WO2014117062A1 - Copying electronic documents into a virtual storage system - Google Patents

Copying electronic documents into a virtual storage system Download PDF

Info

Publication number
WO2014117062A1
WO2014117062A1 PCT/US2014/013130 US2014013130W WO2014117062A1 WO 2014117062 A1 WO2014117062 A1 WO 2014117062A1 US 2014013130 W US2014013130 W US 2014013130W WO 2014117062 A1 WO2014117062 A1 WO 2014117062A1
Authority
WO
WIPO (PCT)
Prior art keywords
storage system
virtual storage
electronic document
user
electronic
Prior art date
Application number
PCT/US2014/013130
Other languages
French (fr)
Inventor
Ronald M. DALY
Leonard Giambalvo
Robert Jacob SMILIE
Original Assignee
Digitalmailer, Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Digitalmailer, Inc. filed Critical Digitalmailer, Inc.
Priority to EP14742998.9A priority Critical patent/EP2948867A4/en
Publication of WO2014117062A1 publication Critical patent/WO2014117062A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/0614Improving the reliability of storage systems
    • G06F3/0619Improving the reliability of storage systems in relation to data integrity, e.g. data losses, bit errors
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6272Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database by registering files or documents with a third party
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/14Error detection or correction of the data by redundancy in operation
    • G06F11/1402Saving, restoring, recovering or retrying
    • G06F11/1446Point-in-time backing up or restoration of persistent data
    • G06F11/1448Management of the data involved in backup or backup restore
    • G06F11/1451Management of the data involved in backup or backup restore by selection of backup contents
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1408Protection against unauthorised use of memory or access to memory by using cryptography
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0646Horizontal data movement in storage systems, i.e. moving data in between storage devices or systems
    • G06F3/065Replication mechanisms
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/067Distributed or networked storage systems, e.g. storage area networks [SAN], network attached storage [NAS]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/16Error detection or correction of the data by redundancy in hardware
    • G06F11/20Error detection or correction of the data by redundancy in hardware using active fault-masking, e.g. by switching out faulty elements or by switching in spare elements
    • G06F11/2053Error detection or correction of the data by redundancy in hardware using active fault-masking, e.g. by switching out faulty elements or by switching in spare elements where persistent mass storage functionality or persistent mass storage control functionality is redundant
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2212/00Indexing scheme relating to accessing, addressing or allocation within memory systems or architectures
    • G06F2212/10Providing a specific technical effect
    • G06F2212/1052Security improvement

Definitions

  • the present invention relates to a virtual storage system. More
  • the present invention relates to a virtual storage system and methods of copying electronic documents into the virtual storage system.
  • a virtual storage system is an online storage system where data is stored in virtual storage pools.
  • the pools are hosted by third parties that operate large data centers.
  • the third parties virtualize resources in servers and present the resources as virtual storage pools for users to store files, for example.
  • the virtual storage system is accessed through a web application programming interface (API), a gateway or a Web-based user interface (Ul), for example.
  • API web application programming interface
  • Ul Web-based user interface
  • a typical virtual storage system e.g., a cloud-type storage system
  • the typical virtual storage system can be easily accessed over a communication network (e.g., the Internet) using simple single-factor
  • the typical virtual storage system does not encrypt files that are stored on their servers which makes the files easily visible to internal employees and hackers. Further, the typical virtual storage system is not Pci Compliant (PCI DSS) a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards. Further, once any file is stored on the virtual storage system they become property of the virtual storage system provider and are no longer user-owned; therefore the files can be used for other purposes, such as data mining without user permission.
  • PCI DSS Pci Compliant
  • Online banking systems provide resources to enable users to conduct banking transactions electronically from a personal computer, for example.
  • Online banking transactions include monitoring accounts, conducting money transfers, applying for loans, submitting loan payments, etc.
  • users are required to visit the bank in person, to conduct certain transactions such as depositing documents into a safe deposit box which is an individually secured container held in a bank vault, for example.
  • the safe deposit box is used to store valuable possessions, such as jewelry, currency, marketable securities, and important documents (e.g., bank statements, wills, passports, property deeds, insurance policies, photographs and birth certificates).
  • Bank personnel typically open the bank vault with a key and a user is required to produce an assigned key to open the safe deposit box.
  • online banking systems fail to allow users to store important documents electronically, and also fail to allow users to retrieve, view and share these documents electronically outside of the bank environment, when desired.
  • the present invention obviates the above-mentioned disadvantages by providing a virtual storage system that encrypts and copies electronic documents retrieved from an external system (e.g., an online banking system), to thereby enable a user to store important documents in a known storage location within the virtual storage system.
  • an external system e.g., an online banking system
  • the present invention relates to virtual storage system and methods of selectively or automatically copying electronic documents (e.g., bank
  • the virtual storage system of the present invention employs a multi-factor authentication process for verifying user access rights, via a specifically-designed application programming interface (API), for example, that can be installed at a user computing device, thereby providing a maximum security level of file storage for the user.
  • API application programming interface
  • the virtual storage system of the present invention is also PCI Compliant following a proprietary information security standard to allow storage of cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards.
  • the virtual storage system locks each file with encryption as it is uploaded or copied, and only the user-owner holds the key (i.e., access rights) to retrieve the file, thereby leaving ownership of the file with the user-owner at all times and providing extra security protection from unauthorized individuals.
  • the present invention provides a virtual storage system in data
  • a communication network which includes at least one processor configured to process, encrypt and copy electronic documents retrieved from an external system, and a plurality of redundant physical storage devices in data communication with the at least one processor and each configured to store the electronic documents retrieved from the external system.
  • the present invention is a method implemented by computer system to effect the copying of electronic documents into the virtual storage system in data communication via a communication network, with an online document retrieval and storage system.
  • the method includes receiving input data at the online document retrieval and storage system from a user at a computing device, via a communication network, requesting access to online account information, selecting and viewing an electronic document of the online account information to be copied, selecting a copy link within the electronic document, to copy the electronic document, viewing a plurality of electronic folders of the virtual storage system in a folder selection dialog, selecting via the user, a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected, encrypting the electronic document via the virtual storage system, and copying the electronic document to the specific folder of the plurality of electronic folders.
  • the present invention is a method implemented by a computer system to effect the automatic copying of electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system.
  • the method includes processing an electronic document associated with a user, at the online document retrieval and storage system, determining whether the user has access rights to the virtual storage system, encrypting the electronic document via the virtual storage system when it is determined that the user has access rights to the virtual storage system, and automatically copying the electronic document to the virtual storage system.
  • Fig. 1 is a block diagram of a virtual storage system that can be
  • Fig. 2 is a block diagram of a virtual storage system that can be implemented within alternative embodiments of the present invention.
  • Fig. 3 is a block diagram of a virtual storage system that can be
  • Fig. 4 is a block diagram of a virtual storage system that can be
  • Fig. 5 is a block diagram of an exemplary computer to be implemented within one or more embodiments of the present invention.
  • Fig. 6 is a flowchart illustrating a method of selectively copying electronic documents into the virtual storage system of Fig. 1 according to one or more embodiments of the present invention.
  • Fig. 7 is a flowchart illustrating a method of automatically copying electronic documents into the virtual storage system of Fig. 1 according to one or more embodiments of the present invention.
  • Fig. 8 is a screen shot of a banking system that can be implemented within one or more embodiments of the present invention.
  • Fig. 9 is a screen shot of an exemplary electronic document that can be implemented within one or more embodiments of the present invention.
  • Fig. 10 is a screen shot of an electronic folder selection operation of Fig. 6 that can be implemented within one or more embodiments of the present invention.
  • Fig. 1 1 is a screen shot of a copying operation of Fig. 6 that can be implemented within one or more embodiments of the present invention.
  • Fig. 12 is a screen shot of the virtual storage system 100 of Fig. 1 that can be implemented within one or more embodiments of the present invention.
  • Fig. 13 is a block diagram of an exemplary physical storage system for implementation of the virtual storage system in accordance with one or more embodiments of the present invention.
  • a process is terminated when its operations are completed, but could have additional steps not included in a figure.
  • a process may correspond to a method, a function, a procedure, a subroutine, a subprogram, etc.
  • a process corresponds to a function
  • its termination can correspond to a return of the function to the calling function or the main function.
  • embodiments may be implemented by hardware, software, firmware, middleware, microcode, hardware description languages, or any combination thereof.
  • the program code or code segments to perform the necessary tasks may be stored in a machine readable medium.
  • a processor(s) may perform the necessary tasks.
  • the present invention as will be described in greater detail below provides a method for copying electronic documents, (e.g., electronic banking statements) into a virtual storage system and system implementing the method.
  • electronic documents e.g., electronic banking statements
  • the present invention provides various embodiments as described below. However it should be noted that the present invention is not limited to the embodiments described herein, but could extend to other embodiments as would be known or as would become known to those skilled in the art.
  • Fig. 1 is a block diagram of a virtual storage system implemented within one or more embodiments of the present invention.
  • a user at a user computing device 50 is configured to access, via a communication network 60, an external system i.e., an online document retrieval and storage system such as a banking system 70 to perform online banking transactions, such as viewing bank accounts and bank statements, applying for loans, and other transactions.
  • the user computing device 50 includes at least one of a mobile phone or smart phone, a personal computer or laptop, or a personal digital assistant (PDA) or tablet.
  • PDA personal digital assistant
  • the present invention is not limited to any particular type of user computing device 50, and may vary accordingly.
  • the user accesses the banking system 70 by inputting input data including identification and log-in information such as a user ID and password via a user interface (Ul) of the user computing device 50.
  • identification/log-in information such as a user ID and password
  • the banking system 70 retrieves the user's banking information and displays the banking information via a display of the user computing device 50.
  • the banking system 70 is configured to receive the input data and provide the user with electronic documents (e.g., bank statements) in webpage format or any other format over the communication network 60.
  • the banking system 70 communicates via a communication network 80, with a virtual storage system 100 described in detail below.
  • the communication networks 60 and 80 include a wired or wireless network for data communication.
  • communication networks 60 and 80 is achieved by using web services
  • the communication networks 60 and 80 may include any subsystem for exchanging data such as the Internet, intranet, extranet, wide area network (WAN), local area network (LAN), Restful web services, JAVAScript Object Notation (JSON), Extensible Mark-up Language (XML)-based communication network, Simple Object Access Protocol (SOAP)-based Services and satellite communication network. Further, the communication networks 60 and 80 can be other types of networks such as interactive television (ITV). According to one or more embodiments, the communication networks 60 and 80 may be the same or different types of networks.
  • WAN wide area network
  • LAN local area network
  • JSON JAVAScript Object Notation
  • XML Extensible Mark-up Language
  • SOAP Simple Object Access Protocol
  • the virtual storage system 100 is a user-specific storage system which allows each user to have a secure access to their files stored within the virtual storage system 100.
  • the virtual storage system 100 encrypts each electronic document as it is retrieved from the external system, and only the user-owner can access the electronic document thereby leaving ownership of the files within the virtual storage system 100 with the user-owner at all times.
  • the virtual storage system 100 includes a web interface 122 for interfacing with the external system (i.e., the banking system 70) over the communication network 80.
  • the web interface 122 provides a secure connection to the virtual storage system 100.
  • the web interface 122 is a specifically-designed application programming interface (API), for example, which performs
  • a secure connection is made between the banking system 70 and the virtual storage system 100 on a transport layer level, for example.
  • a transport layer security (TLS) or secure sockets layer (SSL) cryptographic protocol may be employed to provide secure communication over the communication networks 60 and 80.
  • the web interface 122 is a web application programming interface (API), a gateway or a Web-based user interface (Ul), for example.
  • the virtual storage system 100 is PCI Compliant to allow storage of cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards.
  • the virtual storage system 100 further includes at least one processor 124 for receiving information including requests from the user at the banking system 70 and processing the requests, such as storing, retrieving and copying electronic documents.
  • the virtual storage system 100 further includes at least one storage server 125 comprising a plurality of physical storage devices 126 for storing files such as documents, audio files, photographs, movies, and images received from the user via the banking system 70.
  • the virtual storage system 100 acts as a safe deposit box for receiving and securely storing the files received from the user via the banking system 70.
  • processor 124 and two storage devices 126 are shown, the present invention is not limited hereto, and may vary accordingly.
  • the virtual storage system 100 includes a web interface (e.g., the web interface 122) however the present invention is not limited to this particular configuration, and may vary accordingly.
  • Figs. 2 through 4 illustrate alternative configurations of the virtual storage system 100, and communication between the virtual storage system 100, the external system (e.g., the banking system 70), and/or the user computing device 50 according to other embodiments of the present invention that may be implemented.
  • the external system e.g., the banking system 70
  • the user computing device 50 e.g., the user computing device 50
  • Some of the components shown in Figs. 2 through 4 are the same as the components discussed above with reference to Fig. 1 therefore a detailed description of these components is omitted.
  • the banking system 70 includes a web interface 130 configured to interface the banking system 70 with the virtual storage system 100 over the communication network 80.
  • the web interface 130 functions in a similar manner as the web interface 122 of the virtual storage system 100 therefore in this embodiment, the web interface 122 of the virtual storage system 100 is omitted.
  • the user computing device 50 includes a web application 150 (e.g., a web API) for connecting to the banking system 70 and the virtual storage system 100 indirectly through the banking system 70.
  • the web application 150 is an internet-enabled application, for example, that has specific functionality for the user computing device 50 (e.g., a mobile phone).
  • the web application 150 is accessed through a web browser of the user computing device 50 and does not require downloading and installing thereof onto the user computing device 50.
  • the user computing device 50 includes a native application 160 for connecting directly to web services (i.e., the processor 124) of the virtual storage system 100.
  • the native application 160 is directly installed on the user computing device 50 to allow the user to gain direct access to the virtual storage system 100.
  • the native application 160 is a specifically-designed API for accessing the virtual storage system 100.
  • the tablet may include a tablet API for directly accessing the web services of the virtual storage system 100. Therefore, in this embodiment, the web interface 130 of the banking system 70 as shown in the embodiment illustrated in Fig. 2; and the web interface 122 of the virtual storage system 100 as shown in Fig. 3 are omitted.
  • the native application 160 may include a multi-factor authentication process to be performed at many levels to enable a user to gain direct access to the virtual storage system 100 from the user computing device 50.
  • the multi-factor authentication process may include steps such as sending login information (e.g., user ID and password information) in a correspondence (e.g., a text message or email) to the user, and providing a time-based one-time password system to the user via a third party.
  • a single-factor authentication process may be used to gain access to the virtual storage system 100 via the external system (e.g., the banking system 70) since the external system and the virtual storage system 100 communicate via a secure connection on the communication network 80.
  • the external system e.g., the banking system 70
  • the virtual storage system is implemented on a physical storage system 1300 such as that illustrated in Fig. 13.
  • the physical storage system 1300 includes a plurality of host adapters (CHA) 1310, disk adapters (DKA) 1320, cache memories (CACHE) 1330, shared memories (SM) 1340, and hard disk drives (HDD) 1350 connected with each other via common paths 1360 and connection lines 1370.
  • Each of the hard disk drives (HDD) 1350 is connected to two disk adapters 1320, for example, using different connection lines 1370.
  • the host adapters 1310 control data transfer between host computers 1380, the cache memories 1330 and the hard disk drives 1350.
  • the cache memories 1330 temporarily store data received from the host computer 1380 and data read from the hard disk drives 1350.
  • the shared memories 1340 are shared between the host adapters 1310 and the disk adapters 1320.
  • the present invention is not limited to any particular number of host adapters 1310, disk adapters 1320, cache memories 1330, shared memories 1340 and hard disk drives 1350, and may vary accordingly.
  • the physical storage system 1300 is one example of a physical storage system for which the virtual storage system can be implemented thereon.
  • the present invention is not limited to a particular configuration of the physical storage system.
  • the hard disk drives (HDD) 1350 can be replaced with a flash storage, RAM disks or rotated disk drives, for example.
  • the host computers 1380 can be the processor 124 or a separate computer, for example.
  • the virtual storage system 100 can be implemented on any type of storage system such as a network-attached storage (NAS), a storage area network (SAN), or a distributed memory array.
  • the physical storage devices of the physical storage system 1300 as described above can be configured in a RAID (Redundant Array of Independent Disks) configuration. Further, the reliability of the data stored in the storage devices 126 of the virtual storage system 100 can be stored in a redundant manner in redundant data centers using mirroring, remote copy, or the like. The use of redundant storage devices enables the data stored to be duplicated thereby preventing data loss.
  • RAID Redundant Array of Independent Disks
  • the user can be automatically directed to the virtual storage system 100 when desired.
  • the user computing device 50, banking system 70 and virtual storage system 100 can be connected with each other via the communication networks 60 and 80.
  • the user computing device 50 may occasionally connect to the communication network 60 while the banking system 70 and the virtual storage system 100 may maintain a connection to the communication networks 60 and 80.
  • the user computing device 50 and the virtual storage system 100 are in direct
  • the virtual storage system 100 can be included within the banking system 70 or the user computing device 50 as installable software.
  • Fig. 5 is a block diagram of an exemplary computing device 500 illustrating components of the computing device 50, the banking system 70 and the virtual storage system 100 shown in Fig. 1 .
  • the computing device 500 includes various components for inputting, outputting, storing and processing data.
  • the computing device 500 includes a processor 505 for performing tasks including executing one or more applications, retrieving data from a storage device e.g., storage 506, and/or outputting data.
  • the processor 505 can be connected to a Random access memory (RAM) module 508 wherein application data and/or instructions may be temporarily stored.
  • RAM Random access memory
  • the computing device 500 can further includes a Read Only Memory (ROM) 509 configured to allow data stored thereon to persist after the computing device 500 is turned off and is used for storing an operating system (OS) of the computing device 500.
  • the storage device 506 may also provide storage for data files and may include computer readable mediums e.g., disk drives, optical storage mediums e.g., CD ROM drives, magnetic tape storage systems, and flash memory.
  • the processor 505 is configured to retrieve an application from the storage 506 and store the instructions associated with the application in the RAM module 508, while the processor 505 is executing the application.
  • the computing device 500 further includes output devices e.g., a display device 510, and a speaker 512, for outputting visual and audio data via a display adapter 514 and an audio adapter 515. Further, the computing device 500 includes input devices e.g., a keyboard 516, a storage media drive 518, and microphone each having an associated adapter 519 for converting the input data into computer readable data.
  • the storage media drive 518 enables users to read and write data to and from the storage media.
  • the computing device 500 includes one or more components for receiving and transmitting data over the communication networks 60 and 80.
  • a network adapter 520 is provided for communication with one or more computing devices over an IP network, for example, for transmission of data such as financial data over a bank network.
  • the network adapter 520 may include instructions associated with processing IP network packets and cellular network packets.
  • the components of the computing device 500 are connected via a system bus 530.
  • Fig. 6 is a flowchart illustrating a method 600 for illustrating a method of selectively copying electronic documents into the virtual storage system 100 of Fig. 1 according to one or more embodiments of the present invention.
  • the method 600 is implemented in software modules for execution by the user computing device 50, the banking system 70 and the virtual storage system 100.
  • the online document retrieval and storage system receives input data from the user at the user computing device 50 for requesting access to online account information (e.g., banking information).
  • online account information e.g., banking information
  • the user selects and views an electronic document within a banking application of the banking system 70 to be copied.
  • the process continues to operation 604, where the user selects a copy link within the electronic document to copy the electronic document.
  • the process continues to operation 606 where the user views a plurality of electronic folders of the virtual storage system 100 in a folder selection dialog, to receive and store the electronic documents.
  • the process continues to operation 608 where the user selects a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected.
  • an optional format conversion process is performed on the electronic document, whereby the electronic document is converted from a first format such as Hyper Text Markup Language (HTML) format to a second format such as portable document format (PDF), for copying and storing.
  • HTML Hyper Text Markup Language
  • PDF portable document format
  • the process continues to operation 614 where the electronic document is copied to the selected folder of the plurality of electronic folders (i.e., the electronic documents are stored in the storage devices 126 of the virtual storage system 100).
  • the electronic document is accessible only by the user at the user computing device 50 via the banking system 70 according to one embodiment, or via the virtual storage system 100 directly according to alternative
  • the electronic document copy and format conversion operations are performed via the processor 124 of the virtual storage system 100.
  • the encryption operation may be performed in one storage location of the virtual storage system 100 (e.g., a first data center), and the copying operation may be performed in another storage location (e.g., a second data center) of the virtual storage system 100.
  • Fig. 7 is a flowchart illustrating a method 700 of automatically copying electronic documents into the virtual storage system of Fig. 1 according to one or more embodiments of the present invention.
  • electronic documents are automatically copied from the external system (e.g., the banking system 70) into the virtual storage system 100 when the user has access rights to the virtual storage system 100.
  • the process begins where an electronic document associated with a user (e.g., a banking statement) is processed at the external system (e.g., the banking system 70). The processing is performed internally within the banking system 70.
  • the process continues to operation 703, where it is determined whether the user has access rights to the virtual storage system 100.
  • access rights of the user may have been established by virtue of the user's access rights to the banking system 70.
  • a verification process may be performed by the virtual storage system 100 at the banking system 70, via the secure connection over the communication network 80.
  • access rights of the user may be verified by performing a multi-factor authentication process as discussed above If it is determine that the user does not have access rights to the virtual storage system 100, the process ends.
  • operation 703 If it is determined at operation 703 that the user has access rights, the process continues to operation 706, where it is determined whether format conversion of the electronic document is required. If it is determined at operation 706 that format conversion is required, the process continues to operation 708 where the optional format conversion process is performed on the electronic document, whereby the electronic document is converted from a first format such as Hyper Text Markup Language (HTML) format to a second format such as portable document format (PDF), for copying and storing. According to one or more embodiments, operation 708 is performed similar to operation 610 shown in Fig. 6.
  • HTML Hyper Text Markup Language
  • PDF portable document format
  • the process continues to operation 712 where the electronic document is automatically copied to a selected folder of the plurality of electronic folders (i.e., the electronic documents are stored in the storage devices 126 of the virtual storage system 100).
  • the electronic document is accessible only by the user at the user computing device 50 via the banking system 70 according to one embodiment, or via the virtual storage system 100 directly according to alternative
  • the electronic document copy and conversion operations are performed via the processor 124 of the virtual storage system 100.
  • the process bypasses operation 708 and continues to operation 712 where the electronic document is copied to the virtual storage system 100.
  • all or a selection of electronic documents can be automatically copied from the external system into the virtual storage system 100.
  • the user may be prompted to copy all or a selection of their electronic documents from the external system (e.g., the banking system 70) into the virtual storage system 100. If so, the electronic documents will be automatically copied to the virtual storage system 100.
  • the present invention is described herein in terms of block components, screen shots, and optional selections and processing steps. It should be appreciated that the functional blocks may be realized by any number of hardware and/or software components configured to perform the specified functions.
  • the present invention may employ various integrated circuits e.g., memory elements, processing elements, logic elements, look-up tables, and others which may perform the functions under the control of one or more processors or other control devices.
  • the software components can be implemented with any programming or scripting language, with various algorithms implemented with data structures, objects, processes, and other programming elements.
  • the screen shot 800 for a user to access banking information via the user computing device 50 As shown in Fig. 8, the screen shot 800 for a user to access banking information via the user computing device 50. As shown, the user has access to electronic statements at a link 802 via a dropdown window 403 and the virtual storage system 100 via a link 804. The user also has access to various other banking information and links for performing banking transactions (e.g., a managed link accounts link).
  • the screen shot 800 is implemented for example, via a web page for network transmission.
  • the web page may include standard HTML documents, and various forms JAVA® applets, active server pages (ASP), common gateway interface scripts (CGI), extensive markup language (SML), dynamic HTML, plugins, etc.
  • the user selects and views electronic statements (e.g., regular account statements, credit card billing statements, or loan statements), via the dropdown window 803, for example (operation 602 of Fig. 6).
  • electronic statements e.g., regular account statements, credit card billing statements, or loan statements
  • Fig. 9 is a screen shot 900 of an electronic document 902 (e.g., a credit card billing statement) as selected by the user.
  • the electronic document 902 includes a copy link 904 for copying the electronic document 902 as desired by the user.
  • the user selects the copy link 904 within the electronic document 902 to copy the electronic document (operation 604 of Fig. 6).
  • the user After selecting to copy the electronic document 902, the user views a plurality of electronic folders in a folder selection dialog as shown in Fig. 10.
  • Fig. 10 is a screen shot 1000 of a folder selection dialog 1002 display a plurality of electronic folders 1004 (e.g., a documents folder, finance folder, legal folder, other folder, and photos folder) for selection (operation 606 of Fig. 6).
  • a folder selection dialog 1002 display a plurality of electronic folders 1004 (e.g., a documents folder, finance folder, legal folder, other folder, and photos folder) for selection (operation 606 of Fig. 6).
  • the user selects a specific folder (e.g., the documents folder 1004a) of the plurality of electronic folders 1004 for receiving and storing the electronic document 902 (operation 608 of Fig. 6).
  • a specific folder e.g., the documents folder 1004a
  • Fig. 1 1 is a screen shot 1 100 showing a processing window 1 102 indicating that the electronic document 902 is being processed (e.g., converted and/or copied).
  • the electronic document 902 may optionally be converted from the first format (e.g., HTML format) to the second format (e.g., PDF format) for storing in an electronic folder 1004.
  • the format conversion operation is an optional processing step (as indicated by the dashed line) and therefore may be omitted.
  • the electronic document 902 is copied into the selected electronic folder (e.g., the documents folder 1004a) of the plurality of folders 1004.
  • the user is able to retrieve the electronic document 902 stored within the virtual storage system 100 by accessing the banking system 70 via the communication network 60 and by accessing the virtual storage system 100 via the communication network 80 or by accessing the virtual storage system 100 directly.
  • the present method embodiment may therefore take the form of a computer or controller implemented processes and apparatuses for practicing those processes.
  • This disclosure can also be embodied in the form of computer program code containing instructions embodied in tangible media, such as floppy diskettes, CD ROMs, hard drives, or any other computer-readable storage medium, wherein, when the computer program code is loaded into and executed by a computer or controller, the computer becomes an apparatus for practicing the invention.
  • This disclosure may also be embodied in the form of computer program code or signal, for example, whether stored in a storage medium, loaded into and/or executed by a computer or controller, or transmitted over some transmission medium, such as over electrical wiring or cabling, through fiber optics, or via electromagnetic radiation, wherein, when the computer program code is loaded into and executed by a computer, the computer becomes an apparatus for practicing the invention.
  • a virtual storage system in data communication with a user computing device via a communication network.
  • the virtual storage system includes at least one processor configured to process and copy electronic documents retrieved from an external system, and a plurality of redundant physical storage devices in data communication with the at least one processor and each configured to store the electronic
  • a method implemented by computer system to effect the copying of electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system comprising receiving input data at the online document retrieval and storage system from a user at a computing device, via a communication network, requesting access to online account information, selecting and viewing an electronic document of the online account information to be copied, selecting a copy link within the electronic document, to copy the electronic document, viewing a plurality of electronic folders of the virtual storage system in a folder selection dialog, selecting via the user, a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected, and copying the electronic document to the specific folder.
  • a method implemented by a computer system to effect the automatic copying of electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system includes processing an electronic document associated with a user, at the online document retrieval and storage system, determining whether the user has access rights to the virtual storage system, and automatically copying the electronic document to the virtual storage system, when it is determined that the user has access rights to the virtual storage system.
  • a computer readable medium storing computer executable instructions that, when executed, cause a computing device to perform a method of copying electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system is provided.
  • the method comprising receiving input data at the online document retrieval and storage system from a user at a computing device, via a communication network, requesting access to online account information, selecting and viewing an electronic document of the online account information to be copied, selecting a copy link within the electronic document, to copy the electronic document, viewing a plurality of electronic folders of the virtual storage system in a folder selection dialog, selecting via the user, a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected, and copying the electronic document to the specific folder.

Abstract

A virtual storage system in data communication with a user computing device via a communication network and methods of selectively or automatically copying electronic documents to a virtual storage system where the virtual storage system includes at least one processor configured to process, encrypt and copy electronic documents retrieved from an external system, and a plurality of redundant physical storage devices in data communication with the at least one processor and each configured to store the electronic documents retrieved from the external system.

Description

COPYING ELECTRONIC DOCUMENTS INTO A VIRTUAL STORAGE
SYSTEM
CROSS-REFERENCE TO RELATED APPLICATIONS
The present application relates to co-pending application entitled "Virtual Storage System and Method of Sharing Electronic Documents within the Virtual Storage System" by Ronald M. Daly, Jr. et al. filed on January 28, 2013; copending application entitled "Virtual Storage System and File Encryption
Methods" by Ronald M. Daly, Jr. et al. filed on January 28, 2013; and co-pending application entitled "Virtual Storage System and File Storing Method" by Ronald M. Daly, Jr. et al. filed on January 28, 2013, the entire disclosures of which are incorporated herein by reference."
BACKGROUND OF THE INVENTION
1 . Field of the Invention
The present invention relates to a virtual storage system. More
particularly, the present invention relates to a virtual storage system and methods of copying electronic documents into the virtual storage system.
2. Description of the related art.
Virtual storage systems have become a popular alternative for storing files, thereby eliminating the need to install physical storage devices and minimizing file storage costs. A virtual storage system is an online storage system where data is stored in virtual storage pools. The pools are hosted by third parties that operate large data centers. The third parties virtualize resources in servers and present the resources as virtual storage pools for users to store files, for example. The virtual storage system is accessed through a web application programming interface (API), a gateway or a Web-based user interface (Ul), for example. A typical virtual storage system (e.g., a cloud-type storage system) has several disadvantages which create security concerns. For example, the storage location of the files stored therein may be unknown to both third party hosting companies and/or users of the virtual storage system. In addition, the typical virtual storage system can be easily accessed over a communication network (e.g., the Internet) using simple single-factor
authentication processes for access thereof. The typical virtual storage system does not encrypt files that are stored on their servers which makes the files easily visible to internal employees and hackers. Further, the typical virtual storage system is not Pci Compliant (PCI DSS) a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards. Further, once any file is stored on the virtual storage system they become property of the virtual storage system provider and are no longer user-owned; therefore the files can be used for other purposes, such as data mining without user permission.
Online banking systems provide resources to enable users to conduct banking transactions electronically from a personal computer, for example.
Online banking transactions include monitoring accounts, conducting money transfers, applying for loans, submitting loan payments, etc. However, users are required to visit the bank in person, to conduct certain transactions such as depositing documents into a safe deposit box which is an individually secured container held in a bank vault, for example. The safe deposit box is used to store valuable possessions, such as jewelry, currency, marketable securities, and important documents (e.g., bank statements, wills, passports, property deeds, insurance policies, photographs and birth certificates). Bank personnel typically open the bank vault with a key and a user is required to produce an assigned key to open the safe deposit box.
Currently, online banking systems fail to allow users to store important documents electronically, and also fail to allow users to retrieve, view and share these documents electronically outside of the bank environment, when desired.
SUMMARY OF THE INVENTION
The present invention obviates the above-mentioned disadvantages by providing a virtual storage system that encrypts and copies electronic documents retrieved from an external system (e.g., an online banking system), to thereby enable a user to store important documents in a known storage location within the virtual storage system.
The present invention relates to virtual storage system and methods of selectively or automatically copying electronic documents (e.g., bank
statements) into the virtual storage system.
Further, the virtual storage system of the present invention employs a multi-factor authentication process for verifying user access rights, via a specifically-designed application programming interface (API), for example, that can be installed at a user computing device, thereby providing a maximum security level of file storage for the user.
The virtual storage system of the present invention is also PCI Compliant following a proprietary information security standard to allow storage of cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards.
In addition, the virtual storage system locks each file with encryption as it is uploaded or copied, and only the user-owner holds the key (i.e., access rights) to retrieve the file, thereby leaving ownership of the file with the user-owner at all times and providing extra security protection from unauthorized individuals.
The present invention provides a virtual storage system in data
communication with a user computing device via a communication network, which includes at least one processor configured to process, encrypt and copy electronic documents retrieved from an external system, and a plurality of redundant physical storage devices in data communication with the at least one processor and each configured to store the electronic documents retrieved from the external system.
Further, the present invention is a method implemented by computer system to effect the copying of electronic documents into the virtual storage system in data communication via a communication network, with an online document retrieval and storage system. The method includes receiving input data at the online document retrieval and storage system from a user at a computing device, via a communication network, requesting access to online account information, selecting and viewing an electronic document of the online account information to be copied, selecting a copy link within the electronic document, to copy the electronic document, viewing a plurality of electronic folders of the virtual storage system in a folder selection dialog, selecting via the user, a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected, encrypting the electronic document via the virtual storage system, and copying the electronic document to the specific folder of the plurality of electronic folders.
Further, the present invention is a method implemented by a computer system to effect the automatic copying of electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system. The method includes processing an electronic document associated with a user, at the online document retrieval and storage system, determining whether the user has access rights to the virtual storage system, encrypting the electronic document via the virtual storage system when it is determined that the user has access rights to the virtual storage system, and automatically copying the electronic document to the virtual storage system.
BRIEF DESCRIPTION OF THE DRAWINGS
The foregoing and a better understanding of the present invention will become apparent from the following detailed description of example
embodiments and the claims when read in connection with the accompanying drawings, all forming a part of the disclosure of this invention. While the foregoing and following written and illustrated disclosure focuses on disclosing example embodiments of the invention, it should be clearly understood that the same is by way of illustration and example only and the invention is not limited thereto, wherein in the following brief description of the drawings:
Fig. 1 is a block diagram of a virtual storage system that can be
implemented within one or more embodiments of the present invention.
Fig. 2 is a block diagram of a virtual storage system that can be implemented within alternative embodiments of the present invention.
Fig. 3 is a block diagram of a virtual storage system that can be
implemented within alternative embodiments of the present invention.
Fig. 4 is a block diagram of a virtual storage system that can be
implemented within alternative embodiments of the present invention.
Fig. 5 is a block diagram of an exemplary computer to be implemented within one or more embodiments of the present invention.
Fig. 6 is a flowchart illustrating a method of selectively copying electronic documents into the virtual storage system of Fig. 1 according to one or more embodiments of the present invention.
Fig. 7 is a flowchart illustrating a method of automatically copying electronic documents into the virtual storage system of Fig. 1 according to one or more embodiments of the present invention.
Fig. 8 is a screen shot of a banking system that can be implemented within one or more embodiments of the present invention.
Fig. 9 is a screen shot of an exemplary electronic document that can be implemented within one or more embodiments of the present invention.
Fig. 10 is a screen shot of an electronic folder selection operation of Fig. 6 that can be implemented within one or more embodiments of the present invention.
Fig. 1 1 is a screen shot of a copying operation of Fig. 6 that can be implemented within one or more embodiments of the present invention.
Fig. 12 is a screen shot of the virtual storage system 100 of Fig. 1 that can be implemented within one or more embodiments of the present invention.
Fig. 13 is a block diagram of an exemplary physical storage system for implementation of the virtual storage system in accordance with one or more embodiments of the present invention.
DETAILED DESCRIPTION OF THE INVENTION
In the following description, for the purposes of explanation, numerous specific details are set forth in order to provide a thorough understanding of various embodiments of the present invention. It will be apparent, however, to one skilled in the art that embodiments of the present invention may be practiced without some of these specific details. In other instances, well-known structures and devices are shown in block diagram form.
Specific details are given in the following description to provide a thorough understanding of the embodiments. However, it will be understood by one of ordinary skill in the art that the embodiments may be practiced without these specific details. For example, systems, networks, processes, and other components may be shown as components in block diagram form in order not to obscure the embodiments in unnecessary detail. Also, it is noted that individual embodiments may be described as a process which is depicted as a flowchart, a flow diagram, a data flow diagram, a structure diagram, or a block diagram. Although a flowchart may describe the operations as a sequential process, many of the operations can be performed in parallel or concurrently. In addition, the order of the operations may be re-arranged. A process is terminated when its operations are completed, but could have additional steps not included in a figure. A process may correspond to a method, a function, a procedure, a subroutine, a subprogram, etc. When a process corresponds to a function, its termination can correspond to a return of the function to the calling function or the main function. Furthermore, embodiments may be implemented by hardware, software, firmware, middleware, microcode, hardware description languages, or any combination thereof. When implemented in software, firmware, middleware or microcode, the program code or code segments to perform the necessary tasks may be stored in a machine readable medium. A processor(s) may perform the necessary tasks.
The present invention as will be described in greater detail below provides a method for copying electronic documents, (e.g., electronic banking statements) into a virtual storage system and system implementing the method. The present invention provides various embodiments as described below. However it should be noted that the present invention is not limited to the embodiments described herein, but could extend to other embodiments as would be known or as would become known to those skilled in the art.
Fig. 1 is a block diagram of a virtual storage system implemented within one or more embodiments of the present invention. In Fig. 1 , a user at a user computing device 50 is configured to access, via a communication network 60, an external system i.e., an online document retrieval and storage system such as a banking system 70 to perform online banking transactions, such as viewing bank accounts and bank statements, applying for loans, and other transactions. According to one or more embodiments, the user computing device 50 includes at least one of a mobile phone or smart phone, a personal computer or laptop, or a personal digital assistant (PDA) or tablet. The present invention is not limited to any particular type of user computing device 50, and may vary accordingly.
The user accesses the banking system 70 by inputting input data including identification and log-in information such as a user ID and password via a user interface (Ul) of the user computing device 50. Once the identification/log-in information is received at a banking application of the banking system 70, the banking system 70 retrieves the user's banking information and displays the banking information via a display of the user computing device 50. The banking system 70 is configured to receive the input data and provide the user with electronic documents (e.g., bank statements) in webpage format or any other format over the communication network 60. The banking system 70 communicates via a communication network 80, with a virtual storage system 100 described in detail below.
The communication networks 60 and 80 include a wired or wireless network for data communication. The data communication across the
communication networks 60 and 80 is achieved by using web services
technology including for example, Web services Description Language (WSDL). The communication networks 60 and 80 may include any subsystem for exchanging data such as the Internet, intranet, extranet, wide area network (WAN), local area network (LAN), Restful web services, JAVAScript Object Notation (JSON), Extensible Mark-up Language (XML)-based communication network, Simple Object Access Protocol (SOAP)-based Services and satellite communication network. Further, the communication networks 60 and 80 can be other types of networks such as interactive television (ITV). According to one or more embodiments, the communication networks 60 and 80 may be the same or different types of networks.
The virtual storage system 100 is a user-specific storage system which allows each user to have a secure access to their files stored within the virtual storage system 100. In addition, the virtual storage system 100 encrypts each electronic document as it is retrieved from the external system, and only the user-owner can access the electronic document thereby leaving ownership of the files within the virtual storage system 100 with the user-owner at all times.
According to one or more embodiments, the virtual storage system 100 includes a web interface 122 for interfacing with the external system (i.e., the banking system 70) over the communication network 80. The web interface 122 provides a secure connection to the virtual storage system 100. According to one or more embodiments, the web interface 122 is a specifically-designed application programming interface (API), for example, which performs
authentication of the user or the external system (e.g., the banking system 70) at multiple levels. A secure connection is made between the banking system 70 and the virtual storage system 100 on a transport layer level, for example.
According to one or more embodiments, a transport layer security (TLS) or secure sockets layer (SSL) cryptographic protocol may be employed to provide secure communication over the communication networks 60 and 80. According to one or more embodiments, the web interface 122 is a web application programming interface (API), a gateway or a Web-based user interface (Ul), for example.
According to one or more embodiments, the virtual storage system 100 is PCI Compliant to allow storage of cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards. The virtual storage system 100 further includes at least one processor 124 for receiving information including requests from the user at the banking system 70 and processing the requests, such as storing, retrieving and copying electronic documents. The virtual storage system 100 further includes at least one storage server 125 comprising a plurality of physical storage devices 126 for storing files such as documents, audio files, photographs, movies, and images received from the user via the banking system 70. The virtual storage system 100 acts as a safe deposit box for receiving and securely storing the files received from the user via the banking system 70.
Although only one processor 124 and two storage devices 126 are shown, the present invention is not limited hereto, and may vary accordingly.
As shown in Fig. 1 , the virtual storage system 100 includes a web interface (e.g., the web interface 122) however the present invention is not limited to this particular configuration, and may vary accordingly.
Figs. 2 through 4 illustrate alternative configurations of the virtual storage system 100, and communication between the virtual storage system 100, the external system (e.g., the banking system 70), and/or the user computing device 50 according to other embodiments of the present invention that may be implemented. Some of the components shown in Figs. 2 through 4 are the same as the components discussed above with reference to Fig. 1 therefore a detailed description of these components is omitted.
As shown in Fig. 2, in an alternative embodiment, the banking system 70 includes a web interface 130 configured to interface the banking system 70 with the virtual storage system 100 over the communication network 80. The web interface 130 functions in a similar manner as the web interface 122 of the virtual storage system 100 therefore in this embodiment, the web interface 122 of the virtual storage system 100 is omitted.
As shown in Fig. 3, in another alternative embodiment, the user computing device 50 includes a web application 150 (e.g., a web API) for connecting to the banking system 70 and the virtual storage system 100 indirectly through the banking system 70. The web application 150 is an internet-enabled application, for example, that has specific functionality for the user computing device 50 (e.g., a mobile phone). The web application 150 is accessed through a web browser of the user computing device 50 and does not require downloading and installing thereof onto the user computing device 50.
As shown in Fig. 4, in yet another alternative embodiment, the user computing device 50 includes a native application 160 for connecting directly to web services (i.e., the processor 124) of the virtual storage system 100. The native application 160 is directly installed on the user computing device 50 to allow the user to gain direct access to the virtual storage system 100. The native application 160 is a specifically-designed API for accessing the virtual storage system 100. For example, if the user computing device 50 is a tablet, the tablet may include a tablet API for directly accessing the web services of the virtual storage system 100. Therefore, in this embodiment, the web interface 130 of the banking system 70 as shown in the embodiment illustrated in Fig. 2; and the web interface 122 of the virtual storage system 100 as shown in Fig. 3 are omitted.
According to one or more embodiments, the native application 160 may include a multi-factor authentication process to be performed at many levels to enable a user to gain direct access to the virtual storage system 100 from the user computing device 50. The multi-factor authentication process may include steps such as sending login information (e.g., user ID and password information) in a correspondence (e.g., a text message or email) to the user, and providing a time-based one-time password system to the user via a third party.
According to another embodiment, a single-factor authentication process may be used to gain access to the virtual storage system 100 via the external system (e.g., the banking system 70) since the external system and the virtual storage system 100 communicate via a secure connection on the communication network 80.
It should be noted that the virtual storage system is implemented on a physical storage system 1300 such as that illustrated in Fig. 13.
As shown in Fig. 13, the physical storage system 1300 includes a plurality of host adapters (CHA) 1310, disk adapters (DKA) 1320, cache memories (CACHE) 1330, shared memories (SM) 1340, and hard disk drives (HDD) 1350 connected with each other via common paths 1360 and connection lines 1370. Each of the hard disk drives (HDD) 1350 is connected to two disk adapters 1320, for example, using different connection lines 1370. The host adapters 1310 control data transfer between host computers 1380, the cache memories 1330 and the hard disk drives 1350. The cache memories 1330 temporarily store data received from the host computer 1380 and data read from the hard disk drives 1350. The shared memories 1340 are shared between the host adapters 1310 and the disk adapters 1320. The present invention is not limited to any particular number of host adapters 1310, disk adapters 1320, cache memories 1330, shared memories 1340 and hard disk drives 1350, and may vary accordingly. The physical storage system 1300 is one example of a physical storage system for which the virtual storage system can be implemented thereon. The present invention is not limited to a particular configuration of the physical storage system. According to other embodiments, the hard disk drives (HDD) 1350 can be replaced with a flash storage, RAM disks or rotated disk drives, for example. The host computers 1380 can be the processor 124 or a separate computer, for example. Further, the virtual storage system 100 can be implemented on any type of storage system such as a network-attached storage (NAS), a storage area network (SAN), or a distributed memory array.
According to one or more embodiments, the physical storage devices of the physical storage system 1300 as described above can be configured in a RAID (Redundant Array of Independent Disks) configuration. Further, the reliability of the data stored in the storage devices 126 of the virtual storage system 100 can be stored in a redundant manner in redundant data centers using mirroring, remote copy, or the like. The use of redundant storage devices enables the data stored to be duplicated thereby preventing data loss.
When a user accesses the banking system 70 via a bank server, the user can be automatically directed to the virtual storage system 100 when desired.
As shown in Figs. 1 through 4, the user computing device 50, banking system 70 and virtual storage system 100 can be connected with each other via the communication networks 60 and 80. According to one embodiment, the user computing device 50 may occasionally connect to the communication network 60 while the banking system 70 and the virtual storage system 100 may maintain a connection to the communication networks 60 and 80. Further, in Fig. 4 the user computing device 50 and the virtual storage system 100 are in direct
communication with each other over the communication network 80.
According to alternative embodiments, the virtual storage system 100 can be included within the banking system 70 or the user computing device 50 as installable software.
Fig. 5 is a block diagram of an exemplary computing device 500 illustrating components of the computing device 50, the banking system 70 and the virtual storage system 100 shown in Fig. 1 . As shown in Fig. 5, the computing device 500 includes various components for inputting, outputting, storing and processing data. The computing device 500 includes a processor 505 for performing tasks including executing one or more applications, retrieving data from a storage device e.g., storage 506, and/or outputting data. The processor 505 can be connected to a Random access memory (RAM) module 508 wherein application data and/or instructions may be temporarily stored. The computing device 500 can further includes a Read Only Memory (ROM) 509 configured to allow data stored thereon to persist after the computing device 500 is turned off and is used for storing an operating system (OS) of the computing device 500. The storage device 506 may also provide storage for data files and may include computer readable mediums e.g., disk drives, optical storage mediums e.g., CD ROM drives, magnetic tape storage systems, and flash memory. The processor 505 is configured to retrieve an application from the storage 506 and store the instructions associated with the application in the RAM module 508, while the processor 505 is executing the application. The computing device 500 further includes output devices e.g., a display device 510, and a speaker 512, for outputting visual and audio data via a display adapter 514 and an audio adapter 515. Further, the computing device 500 includes input devices e.g., a keyboard 516, a storage media drive 518, and microphone each having an associated adapter 519 for converting the input data into computer readable data. The storage media drive 518 enables users to read and write data to and from the storage media.
Further, as shown in Fig. 5, the computing device 500 includes one or more components for receiving and transmitting data over the communication networks 60 and 80. For example, a network adapter 520 is provided for communication with one or more computing devices over an IP network, for example, for transmission of data such as financial data over a bank network. The network adapter 520 may include instructions associated with processing IP network packets and cellular network packets. The components of the computing device 500 are connected via a system bus 530.
Fig. 6 is a flowchart illustrating a method 600 for illustrating a method of selectively copying electronic documents into the virtual storage system 100 of Fig. 1 according to one or more embodiments of the present invention. The method 600 is implemented in software modules for execution by the user computing device 50, the banking system 70 and the virtual storage system 100.
In method 600, the online document retrieval and storage system (e.g., the banking system 70) receives input data from the user at the user computing device 50 for requesting access to online account information (e.g., banking information). At operation 602, the user selects and views an electronic document within a banking application of the banking system 70 to be copied. From operation 602, the process continues to operation 604, where the user selects a copy link within the electronic document to copy the electronic document. From operation 604, the process continues to operation 606 where the user views a plurality of electronic folders of the virtual storage system 100 in a folder selection dialog, to receive and store the electronic documents. From operation 608, the process continues to operation 608 where the user selects a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected.
At operation 610 an optional format conversion process is performed on the electronic document, whereby the electronic document is converted from a first format such as Hyper Text Markup Language (HTML) format to a second format such as portable document format (PDF), for copying and storing.
Upon completion of the format conversion, the process continues to operation 612 where the electronic document is encrypted within the virtual storage system 100.
From operation 612 the process continues to operation 614 where the electronic document is copied to the selected folder of the plurality of electronic folders (i.e., the electronic documents are stored in the storage devices 126 of the virtual storage system 100).
The electronic document is accessible only by the user at the user computing device 50 via the banking system 70 according to one embodiment, or via the virtual storage system 100 directly according to alternative
embodiments. The electronic document copy and format conversion operations are performed via the processor 124 of the virtual storage system 100.
According to one or more embodiments, the encryption operation may be performed in one storage location of the virtual storage system 100 (e.g., a first data center), and the copying operation may be performed in another storage location (e.g., a second data center) of the virtual storage system 100.
According to other embodiments of the present invention, the copying of electronic documents can be performed automatically without user input. Fig. 7 is a flowchart illustrating a method 700 of automatically copying electronic documents into the virtual storage system of Fig. 1 according to one or more embodiments of the present invention. In this embodiment, electronic documents are automatically copied from the external system (e.g., the banking system 70) into the virtual storage system 100 when the user has access rights to the virtual storage system 100. At operation 702, the process begins where an electronic document associated with a user (e.g., a banking statement) is processed at the external system (e.g., the banking system 70). The processing is performed internally within the banking system 70. From operation 702, the process continues to operation 703, where it is determined whether the user has access rights to the virtual storage system 100. In one or more embodiments, if the user is accessing the virtual storage system 100 indirectly through the banking system 70, access rights of the user may have been established by virtue of the user's access rights to the banking system 70. Thus, a verification process may be performed by the virtual storage system 100 at the banking system 70, via the secure connection over the communication network 80.
Alternatively, if the user is accessing the virtual storage system 100 directly via the user computing device, access rights of the user may be verified by performing a multi-factor authentication process as discussed above If it is determine that the user does not have access rights to the virtual storage system 100, the process ends.
If it is determined at operation 703 that the user has access rights, the process continues to operation 706, where it is determined whether format conversion of the electronic document is required. If it is determined at operation 706 that format conversion is required, the process continues to operation 708 where the optional format conversion process is performed on the electronic document, whereby the electronic document is converted from a first format such as Hyper Text Markup Language (HTML) format to a second format such as portable document format (PDF), for copying and storing. According to one or more embodiments, operation 708 is performed similar to operation 610 shown in Fig. 6.
Upon completion of the format conversion, the process continues to operation 710 where the electronic document is encrypted within the virtual storage system 100.
From operation 710, the process continues to operation 712 where the electronic document is automatically copied to a selected folder of the plurality of electronic folders (i.e., the electronic documents are stored in the storage devices 126 of the virtual storage system 100).
The electronic document is accessible only by the user at the user computing device 50 via the banking system 70 according to one embodiment, or via the virtual storage system 100 directly according to alternative
embodiments. The electronic document copy and conversion operations are performed via the processor 124 of the virtual storage system 100.
According to alternative embodiments, if it is determined at operation 706 that format conversion is not required, the process bypasses operation 708 and continues to operation 712 where the electronic document is copied to the virtual storage system 100.
According to alternative embodiments, if a user does not have access rights, upon providing a user with access rights (e.g., by registration process), all or a selection of electronic documents can be automatically copied from the external system into the virtual storage system 100. For example, upon being granted access rights to the virtual storage system 100, the user may be prompted to copy all or a selection of their electronic documents from the external system (e.g., the banking system 70) into the virtual storage system 100. If so, the electronic documents will be automatically copied to the virtual storage system 100.
The present invention is described herein in terms of block components, screen shots, and optional selections and processing steps. It should be appreciated that the functional blocks may be realized by any number of hardware and/or software components configured to perform the specified functions. For example, the present invention may employ various integrated circuits e.g., memory elements, processing elements, logic elements, look-up tables, and others which may perform the functions under the control of one or more processors or other control devices. The software components can be implemented with any programming or scripting language, with various algorithms implemented with data structures, objects, processes, and other programming elements.
An exemplary process of the method of Fig. 6 will be described with reference to the screen shots shown in Figs. 8 through 12.
As shown in Fig. 8, the screen shot 800 for a user to access banking information via the user computing device 50. As shown, the user has access to electronic statements at a link 802 via a dropdown window 403 and the virtual storage system 100 via a link 804. The user also has access to various other banking information and links for performing banking transactions (e.g., a managed link accounts link). The screen shot 800 is implemented for example, via a web page for network transmission. The web page may include standard HTML documents, and various forms JAVA® applets, active server pages (ASP), common gateway interface scripts (CGI), extensive markup language (SML), dynamic HTML, plugins, etc.
The user selects and views electronic statements (e.g., regular account statements, credit card billing statements, or loan statements), via the dropdown window 803, for example (operation 602 of Fig. 6).
Fig. 9 is a screen shot 900 of an electronic document 902 (e.g., a credit card billing statement) as selected by the user. The electronic document 902 includes a copy link 904 for copying the electronic document 902 as desired by the user. The user selects the copy link 904 within the electronic document 902 to copy the electronic document (operation 604 of Fig. 6).
After selecting to copy the electronic document 902, the user views a plurality of electronic folders in a folder selection dialog as shown in Fig. 10.
Fig. 10 is a screen shot 1000 of a folder selection dialog 1002 display a plurality of electronic folders 1004 (e.g., a documents folder, finance folder, legal folder, other folder, and photos folder) for selection (operation 606 of Fig. 6).
The user selects a specific folder (e.g., the documents folder 1004a) of the plurality of electronic folders 1004 for receiving and storing the electronic document 902 (operation 608 of Fig. 6).
Fig. 1 1 is a screen shot 1 100 showing a processing window 1 102 indicating that the electronic document 902 is being processed (e.g., converted and/or copied). The electronic document 902 may optionally be converted from the first format (e.g., HTML format) to the second format (e.g., PDF format) for storing in an electronic folder 1004. According to one or more embodiments, the format conversion operation is an optional processing step (as indicated by the dashed line) and therefore may be omitted.
As shown in Fig. 12, as shown in screen shot 1200, the electronic document 902 is copied into the selected electronic folder (e.g., the documents folder 1004a) of the plurality of folders 1004. The user is able to retrieve the electronic document 902 stored within the virtual storage system 100 by accessing the banking system 70 via the communication network 60 and by accessing the virtual storage system 100 via the communication network 80 or by accessing the virtual storage system 100 directly.
In view of the above, the present method embodiment may therefore take the form of a computer or controller implemented processes and apparatuses for practicing those processes. This disclosure can also be embodied in the form of computer program code containing instructions embodied in tangible media, such as floppy diskettes, CD ROMs, hard drives, or any other computer-readable storage medium, wherein, when the computer program code is loaded into and executed by a computer or controller, the computer becomes an apparatus for practicing the invention. This disclosure may also be embodied in the form of computer program code or signal, for example, whether stored in a storage medium, loaded into and/or executed by a computer or controller, or transmitted over some transmission medium, such as over electrical wiring or cabling, through fiber optics, or via electromagnetic radiation, wherein, when the computer program code is loaded into and executed by a computer, the computer becomes an apparatus for practicing the invention. When
implemented on a general-purpose microprocessor, the computer program code segments configure the microprocessor to create specific logic circuits. A technical effect of the executable instructions is to implement the exemplary method described above.
According to one or more embodiments, a virtual storage system in data communication with a user computing device via a communication network is provided. The virtual storage system includes at least one processor configured to process and copy electronic documents retrieved from an external system, and a plurality of redundant physical storage devices in data communication with the at least one processor and each configured to store the electronic
documents retrieved from the external system.
According to one or more embodiments, a method implemented by computer system to effect the copying of electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system is provided. The method comprising receiving input data at the online document retrieval and storage system from a user at a computing device, via a communication network, requesting access to online account information, selecting and viewing an electronic document of the online account information to be copied, selecting a copy link within the electronic document, to copy the electronic document, viewing a plurality of electronic folders of the virtual storage system in a folder selection dialog, selecting via the user, a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected, and copying the electronic document to the specific folder.
According to one or more embodiments, a method implemented by a computer system to effect the automatic copying of electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system is provided. The method includes processing an electronic document associated with a user, at the online document retrieval and storage system, determining whether the user has access rights to the virtual storage system, and automatically copying the electronic document to the virtual storage system, when it is determined that the user has access rights to the virtual storage system.
According to one or more embodiments, a computer readable medium storing computer executable instructions that, when executed, cause a computing device to perform a method of copying electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system is provided. The method comprising receiving input data at the online document retrieval and storage system from a user at a computing device, via a communication network, requesting access to online account information, selecting and viewing an electronic document of the online account information to be copied, selecting a copy link within the electronic document, to copy the electronic document, viewing a plurality of electronic folders of the virtual storage system in a folder selection dialog, selecting via the user, a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected, and copying the electronic document to the specific folder.
While the invention has been described in terms of its preferred embodiments, it should be understood that numerous modifications may be made thereto without departing from the spirit and scope of the present invention. It is intended that all such modifications fall within the scope of the appended claims.

Claims

WHAT IS CLAIMED IS:
1 . A virtual storage system in data communication with a user computing device via a communication network, the virtual storage system comprising:
at least one processor configured to:
process, encrypt and copy electronic documents retrieved from an external system; and
a plurality of redundant physical storage devices in data communication with the at least one processor and each configured to store the electronic documents retrieved from the external system.
2. The virtual storage system of claim 1 , further comprising:
a web interface configured to interface the virtual storage system with the external system and the user computing device, via at least one communication network.
3. The virtual storage system of claim 1 , wherein the external system comprises a web interface configured to interface the external system with the virtual storage system.
4. The virtual storage system of claim 1 , wherein the user computing device comprises a web application configured to interface the user computing device with the virtual storage system, via the external system.
5. The virtual storage system of claim 1 , wherein the user computing device comprises a native application configured to interface the user computing device directly with the virtual storage system.
6. The virtual storage system of claim 1 , wherein the external system is an online document retrieval and storage system.
7. The virtual storage system of claim 3, wherein the online
document retrieval and storage system is a banking system and the electronic document is a bank statement.
8. The virtual storage system of claim 7, wherein the electronic document is configured to be converted from a first format to a second format prior to being copied to virtual storage system.
9. The virtual storage system of claim 1 , wherein the communication network is a wired network.
10. The virtual storage system of claim 1 , wherein the communication network is a wireless network.
1 1 . A method implemented by computer system to effect the copying of electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system, the method comprising: receiving input data at the online document retrieval and storage system from a user at a computing device, via a communication network, requesting access to online account information;
selecting and viewing an electronic document of the online account information to be copied;
selecting a copy link within the electronic document, to copy the electronic document;
viewing a plurality of electronic folders of the virtual storage system in a folder selection dialog;
selecting via the user, a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected;
encrypting the electronic document via the virtual storage system; and copying the electronic document to the specific folder of the plurality of electronic folders.
12. The method of claim 1 1 , further comprising:
converting the electronic document from a first format to a second format prior to encrypting the electronic document.
13. The method of claim 1 1 , wherein the online document retrieval and storage system is a banking system and the electronic document is a bank statement.
14. A method implemented by computer system to effect the automatic copying of electronic documents into a virtual storage system in data communication via a communication network, with an online document retrieval and storage system, the method comprising:
processing an electronic document associated with a user, at the online document retrieval and storage system;
determining whether the user has access rights to the virtual storage system;
encrypting the electronic document via the virtual storage system when it is determined that the user has access rights, and
automatically copying the electronic document to the virtual storage system.
15. The method of claim 14, further comprising:
converting the electronic document from a first format to a second format prior to encrypting the electronic document.
16. The method of claim 14, wherein determining whether the user has access rights comprises:
verifying user access rights at the online document retrieval and storage system via the virtual storage system over the communication network, when the user is indirectly accessing the virtual storage system via the online document retrieval and storage system; or
performing a multi-factor authentication process when the user is directly accessing the virtual storage system.
17. A computer readable medium storing computer executable instructions that, when executed, cause a computing device to perform a method of copying electronic documents into a virtual storage system in data
communication via a communication network, with an online document retrieval and storage system, the method comprising:
receiving input data at the online document retrieval and storage system from a user at a computing device, via a communication network, requesting access to online account information;
selecting and viewing an electronic document of the online account information to be copied;
selecting a copy link within the electronic document, to copy the electronic document;
viewing a plurality of electronic folders of the virtual storage system in a folder selection dialog;
selecting via the user, a specific folder of the plurality of electronic folders for receiving and storing the electronic document selected;
encrypting the electronic document via the virtual storage system; and copying the electronic document to the specific folder of the plurality of electronic folders.
18. The computer readable medium of claim 17, the method further comprising:
converting the electronic document from a first format to a second format prior to encrypting the electronic document.
19. The computer readable medium of claim 17, wherein the online document retrieval and storage system is a banking system and the electronic document is a bank statement.
20. The computer readable medium of claim 17, wherein the communication network is a wireless network.
PCT/US2014/013130 2013-01-28 2014-01-27 Copying electronic documents into a virtual storage system WO2014117062A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
EP14742998.9A EP2948867A4 (en) 2013-01-28 2014-01-27 Copying electronic documents into a virtual storage system

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US13/751,982 2013-01-28
US13/751,982 US9552496B2 (en) 2013-01-28 2013-01-28 Virtual storage system and methods of copying electronic documents into the virtual storage system
CA2839078 2014-01-03
CA2839078A CA2839078C (en) 2013-01-28 2014-01-03 Virtual storage system and methods of copying electronic documents into the virtual storage system

Publications (1)

Publication Number Publication Date
WO2014117062A1 true WO2014117062A1 (en) 2014-07-31

Family

ID=50180703

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2014/013130 WO2014117062A1 (en) 2013-01-28 2014-01-27 Copying electronic documents into a virtual storage system

Country Status (4)

Country Link
US (2) US9552496B2 (en)
EP (1) EP2948867A4 (en)
CA (1) CA2839078C (en)
WO (1) WO2014117062A1 (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9552496B2 (en) 2013-01-28 2017-01-24 Virtual Strongbox, Inc. Virtual storage system and methods of copying electronic documents into the virtual storage system
US11194442B1 (en) * 2014-03-17 2021-12-07 David Graham Boyers Devices, methods, and graphical user interfaces for supporting reading at work
US10656991B2 (en) * 2015-08-24 2020-05-19 International Business Machines Corporation Electronic component having redundant product data stored externally
US9992175B2 (en) * 2016-01-08 2018-06-05 Moneygram International, Inc. Systems and method for providing a data security service
US20180137291A1 (en) * 2016-11-14 2018-05-17 Linkedin Corporation Securing files at rest in remote storage systems
US10218695B1 (en) * 2018-03-27 2019-02-26 Capital One Services, Llc Systems and methods for providing credentialless login using a random one-time passcode
CN112347007B (en) * 2020-10-14 2022-12-09 歌尔科技有限公司 Flash memory data protection method and device, electronic equipment and storage medium
US11899906B1 (en) * 2021-10-05 2024-02-13 David Graham Boyers Devices, methods, and graphical user interfaces for supporting reading at work

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070239726A1 (en) * 2006-03-29 2007-10-11 Mathew Girard Weiss Systems and methods of transforming data for web communities and web applications
US20100011416A1 (en) * 2008-07-09 2010-01-14 The Go Daddy Group, Inc. Document storage access on an unsolicited transfer basis
US20120290676A1 (en) * 1998-11-13 2012-11-15 Sang Leong System and Method for Managing Information Retrievals for Integrated Digital and Analog Archives on a Global Basis

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20010088917A (en) * 2001-07-30 2001-09-29 최종욱 Method of protecting digital information and system thereof
US20080215667A1 (en) * 2003-10-09 2008-09-04 Pb&J Software, Llc Method and system for sharing storage space on a computer
JP2008511881A (en) * 2004-08-31 2008-04-17 ▲騰▼▲訊▼科技(深▲セン▼)有限公司 Communication system and method for implementing online file storage based on instant messaging platform
US7493512B2 (en) * 2005-10-04 2009-02-17 First Data Corporation System and method for providing data services via a network
WO2007106851A2 (en) * 2006-03-14 2007-09-20 Document Atm Incorporated Distributed access to valuable and sensitive documents and data
US8683228B2 (en) * 2007-01-16 2014-03-25 Terry Lee Stokes System and method for WORM data storage
US20090328171A1 (en) * 2007-05-25 2009-12-31 Si Corporation Method and system for secure remote storage of electronic media
US8819452B2 (en) 2009-11-25 2014-08-26 Cleversafe, Inc. Efficient storage of encrypted data in a dispersed storage network
US8863297B2 (en) * 2012-01-06 2014-10-14 Mobile Iron, Inc. Secure virtual file management system
US9552496B2 (en) 2013-01-28 2017-01-24 Virtual Strongbox, Inc. Virtual storage system and methods of copying electronic documents into the virtual storage system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120290676A1 (en) * 1998-11-13 2012-11-15 Sang Leong System and Method for Managing Information Retrievals for Integrated Digital and Analog Archives on a Global Basis
US20070239726A1 (en) * 2006-03-29 2007-10-11 Mathew Girard Weiss Systems and methods of transforming data for web communities and web applications
US20100011416A1 (en) * 2008-07-09 2010-01-14 The Go Daddy Group, Inc. Document storage access on an unsolicited transfer basis

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP2948867A4 *

Also Published As

Publication number Publication date
EP2948867A4 (en) 2016-10-26
CA2839078A1 (en) 2014-07-28
US9552496B2 (en) 2017-01-24
US9836233B2 (en) 2017-12-05
CA2839078C (en) 2021-10-19
US20170090799A1 (en) 2017-03-30
US20140215171A1 (en) 2014-07-31
EP2948867A1 (en) 2015-12-02

Similar Documents

Publication Publication Date Title
US9813499B2 (en) Virtual storage system and method of sharing access to the virtual storage system for adding electronic documents
US9836233B2 (en) Virtual storage system and methods of copying electronic documents into the virtual storage system
US11295379B2 (en) Virtual storage system and method of sharing electronic documents within the virtual storage system
US11522846B2 (en) Distributed, decentralized data aggregation
US9331987B2 (en) Virtual storage system and file encryption methods
JP2021149927A (en) Account verification
US10990688B2 (en) Virtual storage system and method of sharing electronic documents within the virtual storage system
CA2839086C (en) Virtual storage system and file conversion method
US20140214901A1 (en) Virtual storage system and file storing method
US11386447B2 (en) Educational guide module having a reward system for virtual storage system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14742998

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

REEP Request for entry into the european phase

Ref document number: 2014742998

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2014742998

Country of ref document: EP