Data access control techniques using roles and permissions
First Claim
Patent Images
1. A computer-implemented method of controlling access to information related to a first intellectual property (IP) case, the method comprising:
- storing information related to a plurality of intellectual property cases on a computer-readable medium, the plurality of intellectual property cases including the first intellectual property case, wherein for each intellectual property case, the information related to the intellectual property case is stored in a case data unit, wherein the case data unit stores data related to the intellectual property case and one or more documents related to the intellectual property case;
receiving a request from a first user to perform an operation on the information related to the first IP case;
responsive to receiving the request;
determining a first group to which the first user is assigned;
determining a second group to which a first case data unit storing information related to the first IP case is assigned;
determining one or more roles to which the first user is assigned, the one or more roles being associated with a set of permissions;
determining case data unit level access information for the first case data unit; and
determining if the first user can perform the operation on the information related to the first IP case based upon the first group to which the first user is assigned, the second group to which the first case data unit is assigned, the set of permissions associated with the one or more roles to which the user is assigned, and the case data unit level access information for the first case data unit.
1 Assignment
0 Petitions
Accused Products
Abstract
A computer-implemented technique for data access management system and providing access to information associated with legal cases including intellectual property cases. The data access management system allows individuals securing intellectual property rights to share data while ensuring that unauthorized access to data is not permitted. According to an embodiment of the present invention, techniques are provided for customizing data access per the user'"'"'s needs.
-
Citations
49 Claims
-
1. A computer-implemented method of controlling access to information related to a first intellectual property (IP) case, the method comprising:
-
storing information related to a plurality of intellectual property cases on a computer-readable medium, the plurality of intellectual property cases including the first intellectual property case, wherein for each intellectual property case, the information related to the intellectual property case is stored in a case data unit, wherein the case data unit stores data related to the intellectual property case and one or more documents related to the intellectual property case;
receiving a request from a first user to perform an operation on the information related to the first IP case;
responsive to receiving the request;
determining a first group to which the first user is assigned;
determining a second group to which a first case data unit storing information related to the first IP case is assigned;
determining one or more roles to which the first user is assigned, the one or more roles being associated with a set of permissions;
determining case data unit level access information for the first case data unit; and
determining if the first user can perform the operation on the information related to the first IP case based upon the first group to which the first user is assigned, the second group to which the first case data unit is assigned, the set of permissions associated with the one or more roles to which the user is assigned, and the case data unit level access information for the first case data unit. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A computer-implemented method of controlling access to information related to a first intellectual property (IP) case, the method comprising:
-
storing information related to a plurality of intellectual property cases on a computer-readable medium, the plurality of intellectual property cases including the first intellectual property case, wherein for each intellectual property case, the information related to the intellectual property case is stored in a case data unit, wherein the case data unit stores data related to the intellectual property case and one or more documents related to the intellectual property case;
receiving a request from a first user to perform an operation on the information related to the first IP case;
responsive to receiving the request;
determining a first group to which the first user is assigned;
determining a second group to which a first case data unit storing information related to the first IP case is assigned;
determining one or more roles to which the first user is assigned, the one or more roles being associated with a set of permissions;
determining case data unit level access information for the first case data unit; and
determining if the first user can perform the operation on the information related to the first IP case based the set of permissions associated with the one or more roles to which the user is assigned, and the case data unit level access information for the first case data unit. - View Dependent Claims (15, 16)
-
-
17. A computer-implemented method of controlling access to information related to a first intellectual property (IP) case, the method comprising:
-
storing information related to a plurality of intellectual property 5 cases on a computer-readable medium, the plurality of intellectual property cases including the first intellectual property case, wherein for each intellectual property case, the information related to the intellectual property case is stored in a case data unit, wherein the case data unit stores data related to the intellectual property case and one or more documents related to the intellectual property case;
receiving a request from a first user to perform an operation on the information related to the first IP case;
responsive to receiving the request;
determining a first group to which the first user is assigned;
determining a second group to which a first case data unit storing information related to the first IP case is assigned;
determining one or more roles to which the first user is assigned, the one or more roles being associated with a set of permissions;
determining case data unit level access information for the first case data unit; and
determining if the first user can perform the operation on the information related to the first IP case based upon the first group to which the first user is assigned, the second group to which the first case data unit is assigned, and the set of permissions associated with the one or more roles to which the user is assigned. - View Dependent Claims (18, 19, 20)
-
-
21. A computer-implemented method of controlling access to information related to a first intellectual property (IP) case, the method comprising:
-
storing information related to a plurality of intellectual property cases on a computer-readable medium, the plurality of intellectual property cases including the first intellectual property case, wherein for each intellectual property case, the information related to the intellectual property case is stored in a private folder associated with a case data unit, wherein the private folder stores data related to the intellectual property case and one or more documents related to the intellectual property case;
receiving a request from a first user to perform an operation on the information related to the first IP case;
responsive to receiving the request;
determining a first group to which the first user is assigned;
determining a second group to which a first private folder containing information related to the first IP case is assigned; and
determining if the first user can perform the operation on the information related to the first IP case based upon the first group to which the first user is assigned and the second group to which the first private folder is assigned. - View Dependent Claims (22, 23)
-
-
24. A computer program product stored on a computer readable medium for controlling access to information related to a first intellectual property (IP) case, the computer program product comprising:
-
code for storing information related to a plurality of intellectual property cases on a computer-readable medium, the plurality of intellectual property cases including the first intellectual property case, wherein for each intellectual property case, the information related to the intellectual property-case is stored in a case data unit, wherein the case data unit stores data related to the intellectual property case and one or more documents related to the intellectual property case;
code for receiving a request from a first user to perform an operation on the information related to the first IP case;
code for responsive to receiving the request;
code for determining a first group to which the first user is assigned;
code for determining a second group to which a first case data unit storing information related to the first IP case is assigned;
code for determining one or more roles to which the first user is assigned, the one or more roles being associated with a set of permissions;
code for determining case data unit level access information for the first case data unit; and
code for determining if the first user can perform the operation on the information related to the first IP case based upon the first group to which the first user is assigned, the second group to which the first case data unit is assigned, the set of permissions associated with the one or more roles to which the user is assigned, and the case data unit level access information for the first case data unit. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A system comprising a processor and a computer readable memory coupled to said processor, said computer-readable memory including computer instructions that:
-
storing information related to a plurality of intellectual property cases on a computer-readable medium, the plurality of intellectual property cases including the first intellectual property case, wherein for each intellectual property case, the information related to the intellectual property case is stored in a case data unit, wherein the case data unit stores data related to the intellectual property case and one or more documents related to the intellectual property case;
receiving a request from a first user to perform an operation on the information related to the first IP case;
responsive to receiving the request;
determining a first group to which the first user is assigned;
determining a second group to which a first case data unit storing information related to the first IP case is assigned;
determining one or more roles to which the first user is assigned, the one or more roles being associated with a set of permissions;
determining case data unit level access information for the first case data unit; and
determining if the first user can perform the operation on the information related to the first IP case based upon the first group to which the first user is assigned, the second group to which the first case data unit is assigned, the set of permissions associated with the one or more roles to which the user is assigned, and the case data unit level access information for the first case data unit. - View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49)
-
Specification