that enables the documents (15) in the business data warehouse to be viewed without being downloaded and shared in a controlled manner, and to be edited on the document (15), preventing the document from being printed and copied and leaking from the business data warehouse.

Description

TARIFNAME VERI KONTROL VE PAYLASIMINA YÖNELIK BIR IZOLASYON YÖNTEMI VE SISTEMI Teknolojik Alan: Bulus, isletme veri ambarindaki belgelerin, indirilmeden ve kontrollü bir sekilde paylasilarak görüntülenebilmesini ve belge üzerinde düzenleme yapilabilmesini saglayan, belgenin yazdirilmasini ve kopyalanmasini engelleyerek isletme veri ambarindan sizdirilmasinin önüne geçen bir veri izolasyon yöntemi ve sistemi ile ilgilidir. DESCRIPTION AN ISOLATION METHOD FOR DATA CONTROL AND SHARING AND SYSTEM Technological Field: The invention allows documents in the enterprise data warehouse to be downloaded and controlled in a controlled manner. can be shared and viewed and edited on the document. provides business data by preventing the printing and copying of the document. A data isolation method and system that prevents leakage from its warehouse It is related to.

Teknigin Bilinen Durumu: Günümüzde hemen hemen birçok sektörde, isletmelerin sahip oldugu verilerin ve belgelerin korunmasina yönelik, çalismalar ve yöntemler uygulanmaktadir. State of the Art: Today, in almost many sectors, the data owned by the enterprises Studies and methods are applied for the protection of documents and documents.

Artik neredeyse bütün sektörlerde, belgeler ve belgelerdeki veriler elektronik ortamlarda yer aldigindan her an sizdirilma riski ile karsi karsiya kalinmaktadir. Documents and data in documents are now electronic in almost all industries. Since it is located in the environment, it is always faced with the risk of leakage.

Bu sizdirmalarin önüne geçmek üzere devletlerin birtakim kanunlari uygulamaya almasina ragmen kanuna aykiri davranislar bilerek (kötü niyet) veya bilmeyerek gerçeklestirilebilmektedir. Bu konuda isletmeler kendilerini korumaya almak üzere çesitli sistem, yazilim ve yöntemler kullanmaktadir. In order to prevent these leaks, some laws of the states knowingly committing unlawful behavior (bad faith) or unknowingly. In this regard, businesses themselves It uses various systems, software and methods to protect it.

Tarifname konusu bulus, isletmelerin sahip oldugu belge ve belgelerdeki verilerin indirilmesini, paylasilmasini, yazdirilmasini önleyen, indirmeden görüntüleme yapmaya ve indirmeden düzenleme yapmaya olanak saglayan bir izolasyon yöntemi ve sistemi ile ilgilidir. The invention, which is the subject of the specification, refers to the documents and documents owned by the enterprises. that prevents data from being downloaded, shared, printed, that allows viewing and editing without downloading. It is related to the isolation method and system.

Bilinen teknikte isletmelerin devasa büyüklükte veri ambarlari kullanilmaktadir. In the known technique, gigantic data warehouses of enterprises are used.

Bu veri ambarlari içerisinde isletmeler ve temsil ettikleri müsterileri için hayati önem arz eden sonsuza yakin belge saklanmaktadir. Bu veri ambarindan alinan belgeler çalisanlar tarafindan bilgisayara indirilebilmekte, kopyalanabilmekte, yazdirilabilmektedir. Tarifname konusu bulus, isletmedeki çalisanlarin ve/veya belge paylasilmasi gereken kisi veya kurumlarin (müsteriler, is ortaklari ve benzeri) islerine mani olmayacak sekilde belgeleri sizdirmasini önleyen bir izolasyon yöntemi ortaya koymaktadir. These data warehouses are vital for businesses and the customers they represent. Documents that are of great importance are stored for eternity. From this data warehouse documents can be downloaded to the computer by the employees, copied, can be printed. The invention, which is the subject of the description, is the responsibility of the employees and/or Persons or institutions (customers, business partners and similar) to prevent them from leaking documents in a way that does not interfere with their work. isolation method.

Yapilan literatür arastirmasinda TR2015/16751 numarali, “dijital veri sistemleri için güvenlik sistemi” isimli patent dokümani ile karsilasilmistir. In the literature search, numbered TR2015/16751, “digital data The patent document named “security system for systems” was encountered.

Dokümanda, dijital verilerin güvenli bir sekilde aktarilmasina yönelik bir cihaz ve cihazin çalisma algoritmalari verilmekte olup, herhangi bir izolasyon yöntemi saglanmamaktadir. A device for the secure transmission of digital data, and The working algorithms of the device are given and any isolation method is given. is not provided.

Sonuç olarak, teknigin bilinen durumunun asildigi, dezavantajlarinin giderildigi, bir veri izolasyon yöntemi ve sistemine ihtiyaç duyulmaktadir. As a result, the known state of the technique has been overcome, its disadvantages have been eliminated, A data isolation method and system is needed.

Bulusun Kisa Açiklanmasi: Bulus, teknigin bilinen durumunun asildigi, dezavantajlarinin giderildigi, ilave özellikler barindiran bir veri izolasyon yöntemi ve sistemidir. Brief Description of the Invention: The invention shows that the known state of the art is overcome, its disadvantages are eliminated, additional It is a data isolation method and system with features.

Bulusun amaci, isletme veri ambarindaki belgelerin, indirilmeden ve kontrollü bir sekilde paylasilarak görüntülenebilmesini ve belge üzerinde düzenleme yapilabilmesini saglayan, belgenin yazdirilmasini ve kopyalanmasini engelleyerek isletme veri ambarindan sizdirilmasinin önüne geçen bir veri izolasyon yöntemi ve sistemi ortaya koymaktir. The object of the invention is to ensure that documents in a business data warehouse are stored in a controlled manner without downloading. It can be shared and viewed and edited on the document. printing and copying of the document, which enables a data that prevents it from being leaked from the enterprise data warehouse by preventing is to reveal the isolation method and system.

Bulusun bir diger amaci, isletmedeki çalisanlarin ve/veya belge paylasilmasi gereken kisi veya kurumlarin (müsteriler, is ortaklari ve benzeri)islerine mani olmayacak sekilde belgeleri sizdirmasini önleyen bir izolasyon yöntemi ortaya koymaktir. Another purpose of the invention is to share documents and/or employees in the enterprise. prevent the business of necessary persons or institutions (customers, business partners and the like) introduced a method of isolation that prevents it from leaking documents. is to put.

Bulusun bir diger amaci, Isletme veri ambarindaki metin bazli dosyalarin (txt, html ve benzeri) görüntülenip düzenlenebildigi, PDF dosyalarinin görüntülenebildigi, resim, video ve ses dosyalarinin (jpg, gif, png, mov, mp3 ve benzeri) görüntülenebildigi, ofis dosyalarinin (doc, docx, xls, xlsx, ppt, pptx) görüntülenip düzenlenebildigi bir veri izolasyon sistemi ortaya koymaktir. Another object of the invention is to create text-based files (txt, html and so on) can be viewed and edited, PDF files image, video and audio files (jpg, gif, png, mov, mp3 and etc.) can be viewed, office files (doc, docx, xls, xlsx, ppt, pptx) is to present a data isolation system that can be viewed and edited.

Bulusun bir diger amaci belgelerin yazdirilmasinin, paylasilmasinin, fotograf ve benzeri yöntemler ile kopyalanmasinin önüne geçmek üzere bir veri izolasyon sistemi ortaya koymaktir. Another object of the invention is to print, share, photograph and data isolation to prevent copying with similar methods. to reveal the system.

Yukarida bahsedilen ve asagidaki detayli anlatimdan ortaya çikacak tüm amaçlari gerçeklestirmek üzere mevcut bulus, isletme veri ambarindaki belgelerin, indirilmeden ve kontrollü bir sekilde paylasilarak görüntülenebilmesini ve belge üzerinde düzenleme yapilabilmesini saglayan, belgenin yazdirilmasini ve kopyalanmasini engelleyerek isletme veri ambarindan sizdirilmasinin önüne geçen bir veri izolasyon yöntemi ve sistemi olup, özelligi; isletme veri ambarindaki metin bazli belgelerin, PDF belgelerin, resim, video ve ses belgelerinin, ofis dosyasi belgelerinin indirilmeden belge görüntüleme isleminin gerçeklestirilmesini saglayan, isletme veri ambarindaki (10) metin bazli belgelerin ve ofis dosyasi belgelerinin indirilmeden belge düzenleme isleminin gerçeklestirilmesini saglayan, belgelerin sizdirilmasini önlemek amaci ile yazdirma ve kopyalama engelleme islemini gerçeklestiren, izolasyon alt modülüne sahip, isletme veri ambarina entegre en az bir veri kontrol ve paylasim modülü içermesi ile karakterize edilmesidir. All the above-mentioned and the following will emerge from the detailed explanation. present invention, business data warehouse documents are shared without downloading and in a controlled manner. that allows viewing and editing of the document, business data by preventing printing and copying of the document. A data isolation method and system that prevents leakage from its warehouse and its feature is; text-based documents, PDF documents in the enterprise data warehouse, document without downloading pictures, video and audio documents, office file documents in the business data warehouse, which enables the realization of the imaging process. (10) document without downloading text-based documents and office file documents the leaking of documents, enabling the realization of the editing process. performing the printing and copying prevention process to prevent At least one data warehouse integrated into the enterprise data warehouse with an isolation submodule It is characterized by containing a control and sharing module.

Sekillerin Açiklanmasi: Bulus, ilisikteki sekillere atifta bulunularak anlatilacaktir, böylece bulusun Özellikleri daha net anlasilacaktir. Ancak, bunun amaci bulusu bu belli düzenlemeler ile sinirlamak degildir. Tam aksine, bulusun ilisikteki istemler tarafindan tanimlandigi alani içine dâhil edilebilecek bütün alternatif, degisiklik ve denkliklerinin kapsanmasi da amaçlanmistir. Gösterilen ayrintilar, sadece mevcut bulusun tercih edilen düzenlemelerinin anlatimi amaciyla gösterildigi ve hem yöntemlerin sekillendirilmesinin, hem de bulusun kurallari ve kavramsal özelliklerinin en kullanisli ve kolay anlasilir tanimini saglamak amaciyla sunulduklari anlasilmalidir. Bu çizimlerde; Sekil-1 Bulus konusu izolasyon yöntemi ve sistemine yönelik sematik görünümüdür. Explanation of Figures: The invention will be described with reference to the accompanying figures, so that the invention Its features will be understood more clearly. However, the purpose of this is clear It's not about limiting yourself with regulations. On the contrary, the appended claims of the invention All alternatives, amendments, which may be included in the area in which it is defined by and equivalences are also intended to be covered. Details shown are only illustrated for illustration of preferred embodiments of the present invention, and both the shaping of the methods and the rules of the invention and the conceptual in order to provide the most useful and easy-to-understand description of its properties. presented must be understood. In these drawings; Figure-1 Sematics for the inventive isolation method and system is the view.

Bu bulusun anlasilmasina yardimci olacak sekiller ekli resimde belirtildigi gibi numaralandirilmis olup isimleri ile beraber asagida verilmistir. Figures to assist in understanding this invention are as indicated in the attached picture. are numbered and given below with their names.

Referanslarin Açiklanmasi: . Isletme veri ambari 11.Kullanici profil dosyalari 12. Network diskleri 13.0rtak klasörler 14.Kullanici çalisma alanlari . Belge .Veri kontrol ve paylasim modülü 21.Izolasy0n alt modülü 22.Belge görüntüleme 23.Belge düzenleme 24.Yazdirma ve kopyalama engelleme Bulusun Açiklanmasi: Bu detayli açiklamada bulus konusu izolasyon yöntemi ve sistemi sadece konunun daha iyi anlasilmasina yönelik olarak, hiçbir sinirlayici etki olusturmayacak örneklerle açiklanmaktadir. Tarifnamede, isletme veri ambarindaki belgelerin (15), indirilmeden ve kontrollü bir sekilde paylasilarak görüntülenebilmesini ve belge (15) üzerinde düzenleme yapilabilmesini saglayan, belgenin yazdirilmasini ve kopyalanmasini engelleyerek isletme veri ambarindan sizdirilmasinin önüne geçen bir veri izolasyon yöntemi ve sistemi anlatilmaktadir. Explanation of References: . Business data warehouse 11.User profile files 12. Network disks 13.0common folders 14. User workspaces . Document .Data control and sharing module 21.Isolation submodule 22. Document viewing 23. Document editing 24.Print and copy prevention Description of the Invention: In this detailed description, the subject of the invention is the isolation method and system only. no limiting effect for a better understanding of the subject explained with examples. In the specification, operating data by sharing the documents in the warehouse (15) without downloading and in a controlled manner. can be viewed and edited on the document (15) provides business data by preventing the printing and copying of the document. A data isolation method and system that prevents leakage from its warehouse is explained.

Sekil 1'de bulus konusu izolasyon sistemi ve yöntemi sematik görünümü verilmektedir. Buna göre izolasyon sistemi ve yönteminde isletme veri ambari (10) içerisindeki kullanici profil dosyalari (11), network diskleri (12), ortak klasörler (13) ve kullanici çalisma alanlarinda (14) yer alan belgeler (15), isletme veri ambarina entegre veri kontrol ve paylasim modülü (20) ile alinarak izolasyon alt modülünde (21) indirilmeden, kontrollü bir sekilde paylasilarak görüntülenebilmekte ve belge (15) üzerinde düzenleme yapilabilmektedir. Figure 1 shows the schematic view of the inventive isolation system and method. are given. Accordingly, the business data warehouse in the isolation system and method (10), user profile files (11), network disks (12), common documents in folders (13) and user workspaces (14), It can be taken with the data control and sharing module (20) integrated into the enterprise data warehouse. by sharing in a controlled manner without being downloaded in the isolation submodule (21). can be displayed and edits can be made on the document (15).

Bulustaki veri kontrol ve paylasim modülü (20) isletme veri ambarinin (10) isleyisini degistirmeden mevcut sisteme ek bir katman olarak kurularak mevcut yetki ve süreçlerini bütünlesik olarak ek özelliklerle kullanmalarini saglar. Veri kontrol ve paylasim modülüne (20) dosya kaynagi olarak; kullanici profil dosyalari (11), (VDI yapilari), Folder Redirection, network diskleri (12), ortak klasörler (13) ve kullanici çalisma alanlari (14) (home folder) eklenebilmektedir. The data control and sharing module (20) in the invention is part of the enterprise data warehouse (10) It can be installed as an additional layer to the existing system without changing its operation. It enables them to use their powers and processes in an integrated manner with additional features. Data as a file source to the control and sharing module (20); user profile files (11), (VDI structures), Folder Redirection, network disks (12), common folders (13) and user workspaces (14) (home folder) can be added.

Kullanicilar, veri kontrol ve paylasim modülü (20) üzerinden mevcut olan ortak alanlari (13), yetkileri, kullanici ve gruplari entegre ederek, belgelerin (15) ve verilerin kopyalamadan yerinde yönetilmesini saglar. Users can access common information available via the data control and sharing module (20). by integrating fields (13), authorizations, users and groups, documents (15) and It provides on-site management of data without copying.

Ortak alanlar (13) herkes tarafindan görüntülenebilen fakat sadece erisim yetkisi olan kullanicilar tarafindan erisilebilen alanlardir. Özel ag klasörleri ise kullanicinin talep ettigi olan ortak alan (13) klasörleridir. Veri kontrol ve paylasim modülü (20) hem ortak alan (13) hem de özel ag klasörleri tüm kullanici erisim yetkileri (bu alana erisebilecek kullanici yetkisi) ve klasörlerde yapilabilecek islem yetkileri (görüntüleme, okuma, yazma, tam kontrol ve benzeri) ile birlikte sisteme entegre edilebilmektedir. Common areas (13) publicly viewable but only accessible These are areas that can be accessed by authorized users. If private network folders are the common area (13) folders requested by the user. Data control and sharing module (20) both public area (13) and private network folders all user access privileges (user authority to access this area) and folders along with operation privileges (view, read, write, full control and so on) can be integrated into the system.

Kullanicilarin profil dosyalari (11), veri kontrol ve paylasim modülü (20) erisim alanina dahil edilmistir. Kullanici, tüm alanlarda dosya operasyonlari yapabilir ve yüzlerce formati indirmeden görüntüleyebilmektedir. Hatta bazi dosya formatlari sistem üzerinden düzenlenebilmektedir. User's profile files (11), data control and sharing module (20) access included in the field. User can perform file operations on all fields and can view hundreds of formats without downloading. Even some files formats can be edited through the system.

Kullanicilarin yukarida bahsedilen alanlara mevcut erisim yetkileri (NTFS) ve veri kontrol ve paylasim modülü (20) üzerinden belirlenebilen kurallar çerçevesinde tüm dosyalarina veri kontrol ve paylasim modülü (20) erisim noktalari (Web APP, Mobil APP, Outlook Add in, Office Add in) üzerinden erisebilmekte ve islem yapabilmektedir. Users' current access privileges (NTFS) to the above-mentioned areas, and rules that can be determined via the data control and sharing module (20) data control and sharing module (20) access to all files within the framework of points (Web APP, Mobile APP, Outlook Add in, Office Add in) can access and process.

Bulus konusu veri kontrol ve paylasim modülü (20) sahip oldugu izolasyon alt modülü (21) üzerinden yüzlerce farkli formatta belgenin (15), indirmeden belge görüntüleme (22), belge düzenleme (23), yazdirma ve kopyalama engelleme (24) islemlerinden geçirilmesini saglamaktadir. Bulus konusu izolasyon alt modülü (21) ile isletme veri ambarindaki (10) metin bazli dosyalar (txt, html ve benzeri) görüntülenip düzenlenebilmekte, PDF dosyalarinin görüntülenebilmekte, resim, Video ve ses dosyalari (jpg, gif, png, mov, mp3 ve benzeri) görüntülenebilmekte, ofis dosyalari (doc, docx, xls, xlsx, ppt, pptx) görüntülenmekte ve düzenlenebilmektedir. Ofis dosyalari kullanici sunucusu üzerinde entegre bir ofis programi araciligiyla herhangi bir ek program, lisans gerektirmeden ve indirmeden online olarak düzenlenebilmektedir. The data control and sharing module (20) which is the subject of the invention, has an isolation subframe. You can download hundreds of documents (15) in different formats via the module (21) without downloading the document. viewing (22), document editing (23), print and copy prevention (24) allows it to be passed through the processes. The subject of the invention is isolation sub module (21) and text-based files (txt, html and similar) can be viewed and edited, PDF files can be viewed, picture, video and audio files (jpg, gif, png, mov, mp3 and etc.) can be viewed, office files (doc, docx, xls, xlsx, ppt, pptx) can be viewed and edited. office files user server any additional program, license via an integrated office program on It can be edited online without requiring and downloading.

Veri kontrol ve paylasim modülünde (20), paylasim özelligi ile yazma yetkisi içinde paylasilan belgeler (15) paylasilan kisi ile gerçek zamanli olarak düzenlenebilmektedir. Veri kontrol ve paylasim modülü (20) üzerinden yeni bir ofis dosyasi (doc, docx, xls, xlsx, ppt, pptx) yaratip düzenleme, paylasma gibi islemler gerçeklestirilebilmektedir. Veri kontrol ve paylasim modülü (20) böylelikle sadece isletme veri ambarinda (10) var olan belgelerin (15) düzenlenmesi amaci ile degil sifirdan bir belge (15) olusturmak amaci ile de kullanilabilir hale getirilmistir. Veri kontrol ve paylasim modülü (20) ile olusturulan belgelere (15) ait olusturma tarihi, düzenleme tarihi, boyut, paylasim yetki durumu ve benzeri bilgiler görüntülenebilmektedir. Writing authorization with sharing feature in data control and sharing module (20) Shared documents (15) in real time with the shared person. can be edited. A new data control and sharing module (20) such as creating and editing office files (doc, docx, xls, xlsx, ppt, pptx), sharing transactions can be performed. Data control and sharing module (20) Thus, only the documents (15) existing in the enterprise data warehouse (10) not for the purpose of editing, but also for the purpose of creating a document (15) from scratch. has been made available. With data control and sharing module (20) Creation date, edit date, size, share of the created documents (15) authorization status and similar information can be displayed.

Bilinen teknikte isletme veri ambarindan (10) alinan belgeler (15) mail, link ve benzeri araciligiyla dis ya da iç kullanicilar ile paylasilmaktadir. Fakat bu paylasimlarda belgelerin (15) disari çiktigi noktadan itibaren kontrol kaybedilmektedir. Sizdirilma problemlerinin önüne geçmek üzere veri kontrol ve paylasim modülü (20) sahip oldugu izolasyon alt modülü (21) güvenli bir izole alan saglayarak verilerin güvenli olarak paylasilmasini, tüm gerekli islemlerin (belge görüntüleme (22), belge düzenleme (23) ve yazdirma ve kopyalama engelleme (24)) sistem içerisinde yapilmasini saglarken, belgelerin (15) ve verilerin dis kaynaklarla kayit altina alinip paylasilmasini da engellemektedir. In the known art, the documents (15) received from the enterprise data warehouse (10) are mail, link and It is shared with external or internal users through the like. But this control from the point when the documents (15) come out in the shares. is lost. To prevent leakage problems, data control and The isolation submodule (21) of the sharing module (20) can be safely isolated. by providing a space to share data securely, to ensure that all necessary transactions are (document viewing (22), document editing (23) and printing and copying blocking (24)) within the system, while documents (15) and It also prevents the recording and sharing of data with external sources.

Isletmelerde, belgelerin (15) indirilmesi ve yazdirilmasinin istenmedigi durumlarda ve ihtiyaç halinde hem iç hem de dis paylasim yapilmasi gerekebilmektedir. Izolasyon alt modülü (21) sayesinde bu gibi durumlarda belge (15) sadece görüntüleme seçenegi ile paylasilmaktadir. Sadece görüntüleme yetkisiyle paylasilan bir belge (15) veri kontrol ve paylasim modülü (20) araciligiyla görüntülenebilmekte fakat indirme, içerigini kopyalama ve yazdirma seçenekleri engellenmektedir. Eger belgenin (15) ekran üzerinden fotografi bile çekilse güvenlik filigrani araciligiyla hangi kullanici üzerinden bilginin sizdirildigi ortaya çikarilmaktadir. In enterprises, it is not desired to download and print documents (15) both internal and external sharing in cases and in case of need may be required. In such cases, thanks to the isolation submodule (21) document (15) is shared with the view-only option. Just a document shared with viewing authority (15) data control and sharing module (20), but downloading, copying its content and print options are blocked. If the document (15) Even if the photo is taken, which user via the security watermark it is revealed that the information is leaked.

Bulusta belge (15) üzerinde kisiye özgü ve anlik olarak olusturulan filigran yer almaktadir. Bu filigran sayesinde, alici bu belgeyi (15) üçüncü kisiler ile paylasirsa, belgeyi (15) kimin paylastigi tespit edilebilmektedir. Filigran ayrica, belge (15) indirilirse ne zaman indirdigi, hangi IP'den indirildigi, hangi tarih ve saatte indirildigini içeren zaman damgali olarak delil niteligi olusturabilecek detayli bilgi içermektedir. Filigran sayesinde belge (15) ekrandan fotograf olarak bile çekilip paylasilsa, bu verilere erisilebilmektedir. In the invention, there is a watermark created on the document (15) that is personal and instantaneously. takes. By means of this watermark, the recipient can share this document (15) with third parties. If it shares, it can be determined who shared the document (15). The watermark also if the document (15) is downloaded, when it was downloaded, from which IP it was downloaded, what date and time-stamped that it was downloaded per hour, which can create evidence contains detailed information. Thanks to the watermark, the document (15) is displayed as a photo from the screen. Even if it is pulled and shared, this data can be accessed.

Claims (6)

ISTEMLERREQUESTS 1- Bulus, isletme veri ambarindaki belgelerin (15), indirilmeden ve kontrollü bir sekilde paylasilarak görüntülenebilmesini ve belge (15) üzerinde düzenleme yapilabilmesini saglayan, belgenin yazdirilmasini ve kopyalanmasini engelleyerek isletme veri ambarindan sizdirilmasinin önüne geçen bir veri izolasyon yöntemi ve sistemi olup, özelligi; isletme veri ambarindaki (10) metin bazli belgelerin (15), PDF belgelerin (15), resim, video ve ses belgelerinin (15), ofis dosyasi belgelerinin (15) indirilmeden belge görüntüleme (22) isleminin gerçeklestirilmesini saglayan, o isletme veri ambarindaki (10) metin bazli belgelerin (15) ve ofis dosyasi belgelerinin (15) indirilmeden belge düzenleme (23) isleminin gerçeklestirilmesini saglayan, o belgelerin (15) sizdirilmasini önlemek amaci ile yazdirma ve kopyalama engelleme (24) islemini gerçeklestiren, °t~ izolasyon alt modülüne (21) sahip, isletme veri ambarina (10) entegre en az bir veri kontrol ve paylasim modülü (20) içermesi ile karakterize edilmesidir.1- The invention is a data isolation method and system that allows the documents (15) in the enterprise data warehouse to be viewed and edited without downloading them and to be shared in a controlled manner, and prevents the document from being leaked from the enterprise data warehouse by preventing the printing and copying of the document. It enables the realization of document viewing (22) without downloading text-based documents (15), PDF documents (15), picture, video and audio documents (15), office file documents (15) in the enterprise data warehouse (10), in that enterprise data warehouse ( 10) to the °t~ isolation submodule, which enables the document editing (23) to be performed without downloading text-based documents (15) and office file documents (15), performing the print and copy prevention (24) operation in order to prevent the leakage of those documents (15) (21) is characterized by including at least one data control and sharing module (20) integrated into the enterprise data warehouse (10). 2- istem 1”e uygun bir veri izolasyon sistemi olup, özelligi; isletme veri ambarina (10) entegre veri kontrol ve paylasim modülünün (20) alt modülü olan izolasyon alt modülü (21) ile isletme veri ambarindaki (10) txt ve html formatli metin bazli belgelerin (15) (txt, html ve benzeri) görüntülenip düzenlenebilmesidir.2- It is a data isolation system in accordance with claim 1, its feature is; It is the ability to view and edit txt and html formatted text-based documents (15) (txt, html and similar) in the enterprise data warehouse (10) with the isolation submodule (21) which is the submodule of the data control and sharing module (20) integrated into the enterprise data warehouse (10). . 3- Istem 1'e uygun bir veri izolasyon sistemi olup, özelligi; isletme veri ambarina (10) entegre veri kontrol ve paylasim modülünün (20) alt modülü olan izolasyon alt modülü (21) ile jpg, gif, png, mov, mp3 formatli belgelerin (15) görüntülenebilmesidir.3- It is a data isolation system in accordance with claim 1, its feature is; It is possible to display jpg, gif, png, mov, mp3 format documents (15) with the isolation submodule (21) which is the submodule of the data control and sharing module (20) integrated into the enterprise data warehouse (10). 4- Istem 1'e uygun bir veri izolasyon sistemi olup, özelligi; isletme veri ambarina (10) entegre veri kontrol ve paylasim modülünün (20) alt modülü olan izolasyon alt modülü (21) ile doo, docx, xls, xlsx, ppt, pptx olan ofis dosyalarinin görüntülenmesi ve düzenlenmesidir.4- It is a data isolation system in accordance with claim 1, its feature is; It is the viewing and editing of office files such as doo, docx, xls, xlsx, ppt, pptx with the isolation submodule (21) which is the submodule of the data control and sharing module (20) integrated into the enterprise data warehouse (10). 5- istem 1'e uygun bir veri izolasyon sistemi olup, özelligi; isletme veri ambarina (10) entegre veri kontrol ve paylasim modülü (20) ile paylasim özelligi üzerinden yazma yetkisi içinde paylasilan belgelerin (15) paylasilan kisi ile gerçek zamanli olarak düzenlenebilmesidir.5- It is a data isolation system according to claim 1, its feature is; The data control and sharing module (20) integrated into the enterprise data warehouse (10), and the sharing feature, and the real-time editing of the documents (15) that are shared within the authorizing of writing, with the shared person. 6- Istem 1'e uygun bir veri izolasyon sistemi olup, özelligi; paylasilan belgelere (15) kopyalanma zamanii hangi lP'den kopyalandigi ile ilgili zaman damgali olarak delil niteligi olusturabilecek detayli bilgi içeren anlik filigran atayan isletme veri ambarina (10) entegre veri kontrol ve paylasim modülünün (20) alt modülü olan izolasyon alt modülünü (21) içermesidir.6- It is a data isolation system in accordance with claim 1, its feature is; Isolation submodule (21) which is the submodule of the data control and sharing module (20) integrated into the enterprise data warehouse (10), which assigns an instant watermark containing detailed information that can constitute evidence with a time stamp about the time of copying to the shared documents (15) from which IP they were copied from. it contains.
TR2020/09848A 2020-06-24 2020-06-24 An isolation method and system for data control and sharing TR202009848A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
TR2020/09848A TR202009848A2 (en) 2020-06-24 2020-06-24 An isolation method and system for data control and sharing
PCT/TR2021/050496 WO2021262117A1 (en) 2020-06-24 2021-05-26 An isolation method and system for data control and sharing

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TR2020/09848A TR202009848A2 (en) 2020-06-24 2020-06-24 An isolation method and system for data control and sharing

Publications (1)

Publication Number Publication Date
TR202009848A2 true TR202009848A2 (en) 2020-08-21

Family

ID=75525833

Family Applications (1)

Application Number Title Priority Date Filing Date
TR2020/09848A TR202009848A2 (en) 2020-06-24 2020-06-24 An isolation method and system for data control and sharing

Country Status (2)

Country Link
TR (1) TR202009848A2 (en)
WO (1) WO2021262117A1 (en)

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014178072A2 (en) * 2013-04-17 2014-11-06 Gyan Prakash Kesarwani Online method for accessing and assessing a document, images, audio and video
US10169552B2 (en) * 2015-07-17 2019-01-01 Box, Inc. Event-driven generation of watermarked previews of an object in a collaboration environment
US10977381B2 (en) * 2018-06-28 2021-04-13 Mohammad Mannan Protection system and method against unauthorized data alteration
CN110990345A (en) * 2019-11-28 2020-04-10 中国银行股份有限公司 Method and device for online preview of Excel file

Also Published As

Publication number Publication date
WO2021262117A1 (en) 2021-12-30

Similar Documents

Publication Publication Date Title
US11775666B2 (en) Federated redaction of select content in documents stored across multiple repositories
US10382406B2 (en) Method and system for digital rights management of documents
US9542563B2 (en) Accessing protected content for archiving
US11640498B2 (en) Method and system for selective document redaction
Nadkarni et al. Preventing accidental data disclosure in modern operating systems
KR100781730B1 (en) System and method for electronically managing composite documents
US9223999B2 (en) Management of Digital information
AU2011204871B2 (en) Dynamic icon overlay system and method of producing dynamic icon overlays
US8234496B1 (en) Image leak prevention using digital watermark
US20140026182A1 (en) Data loss prevention (dlp) methods by a cloud service including third party integration architectures
JP5298891B2 (en) Access control program, access control method, and access control apparatus
NZ517849A (en) Centralized document management system
US20170177608A1 (en) Electronic file management system
CN115131002A (en) Method for signing electronic data and managing electronic files
JP4516598B2 (en) How to control document copying
JP2023101763A (en) Data management system and data management method
TR202009848A2 (en) An isolation method and system for data control and sharing
Karle Managing the digital you: Where and how to keep and organize your digital life
US10803093B2 (en) Systems and methods for enabling a file management label to persist on a data file
JP2006252448A (en) Document management device, sentence management program and document management method
Jantz et al. Digital archiving and preservation: Technologies and processes for a trusted repository
US20140082752A1 (en) Read-Once Data Sets and Access Method
Team Draft
Dhru et al. Personal Health Record: External Sharing in a Secure Manner
JP5097987B2 (en) Electronic file vending machine management system