Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Security kernel or utility
Reexamination Certificate
2005-08-16
2005-08-16
Morse, Gregory (Department: 2134)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Security kernel or utility
C713S176000, C713S152000, C713S152000, C713S155000, C713S170000, C713S189000, C713S165000, C713S182000, C713S161000, C713S166000, C380S273000, C380S277000, C380S286000, C380S044000, C705S051000, C705S071000, C705S076000
Reexamination Certificate
active
06931532
ABSTRACT:
A method, system, and computer program product for selectively encrypting one or more elements of a document using style sheet processing. Disclosed is a policy-driven augmented style sheet processor (e.g. an Extensible Stylesheet Language, or “XSL”, processor) that creates a selectively-encrypted document (e.g. an Extensible Markup Language, or “XML”, document) carrying key-distribution material, such that by using an augmented document processor (e.g. an augmented XML processing engine), an agent can recover only the information elements for which it is authorized. The Document Type Definition (DTD) or schema associated with a document is modified, such that the DTD or schema specifies a reference to stored security policy to be applied to document elements. Each document element may specify a different security policy, such that the different elements of a single document can be encrypted differently (and, some elements may remain unencrypted). The key distribution material enables a document to be encrypted for decryption by an audience that is unknown at the time of document creation, and enables access to the distinct elements of a single encrypted document to be controlled for multiple users and/or groups of users. In this manner, group collaboration is improved by giving more people easier access to information for which they are authorized, while protecting sensitive data from unauthorized agents. A key recovery technique is also defined, whereby the entire document can be decrypted by an authorized agent regardless of how the different elements were originally encrypted and the access protections which were applied to those elements.
REFERENCES:
patent: 5787175 (1998-07-01), Carter
patent: 5933498 (1999-08-01), Schneck et al.
patent: 5935248 (1999-08-01), Kuroda
patent: 5937066 (1999-08-01), Gennaro et al.
patent: 6154840 (2000-11-01), Pebley et al.
patent: 6236727 (2001-05-01), Ciacelli et al.
patent: 6327574 (2001-12-01), Kramer et al.
patent: 6330569 (2001-12-01), Baisley et al.
patent: 6446256 (2002-09-01), Hyman et al.
patent: 6463440 (2002-10-01), Hind et al.
patent: 6476833 (2002-11-01), Moshfeghi
patent: 6507856 (2003-01-01), Chen et al.
patent: 6585778 (2003-07-01), Hind et al.
Widergren et al. “XML for Data Exchange”, 1999, IEEE, pp. 840-842.
Psaila et al. “ERX, A Data Model for Collections of XML Documents”, Knowledge and Data Engineering Exchange, Nov. 7, 1999) Proceedings, pp. 99-104.
Flammia, “XML and Style Sheets Promise to Make the Web More Accessible”, IEEE Expert, May/Jun. 1997.
Davis Mark C.
Hind John R.
Peters Marcia L.
Topol Brad B.
International Business Machines - Corporation
Morse Gregory
Myers Bigel & Sibley Sajovec, PA
Tran Tongoc
LandOfFree
Selective data encryption using style sheet processing does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Selective data encryption using style sheet processing, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Selective data encryption using style sheet processing will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3466164