CA2287871A1 - Secure document management system - Google Patents

Secure document management system Download PDF

Info

Publication number
CA2287871A1
CA2287871A1 CA002287871A CA2287871A CA2287871A1 CA 2287871 A1 CA2287871 A1 CA 2287871A1 CA 002287871 A CA002287871 A CA 002287871A CA 2287871 A CA2287871 A CA 2287871A CA 2287871 A1 CA2287871 A1 CA 2287871A1
Authority
CA
Canada
Prior art keywords
data
control information
access control
unique identifier
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CA002287871A
Other languages
French (fr)
Other versions
CA2287871C (en
Inventor
Sergey Ignatchenko
Lev Mirlas
Igor L. Tantsorov
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
IBM Canada Ltd
Original Assignee
IBM Canada Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by IBM Canada Ltd filed Critical IBM Canada Ltd
Priority to CA002287871A priority Critical patent/CA2287871C/en
Priority to US09/690,249 priority patent/US6978366B1/en
Publication of CA2287871A1 publication Critical patent/CA2287871A1/en
Application granted granted Critical
Publication of CA2287871C publication Critical patent/CA2287871C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database

Abstract

The invention provides a method and apparatus for secure management of data in a computer controlled storage system. The system includes a trusted data management server (tdm server), responsive to a user or user program application, for storing data in and retrieving data from a storage system. The tdm server includes a security structure generator to generate the following security management structures: an unique identifier for the data; access control information for the data; a data signature for authenticating the data from the data and the unique identifier; and an access control information signature for authenticating the access control information from the access control information and the unique identifier.
CA002287871A 1999-11-01 1999-11-01 Secure document management system Expired - Fee Related CA2287871C (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CA002287871A CA2287871C (en) 1999-11-01 1999-11-01 Secure document management system
US09/690,249 US6978366B1 (en) 1999-11-01 2000-10-17 Secure document management system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CA002287871A CA2287871C (en) 1999-11-01 1999-11-01 Secure document management system

Publications (2)

Publication Number Publication Date
CA2287871A1 true CA2287871A1 (en) 2001-05-01
CA2287871C CA2287871C (en) 2007-07-31

Family

ID=4164528

Family Applications (1)

Application Number Title Priority Date Filing Date
CA002287871A Expired - Fee Related CA2287871C (en) 1999-11-01 1999-11-01 Secure document management system

Country Status (2)

Country Link
US (1) US6978366B1 (en)
CA (1) CA2287871C (en)

Families Citing this family (75)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020169632A1 (en) * 2001-05-09 2002-11-14 James Grossman Archival storage and access to information via the internet
SG111920A1 (en) * 2001-09-03 2005-06-29 Trusted Hub Pte Ltd Authentication of electronic documents
US7624439B2 (en) * 2001-10-29 2009-11-24 Seventh Knight Authenticating resource requests in a computer system
US7930756B1 (en) 2001-12-12 2011-04-19 Crocker Steven Toye Multi-level cryptographic transformations for securing digital assets
US7178033B1 (en) 2001-12-12 2007-02-13 Pss Systems, Inc. Method and apparatus for securing digital assets
US7565683B1 (en) 2001-12-12 2009-07-21 Weiqing Huang Method and system for implementing changes to security policies in a distributed security system
US7921288B1 (en) 2001-12-12 2011-04-05 Hildebrand Hal S System and method for providing different levels of key security for controlling access to secured items
US10033700B2 (en) 2001-12-12 2018-07-24 Intellectual Ventures I Llc Dynamic evaluation of access rights
US7380120B1 (en) 2001-12-12 2008-05-27 Guardian Data Storage, Llc Secured data format for access control
US7921450B1 (en) 2001-12-12 2011-04-05 Klimenty Vainstein Security system using indirect key generation from access rules and methods therefor
US8006280B1 (en) 2001-12-12 2011-08-23 Hildebrand Hal S Security system for generating keys from access rules in a decentralized manner and methods therefor
US10360545B2 (en) 2001-12-12 2019-07-23 Guardian Data Storage, Llc Method and apparatus for accessing secured electronic data off-line
US7921284B1 (en) 2001-12-12 2011-04-05 Gary Mark Kinghorn Method and system for protecting electronic data in enterprise environment
US7260555B2 (en) 2001-12-12 2007-08-21 Guardian Data Storage, Llc Method and architecture for providing pervasive security to digital assets
US8065713B1 (en) 2001-12-12 2011-11-22 Klimenty Vainstein System and method for providing multi-location access management to secured items
US7950066B1 (en) 2001-12-21 2011-05-24 Guardian Data Storage, Llc Method and system for restricting use of a clipboard application
US8176334B2 (en) 2002-09-30 2012-05-08 Guardian Data Storage, Llc Document security system that permits external users to gain access to secured files
US20060195402A1 (en) * 2002-02-27 2006-08-31 Imagineer Software, Inc. Secure data transmission using undiscoverable or black data
US6996544B2 (en) * 2002-02-27 2006-02-07 Imagineer Software, Inc. Multiple party content distribution system and method with rights management features
US7725404B2 (en) * 2002-02-27 2010-05-25 Imagineer Software, Inc. Secure electronic commerce using mutating identifiers
US7376624B2 (en) 2002-02-27 2008-05-20 Imagineer Software, Inc. Secure communication and real-time watermarking using mutating identifiers
US7562053B2 (en) 2002-04-02 2009-07-14 Soluble Technologies, Llc System and method for facilitating transactions between two or more parties
US7779247B2 (en) 2003-01-09 2010-08-17 Jericho Systems Corporation Method and system for dynamically implementing an enterprise resource policy
WO2004107700A1 (en) * 2003-05-30 2004-12-09 Privasphere Gmbh System and method for secure communication
US8707034B1 (en) 2003-05-30 2014-04-22 Intellectual Ventures I Llc Method and system for using remote headers to secure electronic files
US7792828B2 (en) 2003-06-25 2010-09-07 Jericho Systems Corporation Method and system for selecting content items to be presented to a viewer
US7953860B2 (en) 2003-08-14 2011-05-31 Oracle International Corporation Fast reorganization of connections in response to an event in a clustered computing system
US20060064400A1 (en) * 2004-09-21 2006-03-23 Oracle International Corporation, A California Corporation Methods, systems and software for identifying and managing database work
US7664847B2 (en) 2003-08-14 2010-02-16 Oracle International Corporation Managing workload by service
US7703140B2 (en) * 2003-09-30 2010-04-20 Guardian Data Storage, Llc Method and system for securing digital assets using process-driven security policies
US8127366B2 (en) 2003-09-30 2012-02-28 Guardian Data Storage, Llc Method and apparatus for transitioning between states of security policies used to secure electronic documents
US7694143B2 (en) * 2003-11-18 2010-04-06 Oracle International Corporation Method of and system for collecting an electronic signature for an electronic record stored in a database
US8782020B2 (en) * 2003-11-18 2014-07-15 Oracle International Corporation Method of and system for committing a transaction to database
US20050108211A1 (en) * 2003-11-18 2005-05-19 Oracle International Corporation, A California Corporation Method of and system for creating queries that operate on unstructured data stored in a database
US7966493B2 (en) 2003-11-18 2011-06-21 Oracle International Corporation Method of and system for determining if an electronic signature is necessary in order to commit a transaction to a database
US7650512B2 (en) * 2003-11-18 2010-01-19 Oracle International Corporation Method of and system for searching unstructured data stored in a database
US7600124B2 (en) * 2003-11-18 2009-10-06 Oracle International Corporation Method of and system for associating an electronic signature with an electronic record
US7487358B2 (en) * 2004-11-29 2009-02-03 Signacert, Inc. Method to control access between network endpoints based on trust scores calculated from information system component analysis
US8266676B2 (en) * 2004-11-29 2012-09-11 Harris Corporation Method to verify the integrity of components on a trusted platform using integrity database services
US8327131B1 (en) 2004-11-29 2012-12-04 Harris Corporation Method and system to issue trust score certificates for networked devices using a trust scoring service
US7733804B2 (en) * 2004-11-29 2010-06-08 Signacert, Inc. Method and apparatus to establish routes based on the trust scores of routers within an IP routing domain
US9450966B2 (en) * 2004-11-29 2016-09-20 Kip Sign P1 Lp Method and apparatus for lifecycle integrity verification of virtual machines
US7761704B2 (en) * 2005-03-17 2010-07-20 Oracle International Corporation Method and apparatus for expiring encrypted data
US20070055893A1 (en) * 2005-08-24 2007-03-08 Mci, Inc. Method and system for providing data field encryption and storage
US11327674B2 (en) 2012-06-05 2022-05-10 Pure Storage, Inc. Storage vault tiering and data migration in a distributed storage network
US9600661B2 (en) * 2005-12-01 2017-03-21 Drive Sentry Limited System and method to secure a computer system by selective control of write access to a data storage medium
US10503418B2 (en) 2005-12-01 2019-12-10 Drive Sentry Limited System and method to secure a computer system by selective control of write access to a data storage medium
US20110179477A1 (en) * 2005-12-09 2011-07-21 Harris Corporation System including property-based weighted trust score application tokens for access control and related methods
US7784102B2 (en) * 2005-12-15 2010-08-24 Xerox Corporation Method for secure access to document repositories
US8028908B2 (en) * 2006-05-01 2011-10-04 Patrick Shomo Systems and methods for the secure control of data within heterogeneous systems and networks
US20080104709A1 (en) * 2006-09-29 2008-05-01 Verus Card Services System and method for secure data storage
EP2120178A4 (en) * 2007-02-08 2010-12-08 Nec Corp Access control system, access control method, electronic device, and control program
US7991790B2 (en) * 2007-07-20 2011-08-02 Salesforce.Com, Inc. System and method for storing documents accessed by multiple users in an on-demand service
US9112886B2 (en) * 2007-12-27 2015-08-18 Verizon Patent And Licensing Inc. Method and system for providing centralized data field encryption, and distributed storage and retrieval
DE102008031890B4 (en) * 2008-07-08 2010-06-17 Artec Computer Gmbh Method and computer system for the long-term archiving of qualified signed data
US10943030B2 (en) 2008-12-15 2021-03-09 Ibailbonding.Com Securable independent electronic document
US8613108B1 (en) * 2009-03-26 2013-12-17 Adobe Systems Incorporated Method and apparatus for location-based digital rights management
US8782086B2 (en) * 2009-08-27 2014-07-15 Cleversafe, Inc. Updating dispersed storage network access control information
EP2494435B1 (en) * 2009-10-22 2019-09-11 Hewlett-Packard Development Company, L.P. Virtualized migration control
DE102009054114A1 (en) * 2009-11-20 2011-05-26 Siemens Aktiengesellschaft Method and device for accessing control data according to provided rights information
US8533469B2 (en) * 2009-11-23 2013-09-10 Fujitsu Limited Method and apparatus for sharing documents
US20120310983A1 (en) * 2010-02-11 2012-12-06 Hemant Mittal Executable identity based file access
US20120174192A1 (en) * 2011-01-05 2012-07-05 International Business Machines Corporation Displaying A Known Sender's Identifier To A Recipient Of A Joint Senders' Message
US9792451B2 (en) 2011-12-09 2017-10-17 Echarge2 Corporation System and methods for using cipher objects to protect data
KR20140100986A (en) * 2011-12-09 2014-08-18 이차지2 코포레이션 Systems and methods for using cipher objects to protect data
US9613052B2 (en) * 2012-06-05 2017-04-04 International Business Machines Corporation Establishing trust within a cloud computing system
US9578111B2 (en) * 2012-06-08 2017-02-21 International Business Machines Corporation Enabling different client contexts to share session information
US9449178B2 (en) * 2012-07-24 2016-09-20 ID Insight System, method and computer product for fast and secure data searching
US10719585B2 (en) * 2014-07-08 2020-07-21 Hewlett-Packard Development Company, L.P. Composite document access
JP2017058800A (en) * 2015-09-15 2017-03-23 富士ゼロックス株式会社 Apparatus and program for information processing
WO2017152037A1 (en) 2016-03-04 2017-09-08 1Usf, Inc. Systems and methods for media codecs and containers
US10474653B2 (en) 2016-09-30 2019-11-12 Oracle International Corporation Flexible in-memory column store placement
CN107948126B (en) * 2016-10-13 2021-09-03 阿里巴巴集团控股有限公司 Report form viewing method and equipment
CN111930846B (en) * 2020-09-15 2021-02-23 支付宝(杭州)信息技术有限公司 Data processing method, device and equipment
US20220405420A1 (en) * 2021-06-21 2022-12-22 International Business Machines Corporation Privacy preserving data storage

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5052040A (en) * 1990-05-25 1991-09-24 Micronyx, Inc. Multiple user stored data cryptographic labeling system and method
US5825877A (en) * 1996-06-11 1998-10-20 International Business Machines Corporation Support for portable trusted software
US6272593B1 (en) * 1998-04-10 2001-08-07 Microsoft Corporation Dynamic network cache directories

Also Published As

Publication number Publication date
CA2287871C (en) 2007-07-31
US6978366B1 (en) 2005-12-20

Similar Documents

Publication Publication Date Title
CA2287871A1 (en) Secure document management system
EP0792044A3 (en) Device and method for authenticating user's access rights to resources according to the Challenge-Response principle
MY132697A (en) System and method for authentication
WO2001022650A3 (en) Server-side implementation of a cryptographic system
EP1510920A3 (en) Apparatus and method for controlling booting operation of computer system
WO2004053654A3 (en) Method of and system for controlling access to personal information records
EP0998091A3 (en) System and method for web server user authentication
EP1189128A2 (en) Secure system and method for accessing files in computers using fingerprints
WO2004001656A3 (en) Systems and methods for secure biometric authentication
EP1505471A3 (en) An electronic data protection system
WO2003096204A1 (en) Information processing device and method, information processing system, recording medium, and program
WO2001022687A3 (en) Systems and methods for protecting private information
WO1999006900A3 (en) System and method for globally and securely accessing unified information in a computer network
WO2004049144A3 (en) Generic security infrastructure for com based systems
WO2001059673A3 (en) Method and system for accessing a remote storage area
WO2001077775A3 (en) Network content access control
EP1011222A3 (en) Electronic data storage apparatus with key management function and electronic data storage method
EP1923814A3 (en) Systems and methods for secure transaction management and electronic rights protection
WO2001048582A3 (en) Method and device for presenting data to a user
EP0770997A3 (en) Password protection for removable hard drive
NZ535870A (en) A secure information storage system using data splitting and separated storage with encryption
ES2069553T3 (en) TERMINAL CONTROLLED BY DATA SUPPORT IN A DATA EXCHANGE SYSTEM.
WO2002086684A3 (en) An information security system
DE69331061D1 (en) Fault-tolerant hierarchical bus system
AU2003291892A1 (en) System and method of secure authentication information distribution

Legal Events

Date Code Title Description
EEER Examination request
MKLA Lapsed
MKLA Lapsed

Effective date: 20121101