Owner Controlled Transmitted File Protection and Access Control System and Method
Abstract
A system that encrypts a protected file embedded with encrypted policy rules. The policy rules are one or more ‘access rules’ and ‘use rules’ that determine how the file is accessed and used. The rules may be changed at any time and may be location, time and date sensitive. The file may be sent to a recipient or stored in a file accessed by the recipient may accessed. The recipient registers with the system and assigned an ID. Using the ‘access rule’, the file owner assigns a particular recipient ID to the file. A reader program generates a request to a management server to access and use the file. The management server reviews the policy rules to determine if they are satisfied. If the rules are satisfied, a digital certificate is assigned to the protected file is then used allowing the protected file to be accessed and used according to the policy rules.
Claims
exact text as granted — not AI-modifiedI claim:
1 . A system for an owner of a protected file to control access or use of the protected file after the protected file has been delivered to a recipient, comprising:
a a network; b. a server connected to said network, said server including an owner database record that contains a policy rules and a recipient ID, said policy rules containing access rules and use rules associated with said protected file, said recipient ID associated with a recipient authorized to access or use said protected file, said server configured to receive a request to access and use said protected file from said recipient, said server also configured to transmit a digital certificate to a reader program, said digital certificate includes information about said policy rules or said policy ID or said second key; c at least one encrypted protected file associated with said policy rules; d. a software program configured to present a plurality of policy menu pages that enable an owner of said protected file to identify said unique recipient ID to a recipient, said software program also configured to assign said policy rules used to determine when and how said protected file will be used or accessed by said recipient and associates said policy rules with said protected file; e. a remote computer used by said recipient assigned with a unique recipient ID; and, f. a reader program configured to access said policy rules in said digital certificate and determine if said policy rules are satisfied, said reader program also configured to produce or obtain from said digital certificate a second key that decrypts said protected file.
2 . The system as recited in claim 1 , wherein said digital certificate is embedded in said protected file.
3 . The system as recited in claim 1 , wherein said digital certificate automatically expires on a specified date or after a specific number of times the protected file has been accessed.
4 . The method as recited in claim 2 , wherein said digital certificate automatically expires on a specified date or after a specific number of times the protected file has been accessed.
5 . The system as recited in claim 1 , further including a first key in said digital certificate configured to decrypt said policy rules on said digital certificate.
6 . A method for an owner of a protected file to control access or use of the protected file after the protected file has been sent or made accessible to a recipient, said method comprises the following steps:
a. selecting an encrypted protected file associated-with a digital certificate; b. designating a recipient ID of a recipient to use or access said protected file; c. creating a set of policy rules that control who, when or how said protected file may be accessed or used by a recipient; d. associating said set of policy rules to said protected file, said policy rules include access rules and use rules; e. transmitting said recipient ID associated with said protected file or a policy ID to a server, said server configured to receive a request to open or access said protected file; f. selecting a remote computer operated or controlled by said recipient, said remote computer includes a reader program configured to send a said request to said server to access and use said protected file, said reader program enables said protected file to be decrypted and used according to said access rules and said use rules associated with said protected files; g. sending said request using said reader program to said server requesting access or use of a said protected file; and, h. determining if said request includes a recipient name or ID to access or use said protected file and determining if the access rules and use rules associated with protected file are satisfied.
7 . The method as recited in claim 6 , wherein said digital certificate is embedded in said protected file.
8 . The method as recited in claim 6 , wherein said digital certificate automatically expires on a specified date or after a specific number of times the protected file has been accessed.Join the waitlist — get patent alerts
Track US2016335445A1 — get alerts on status changes and closely related new filings.
We store only your email — no account needed. See our privacy policy.