Method and system for enforcing online identity consent polices
First Claim
1. A computer system for enforcing consent policies on online identities comprising:
- (a) an application module for identifying online identities covered by consent policies (“
managed online identities”
) and enforcing said consent policies on said managed online identities by;
(1) interrogating a consent policy engine to determine;
(i) if an identified entity is a managed online identity; and
(ii) if an identified online entity is a managed online entity, the consent policy or policies covering said managed online identity; and
(2) not allowing said managed online identity to perform a task covered by the consent policy or policies covering said managed online identity without first obtaining consent from an associated online identity manager;
(b) a consent policy engine for determining;
(1) if an identified online entity is a managed online entity; and
(2) if an identified online entity is a managed online identity, the consent policy or policies covering with said managed online identity; and
(c) an association module for creating and approving an association between managed online identities and associated online identity managers based on consent policies covering said managed online identities by;
(i) proposing an association between an online identity manager and a managed online identity based on the consent policy covering said managed online identity, (ii) obtaining validation data for the proposed association;
(iii) determining if the validation data meets requirements of the consent policy applicable to said managed online identity; and
, (iv) if the validation data meets requirements of the consent policy applicable to aid managed online identity, approving the proposed association thereby allowing an online identity manager to consent to tasks covered by the consent policy applicable to said managed online identity.
2 Assignments
0 Petitions
Accused Products
Abstract
A method, system, and computer-readable medium are provided for enforcing online identities consent policies. The consent policy is enforced by creating and approving corresponding associations between an online identity manager and a managed online identity. The online identity manager has authority to consent to a task requested on behalf of the managed online identity. An application module implements a consent policy. A consent policy engine evaluates a consent policy to determine if the consent policy applies to user profile information for an online identity. An association service creates and approves an association between a manager online identity and a managed online identity based on the consent policy. The association service creates and approves an association by proposing an association, obtaining validation data for the proposed association, determining if the association validation data meets requirements of the consent policy and, if so, approving the proposed association.
-
Citations
56 Claims
-
1. A computer system for enforcing consent policies on online identities comprising:
-
(a) an application module for identifying online identities covered by consent policies (“
managed online identities”
) and enforcing said consent policies on said managed online identities by;
(1) interrogating a consent policy engine to determine;
(i) if an identified entity is a managed online identity; and
(ii) if an identified online entity is a managed online entity, the consent policy or policies covering said managed online identity; and
(2) not allowing said managed online identity to perform a task covered by the consent policy or policies covering said managed online identity without first obtaining consent from an associated online identity manager;
(b) a consent policy engine for determining;
(1) if an identified online entity is a managed online entity; and
(2) if an identified online entity is a managed online identity, the consent policy or policies covering with said managed online identity; and
(c) an association module for creating and approving an association between managed online identities and associated online identity managers based on consent policies covering said managed online identities by;
(i) proposing an association between an online identity manager and a managed online identity based on the consent policy covering said managed online identity, (ii) obtaining validation data for the proposed association;
(iii) determining if the validation data meets requirements of the consent policy applicable to said managed online identity; and
,(iv) if the validation data meets requirements of the consent policy applicable to aid managed online identity, approving the proposed association thereby allowing an online identity manager to consent to tasks covered by the consent policy applicable to said managed online identity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 19, 20, 21, 22, 23)
-
-
24. A method for enforcing a consent policy on online identities, the method comprising:
-
determining if a consent policy applies to user profile information corresponding to a first online identity;
if a consent policy applies to said user profile information corresponding to a first online identity, creating an association between the first online identity and a second online identity based on the consent policy, said second online identity being a manager of said first online identity; and
obtaining consent from the second online identity before the first online identity is allowed to perform an online task covered by the consent policy. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 34, 35, 36, 37, 38)
-
-
39. A computer readable medium comprising computer executable instructions for enforcing a consent policy on online identities that when executed cause a computer system to:
-
determine if a consent policy applies to user profile information corresponding to a first online identity;
if a consent policy applies to said user profile information corresponding to a first online identity, create an association between the first online identity and a second online identity based on the consent policy, said second online identity begin a manager of said first online identity; and
obtain consent from the second online identity before the first online identity is allowed to perform an online task covered by the consent policy. - View Dependent Claims (40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52)
-
-
53. A computer-readable medium having a data structure stored thereon for use in enforcing a consent policy on online identities, the data structure comprising:
-
a first data element indicative of association identification information;
a second data element indicative of identification information about an online identity manager;
a third data element indicative of identification information about a managed online identity;
a fourth data element indicative of policy identification information;
a fifth data element indicative of association verification information;
a sixth data element indicative of the status of an online identity managers association related request; and
a seventh data element indicative of the status of a managed online identities association related request;
wherein the data structure is used for adding, deleting, and modifying data in an association database, said association database used for creating and modifying associations between online identities based on a consent policy. - View Dependent Claims (54)
-
-
55. A computer-readable medium having a data structure stored thereon for use in enforcing a consent policy on online identities, the data structure comprising:
-
a first data element indicative of information about restrictions and rules to be applied to online identities; and
a second data element indicative of information about instructions for validating and enforcing the policy;
wherein the data structure is used for adding, deleting, and modifying data in a consent policy database, said consent policy database used for determining if a consent policy applies to a first online identity so as to require obtaining consent from an associated online identity before the first online identity is allowed to perform a task covered by the consent policy.
-
-
56. A computer-readable medium having a data structure stored thereon for use in enforcing a consent policy on online identities, the data structure comprising:
-
a first data element indicative of information about intentions, said intentions being restrictions and rules a user of an online identity defines and imposes on the user'"'"'s own online identity; and
a second data element indicative of information about instructions for validating and enforcing the policies;
wherein the data structure is used for adding, deleting, and modifying data in a consent policy database, said consent policy database used for determining if a consent policy applies to a first online identity so as to require obtaining consent from an associated online identity before the first online identity is allowed to perform a task covered by the consent policy.
-
Specification