Invention Grant
- Patent Title: Implementation and use of a PII data access control facility employing personally identifying information labels and purpose serving functions sets
- Patent Title (中): 实施和使用使用个人识别信息标签和目的服务功能集的PII数据访问控制设施
-
Application No.: US10643798Application Date: 2003-08-19
-
Publication No.: US07302569B2Publication Date: 2007-11-27
- Inventor: Linda Betz , John C. Dayka , Walter B. Farrell , Richard H. Guski , Guenter Karjoth , Mark A. Nelson , Birgit M. Pfitzmann , Matthias Schunter , Michael P. Waidner
- Applicant: Linda Betz , John C. Dayka , Walter B. Farrell , Richard H. Guski , Guenter Karjoth , Mark A. Nelson , Birgit M. Pfitzmann , Matthias Schunter , Michael P. Waidner
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Heslin Rothenberg Farley & Mesiti, P.C.
- Agent Lily Neff, Esq.; Kevin P. Radigan, Esq.
- Main IPC: H04L29/00
- IPC: H04L29/00
Abstract:
A data access control facility is implemented by assigning personally identifying information (PII) classification labels to PII data objects, with each PII data object having one PII classification label assigned thereto. The control facility further includes at least one PII purpose serving function set (PSFS) comprising a list of application functions that read or write PII data objects. Each PII PSFS is also assigned a PII classification label. A PII data object is accessible via an application function of a PII PSFS having a PII classification label that is identical to or dominant of the PII classification label of the PII object. A user of the control facility is assigned a PII clearance set which contains a list of at least one PII classification label, which is employed in determining whether the user is entitled to access a particular function.
Public/Granted literature
Information query
