Abstractions and automation for enhanced sharing and collaboration

US 10,102,394 B2
Filed: 10/20/2017
Issued: 10/16/2018
Est. Priority Date: 04/20/2004
Status: Active Grant

First Claim

Patent Images

1. A system to facilitate information access control, comprising:

memory; and

one or more processors coupled to the memory and configured to;

receive an access request for a data item owned by a data item owner, the access request being based at least in part on a request from a requesting user,determine whether the requesting user is a member of a dynamically created group of users based at least in part on an activity of the requesting user,dynamically select an access policy based at least in part on the dynamically created group of users to which the requesting user is determined to belong, the access policy configured to request a reason for the requesting user to access the data item, andselectively provide access to the data item to the requesting user based at least in part on the access policy.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides methods for using abstractions of people, including dynamic and static groups of people, to enhance the efficiency of the specification and automation of policies for sharing information between users with a “need-to-know.” An instance of the present invention can also provide these users information based on a “time-to-know.” By providing access to information based on group affiliation and properties of the content of the information, the present invention maintains optimal information privacy while minimizing encumbrances to sharing data with appropriate users and even at appropriate times. The present invention can be integrated with other communication technologies to facilitate access to information in a time appropriate manner. Other instances of the present invention employ automated and semi-automated, mixed-initiative techniques, to make information-sharing decisions. Additional instances of the present invention include the employment of machine-learning techniques to facilitate construction of access policies from the actions or profile of a single user or a community of users, including the construction of automated sharing agents that work in an automated or mixed-initiative manner to respond to real-time requests for information.

100 Citations

20 Claims

1. A system to facilitate information access control, comprising:
- memory; and
  
  one or more processors coupled to the memory and configured to;
  
  receive an access request for a data item owned by a data item owner, the access request being based at least in part on a request from a requesting user,determine whether the requesting user is a member of a dynamically created group of users based at least in part on an activity of the requesting user,dynamically select an access policy based at least in part on the dynamically created group of users to which the requesting user is determined to belong, the access policy configured to request a reason for the requesting user to access the data item, andselectively provide access to the data item to the requesting user based at least in part on the access policy.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The system of claim 1, wherein the access policy withholds access to the data item to the requesting user until a specified time period before an event is to occur based at least in part on the requesting user being a member of the dynamically created group of users.
  - 3. The system of claim 1, wherein the one or more processors are configured to dynamically select the access policy further based at least in part on a context of the data item owner;
    - andwherein the data item owner and the requesting user are not same.
  - 4. The system of claim 3, wherein the one or more processors are configured to dynamically select the access policy based at least in part on an availability of the data item owner.
  - 5. The system of claim 3, wherein the one or more processors are configured to dynamically select the access policy based at least in part on a forecast of a wait time until the data item owner is able to act on the access request.
  - 6. The system of claim 3, wherein the one or more processors are configured to dynamically select the access policy based at least in part on communication means that are available for use by the data item owner.
  - 7. The system of claim 3, wherein the one or more processors are configured to dynamically select the access policy based at least in part on an anticipated activity level of the data item owner.
  - 8. The system of claim 3, wherein the one or more processors are configured to dynamically select the access policy based at least in part on a location of the data item owner.
  - 9. The system of claim 1, wherein the one or more processors are configured to selectively provide access to the data item to the requesting user based at least in part on an urgency of the data item.
  - 10. The system of claim 1, wherein the one or more processors are configured to allow the requesting user to access at least a portion of the data item when no response to the access request is received from the data item owner within a predetermined amount of time to selectively provide the access to the data item to the requesting user.
  - 11. The system of claim 1, wherein the one or more processors are configured to communicate the access request to the data item owner to dynamically select the access policy.

12. A method of facilitating information access control using at least one processor of a processor-based system, the method comprising:
- receiving an access request for a data item owned by a data item owner, the access request being based at least in part on a request from a requesting user;
  
  determining whether the requesting user is a member of a dynamically created group of users based at least in part on an activity of the requesting user;
  
  dynamically selecting an access policy based at least in part on the dynamically created group of users to which the requesting user is determined to belong, the access policy configured to request a reason for the requesting user to access the data item; and
  
  selectively providing access to the data item to the requesting user based at least in part on the access policy.
- View Dependent Claims (13, 14, 15, 16)
- - 13. The method of claim 12, wherein the access policy withholds access to the data item to the requesting user until a specified time period before an event is to occur based at least in part on the requesting user being a member of the dynamically created group of users.
  - 14. The method of claim 12, wherein dynamically selecting the access policy comprises:
    - dynamically selecting the access policy further based at least in part on a context of the data item owner; and
      
      wherein the data item owner and the requesting user are not same.
  - 15. The method of claim 14, wherein dynamically selecting the access policy comprises:
    - dynamically selecting the access policy based at least in part on an anticipated location of the data item owner.
  - 16. The method of claim 14, wherein dynamically selecting the access policy comprises:
    - dynamically selecting the access policy based at least in part on an activity performed by the data item owner.

17. A system to facilitate information access control, comprising:
- memory; and
  
  one or more processors coupled to the memory and configured to;
  
  receive an access request for a data item owned by a data item owner, the access request being based at least in part on a request from a requesting user,determine whether the requesting user is a member of a dynamically created group of users based at least in part on an activity of the requesting user,communicate the access request to the data item owner to dynamically select an access policy based at least in part on the dynamically created group of users to which the requesting user is determined to belong, andselectively provide access to the data item to the requesting user based at least in part on the access policy.
- View Dependent Claims (18, 19, 20)
- - 18. The system of claim 17, wherein the one or more processors are configured to allow the requesting user to access at least a portion of the data item when no response to the access request is received from the data item owner within a predetermined amount of time to selectively provide the access to the data item to the requesting user.
  - 19. The system of claim 17, wherein the access policy withholds access to the data item to the requesting user until a specified time period before an event is to occur based at least in part on the requesting user being a member of the dynamically created group of users.
  - 20. The system of claim 17, wherein the one or more processors are configured to selectively provide access to the data item to the requesting user based at least in part on an urgency of the data item.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Inventors
Horvitz, Eric J., Grudin, Jonathan T., Dewan, Prasun
Primary Examiner(s)
Williams, Jeffery

Application Number

US15/789,812
Publication Number

US 20180060602A1
Time in Patent Office

361 Days
Field of Search

726 27
US Class Current
CPC Class Codes

G06F 21/6218 to a system of files or obj...

G06Q 10/10 Office automation; Time man...

Abstractions and automation for enhanced sharing and collaboration

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

100 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Abstractions and automation for enhanced sharing and collaboration

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

100 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links