Information security – Policy
Reexamination Certificate
2011-01-25
2011-01-25
Vu, Kimyen (Department: 2435)
Information security
Policy
C726S002000, C726S007000, C726S027000, C713S165000
Reexamination Certificate
active
07877781
ABSTRACT:
A method and apparatus for controlling document access and application usage using centrally managed rules. The rules are stored and manipulated in a central rule database via a rule server. Policy enforcers are installed on client systems and/or on servers and perform document access and application usage control for both direct user document accesses and application usage, and application program document accesses by evaluating the rules sent to the policy enforcer. The rule server decides which rules are required by each policy enforcer. A policy enforcer can also perform obligation and remediation operations as a part of rule evaluation. Policy enforcers on client systems and servers can operate autonomously, evaluating policies that have been received, when communications have been discontinued with the rule server.
REFERENCES:
patent: 4633430 (1986-12-01), Cooper
patent: 5564016 (1996-10-01), Korenshtein
patent: 5629980 (1997-05-01), Stefik et al.
patent: 5634012 (1997-05-01), Stefik et al.
patent: 5638443 (1997-06-01), Stefik et al.
patent: 5715403 (1998-02-01), Stefik
patent: 5987611 (1999-11-01), Freund
patent: 6236971 (2001-05-01), Stefik et al.
patent: 6430549 (2002-08-01), Gershfield et al.
patent: 6529985 (2003-03-01), Deianov et al.
patent: 6578029 (2003-06-01), Gershfield et al.
patent: 6594661 (2003-07-01), Tagg
patent: 6647388 (2003-11-01), Numao et al.
patent: 6701342 (2004-03-01), Bartz et al.
patent: 6763467 (2004-07-01), Radatti et al.
patent: 6823460 (2004-11-01), Hollander et al.
patent: 6839843 (2005-01-01), Bacha et al.
patent: 6941465 (2005-09-01), Palekar et al.
patent: 6948070 (2005-09-01), Ginter et al.
patent: 6948122 (2005-09-01), Matsumoto
patent: 6950943 (2005-09-01), Bacha et al.
patent: 6961762 (2005-11-01), Yeap et al.
patent: 7069451 (2006-06-01), Ginter et al.
patent: 7100199 (2006-08-01), Ginter et al.
patent: 7143288 (2006-11-01), Pham et al.
patent: 7434048 (2008-10-01), Shapiro et al.
patent: 2001/0003819 (2001-06-01), Matsumoto
patent: 2001/0023421 (2001-09-01), Numao et al.
patent: 2002/0095432 (2002-07-01), Shimomura et al.
patent: 2002/0099952 (2002-07-01), Lambert et al.
patent: 2003/0004734 (2003-01-01), Adler et al.
patent: 2003/0014418 (2003-01-01), Adler et al.
patent: 2003/0014654 (2003-01-01), Adler et al.
patent: 2003/0055994 (2003-03-01), Herrmann et al.
patent: 2003/0115344 (2003-06-01), Tang et al.
patent: 2003/0177389 (2003-09-01), Albert et al.
patent: 2003/0182583 (2003-09-01), Turco
patent: 2004/0019807 (2004-01-01), Freund
patent: 2004/0078434 (2004-04-01), Parker et al.
patent: 2004/0078591 (2004-04-01), Teixeira et al.
patent: 2004/0107360 (2004-06-01), Herrmann et al.
patent: 2004/0117655 (2004-06-01), Someshwar
patent: 2004/0133777 (2004-07-01), Kiriansky et al.
patent: 2004/0167984 (2004-08-01), Herrmann
patent: 2005/0008163 (2005-01-01), Leser et al.
patent: 2005/0097061 (2005-05-01), Shapiro et al.
patent: 2005/0125688 (2005-06-01), Ogawa et al.
patent: 2005/0210035 (2005-09-01), Kester et al.
patent: 2005/0235204 (2005-10-01), Matsumoto
patent: 2005/0273857 (2005-12-01), Freund
patent: 2006/0031923 (2006-02-01), Kanai
patent: 2006/0047731 (2006-03-01), Matsui
patent: 2006/0137016 (2006-06-01), Margalit et al.
patent: 2006/0174334 (2006-08-01), Perlin et al.
patent: 2006/0179432 (2006-08-01), Walinga et al.
patent: 2006/0277185 (2006-12-01), Sato et al.
patent: 2006/0277409 (2006-12-01), Galwas
Tim Moses et al. eXtensible Access Control Markup Language (XACML) Version 2.0 OASIS Standard Feb. 1, 2005 OASIS Open. (Source: http://docs.oasis-open.org/xacml/2.0/access—control-xacml-2.0-core-spec-os.pdf see also http://www.oasis-open.org/committees/tc—home.php?wg—abbrev=xacml#XACML20).
Scott Cantor et al. Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML)V2.0 OASIS Standard Mar. 15, 2005 OASIS Open. (Source: http://docs.open.org/security/saml/v2.0/saml-core-2.0-os.pdf, see also http://www.oasis-open.org/committees/tc—home.php?wg—abbrev=security).
Kelvin Lawrence et al. Web Services Security: SOAP Message Security 1.1 (WS-Security 2004) OASIS Standard Specification Feb. 1, 2006 OASIS Open. (Source: http://www.oasis-open.org/committees/download.php/16790/wss-v1.1-spec-os-SOAPMessageSecurity.pdf; see also http://www.oasis-open.org/committees/tc—home.php?wg—abbrev=wss).
Kelvin Lawrence et al. Web Services Security Rights Expression Language (REL) Token Profile 1.1 OASIS Standard Feb. 1, 2006 OASIS Open. (Source: http://www.oasis-open.org/committees/download.php/16687/oasis-wss-rel-token-profile-1.1.pdf; see also http://www.oasis.open.org/committees/tc—home.php?wd—abbrev=wss).
Paul Ashley Satoshi Hada Günter Karjoth Calvin Powers Matthias Schunter Enterprise Privacy Authorization Language (EPAL 1.1) Oct. 1, 2003 IBM Research mts at zurich.ibm.com. (Source: http://www.zurich.ibm.com/security/enterprise-privacy/epal/Specification/).
Paul Ashley Satoshi Hada Günter Karjoth Calvin Powers Matthias Schunter The Enterprise Privacy Authorization Language (EPAL)—How to Enforce Privacy throughout an Enterprise IBM Research mts@zurich.ibm.com. (Source: http://www.w3.org/2003/p3p-ws/pp/ibm3.html).
Prateek Mishra et al. Security Services Markup Language Draft Version 0.8a Jan. 8, 2001 OASIS Open. (Source: http://wwww.oasis-open.org/committees/security/docs/draft-s2ml-v08a.pdf; see also).
Portable Document Rights Language (PDRL) Specification Version 7.2 Jul. 2006 Adobe Systems Incorporated. (Source: http://www.adobe.com/devnet/livecycle/policyserver/articles/pdrl.pdf; see also http://www.adobe.com/devnet/livecycle/security.html).
John S. Erickson OpenDRM: A Standards Framework for Digital Rights Expression Messaging and Enforcement Revised Sep. 2002 Hewlett-Packard Laboratories. (Source: http://xml.coverpages.org/EricksonOpenDRM20020902.pdf).
Renato Iannella Karen Henricksen and Ricky Robinson A Policy Oriented Architecture for the Web: New Infrastructure and New Opportunities Oct. 2006 W3C Workshop on Languages for Privacy Policy Negotiation and Semantics-Driven Enforcement. (Source: http://www.w3.org/2006/07/privacy-ws/presentations/05-iannella-policy-oriented-architecture.pdf).
Aka Chan LLP
NextLabs, Inc.
To Baotran N
Vu Kimyen
LandOfFree
Enforcing universal access control in an information... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Enforcing universal access control in an information..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Enforcing universal access control in an information... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2670067