CN108476135B - 用于控制数据访问的方法、设备和计算机可读存储介质 - Google Patents
用于控制数据访问的方法、设备和计算机可读存储介质 Download PDFInfo
- Publication number
- CN108476135B CN108476135B CN201780007149.4A CN201780007149A CN108476135B CN 108476135 B CN108476135 B CN 108476135B CN 201780007149 A CN201780007149 A CN 201780007149A CN 108476135 B CN108476135 B CN 108476135B
- Authority
- CN
- China
- Prior art keywords
- access
- data
- decision
- context
- request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 86
- 238000003860 storage Methods 0.000 title claims description 19
- 230000004044 response Effects 0.000 claims abstract description 22
- 238000013475 authorization Methods 0.000 claims description 43
- 230000008569 process Effects 0.000 claims description 33
- 238000004458 analytical method Methods 0.000 claims description 22
- 238000004891 communication Methods 0.000 description 56
- 238000012545 processing Methods 0.000 description 10
- 238000012854 evaluation process Methods 0.000 description 9
- 230000006870 function Effects 0.000 description 8
- 238000012512 characterization method Methods 0.000 description 6
- 238000013500 data storage Methods 0.000 description 5
- 238000007726 management method Methods 0.000 description 5
- 238000004590 computer program Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 4
- 238000013473 artificial intelligence Methods 0.000 description 3
- 230000002567 autonomic effect Effects 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 3
- 230000001413 cellular effect Effects 0.000 description 2
- 239000003795 chemical substances by application Substances 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000011156 evaluation Methods 0.000 description 2
- 230000010365 information processing Effects 0.000 description 2
- 238000004519 manufacturing process Methods 0.000 description 2
- 238000012544 monitoring process Methods 0.000 description 2
- 238000011511 automated evaluation Methods 0.000 description 1
- 239000000872 buffer Substances 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 230000001186 cumulative effect Effects 0.000 description 1
- 238000003066 decision tree Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000009826 distribution Methods 0.000 description 1
- 239000000463 material Substances 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 230000035945 sensitivity Effects 0.000 description 1
- 230000005236 sound signal Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/554—Detecting local intrusion or implementing counter-measures involving event detection and direct action
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/062—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2111—Location-sensitive, e.g. geographical location, GPS
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/101—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying security measures for digital rights management
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computing Systems (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Databases & Information Systems (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
Description
Claims (14)
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US15/018,643 | 2016-02-08 | ||
US15/018,643 US9961082B2 (en) | 2016-02-08 | 2016-02-08 | Access control for digital data |
PCT/US2017/015958 WO2017139145A1 (en) | 2016-02-08 | 2017-02-01 | Access control for digital data |
Publications (2)
Publication Number | Publication Date |
---|---|
CN108476135A CN108476135A (zh) | 2018-08-31 |
CN108476135B true CN108476135B (zh) | 2022-09-30 |
Family
ID=59496600
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201780007149.4A Active CN108476135B (zh) | 2016-02-08 | 2017-02-01 | 用于控制数据访问的方法、设备和计算机可读存储介质 |
Country Status (6)
Country | Link |
---|---|
US (1) | US9961082B2 (zh) |
EP (2) | EP4287555A3 (zh) |
CN (1) | CN108476135B (zh) |
CA (1) | CA3007005C (zh) |
ES (1) | ES2959808T3 (zh) |
WO (1) | WO2017139145A1 (zh) |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10375077B1 (en) * | 2016-08-12 | 2019-08-06 | Symantec Corporation | Systems and methods for mediating information requests |
US11791024B2 (en) * | 2017-01-23 | 2023-10-17 | Merative Us L.P. | Implementing localized device specific limitations on access to patient medical information |
US10972258B2 (en) | 2018-07-31 | 2021-04-06 | Mcafee, Llc | Contextual key management for data encryption |
AU2019366169B2 (en) * | 2018-10-26 | 2023-03-30 | Servicenow Canada Inc. | Sensitive data detection and replacement |
US11457032B2 (en) * | 2019-05-23 | 2022-09-27 | Kyndryl, Inc. | Managing data and data usage in IoT network |
US11620297B2 (en) * | 2020-02-26 | 2023-04-04 | Jpmorgan Chase Bank, N.A. | Method and system for data usage analysis |
US20220345457A1 (en) * | 2021-04-22 | 2022-10-27 | Microsoft Technology Licensing, Llc | Anomaly-based mitigation of access request risk |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101310474A (zh) * | 2005-11-18 | 2008-11-19 | Lg电子株式会社 | 用于装置之间的数字版权管理的方法和系统 |
CN101512479A (zh) * | 2006-09-12 | 2009-08-19 | 奥多比公司 | 对数字内容的部分的选择性访问 |
US7783666B1 (en) * | 2007-09-26 | 2010-08-24 | Netapp, Inc. | Controlling access to storage resources by using access pattern based quotas |
CN102077207A (zh) * | 2008-06-27 | 2011-05-25 | 微软公司 | 用于内容访问的基于流水线的授权 |
Family Cites Families (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FR2833446B1 (fr) * | 2001-12-12 | 2004-04-09 | Viaccess Sa | Protocole de controle du mode d'acces a des donnees transmises en mode point a point ou point multi-point |
US7389430B2 (en) * | 2002-12-05 | 2008-06-17 | International Business Machines Corporation | Method for providing access control to single sign-on computer networks |
TW200718147A (en) * | 2005-10-31 | 2007-05-01 | Telepaq Technology Inc | Data protection method and the corresponding decryption module |
US8286254B2 (en) * | 2005-11-16 | 2012-10-09 | Cisco Technology, Inc. | Behavioral learning for interactive user security |
US20070143851A1 (en) * | 2005-12-21 | 2007-06-21 | Fiberlink | Method and systems for controlling access to computing resources based on known security vulnerabilities |
US8239954B2 (en) * | 2007-05-07 | 2012-08-07 | Microsoft Corporation | Access control based on program properties |
US8479265B2 (en) * | 2008-07-02 | 2013-07-02 | Oracle International Corporation | Usage based authorization |
US8863303B2 (en) * | 2008-08-12 | 2014-10-14 | Disney Enterprises, Inc. | Trust based digital rights management systems |
CN101883107B (zh) * | 2010-06-18 | 2014-06-04 | 华为技术有限公司 | 实现上下文感知业务应用的方法和相关装置 |
WO2014063121A1 (en) * | 2012-10-19 | 2014-04-24 | Mcafee, Inc. | Personal safety and emergency services |
WO2015168203A1 (en) * | 2014-04-29 | 2015-11-05 | PEGRight, Inc. | Characterizing user behavior via intelligent identity analytics |
CN104580163B (zh) * | 2014-12-19 | 2018-08-24 | 南阳师范学院 | 私有云环境下访问控制策略构建系统 |
-
2016
- 2016-02-08 US US15/018,643 patent/US9961082B2/en active Active
-
2017
- 2017-02-01 ES ES17750582T patent/ES2959808T3/es active Active
- 2017-02-01 CA CA3007005A patent/CA3007005C/en active Active
- 2017-02-01 EP EP23191758.4A patent/EP4287555A3/en active Pending
- 2017-02-01 WO PCT/US2017/015958 patent/WO2017139145A1/en unknown
- 2017-02-01 EP EP17750582.3A patent/EP3414866B1/en active Active
- 2017-02-01 CN CN201780007149.4A patent/CN108476135B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101310474A (zh) * | 2005-11-18 | 2008-11-19 | Lg电子株式会社 | 用于装置之间的数字版权管理的方法和系统 |
CN101512479A (zh) * | 2006-09-12 | 2009-08-19 | 奥多比公司 | 对数字内容的部分的选择性访问 |
US7783666B1 (en) * | 2007-09-26 | 2010-08-24 | Netapp, Inc. | Controlling access to storage resources by using access pattern based quotas |
CN102077207A (zh) * | 2008-06-27 | 2011-05-25 | 微软公司 | 用于内容访问的基于流水线的授权 |
Also Published As
Publication number | Publication date |
---|---|
EP3414866A1 (en) | 2018-12-19 |
ES2959808T3 (es) | 2024-02-28 |
EP3414866B1 (en) | 2023-10-04 |
WO2017139145A1 (en) | 2017-08-17 |
EP3414866C0 (en) | 2023-10-04 |
US9961082B2 (en) | 2018-05-01 |
CA3007005C (en) | 2024-02-13 |
CA3007005A1 (en) | 2017-08-17 |
US20170230369A1 (en) | 2017-08-10 |
CN108476135A (zh) | 2018-08-31 |
EP4287555A3 (en) | 2024-02-28 |
EP4287555A2 (en) | 2023-12-06 |
EP3414866A4 (en) | 2019-01-23 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108476135B (zh) | 用于控制数据访问的方法、设备和计算机可读存储介质 | |
US8949929B2 (en) | Method and apparatus for providing a secure virtual environment on a mobile device | |
USRE46916E1 (en) | System and method for secure management of mobile user access to enterprise network resources | |
US11516251B2 (en) | File resharing management | |
US8798579B2 (en) | System and method for secure management of mobile user access to network resources | |
EP3192002B1 (en) | Preserving data protection with policy | |
EP1678618B1 (en) | Method, device and program product for application authorization | |
EP2936378B1 (en) | Orchestrated interaction in access control evaluation | |
US20130091542A1 (en) | Application marketplace administrative controls | |
TW201110642A (en) | Connectivity dependent application security for remote devices | |
EP3337149B1 (en) | Device restrictions during events | |
US10032044B2 (en) | Multi-party authentication and authorization | |
US8552833B2 (en) | Security system for managing information on mobile wireless devices | |
CN103778379B (zh) | 管理设备上的应用执行和数据访问 | |
US20100023523A1 (en) | Method and apparatus for managing data having access restriction information | |
US9106766B2 (en) | Phone call management | |
Olsson et al. | 5G zero trust–A Zero-Trust Architecture for Telecom | |
US20230092455A1 (en) | Systems and methods for managing access to data based on a geographic location requirement | |
JP2020052497A (ja) | 情報処理装置およびプログラム |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1260235 Country of ref document: HK |
|
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right |
Effective date of registration: 20240605 Address after: Ai Erlandubailin Patentee after: Maliki Innovation Co.,Ltd. Country or region after: Ireland Address before: Voight, Ontario, Canada Patentee before: BlackBerry Ltd. Country or region before: Canada |