Access, identity, and ticketing system for providing multiple access methods for smart devices

US 20050039041A1
Filed: 05/14/2004
Published: 02/17/2005
Est. Priority Date: 11/14/2001
Status: Abandoned Application

First Claim

Patent Images

1. A smart device, comprising:

a data storage apparatus on the smart device;

a plurality of data resources in the data storage apparatus on the smart device;

a user role determination apparatus on the smart device for determining the role of a user requesting access to at least one of the plurality of data resources; and

at least one permission apparatus on the smart device operative to receive the role of the user from the user role determination apparatus and to control based on the role of the user the access of the user to the plurality of data resources.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed is a system for accurately storing and reading digital identifications and permissions with an access rights management component that protects the privacy and integrity of the data stored on a smart device such as a smart card. The invention is intended to enable effective use of smart cards for applications such as air travelers identity, medical information such as history and prescriptions, or secure employee access cards. Multiple levels of security are permitted to ensure that users of the data, programs, and other resources stored on the card may access only that data that they have been authorized to. The use of a single card for multiple user roles necessitates multiple access methods to the card. For example, in a medical information or prescription card scenario, the cardholder may be the patient, and be able to access their personal patient data which is stored on the card with a PIN, password, or passphrase, by entering the aforementioned code on a computing device (10) which is attached to a card reader/writer device (20) which has the patient'"'"'s card (22) inserted into it. That patient'"'"'s doctor may be provided access to data on the same card, which may or may not include the patient'"'"'s data by entering an alternate code, or providing a digital signature to the card from his or her card authorizing the doctor to write prescription information or update medical history. In this example, the patient would have read-only access to the data that the doctor had written. The technology disclosed in the invention is also intended for travelers'"'"' identification, which could hold biometric identity information, ticketing and/or boarding information, and federal information about the cardholder which would permit or prohibit the cardholder from traveling on airline flights.

Citations

21 Claims

1. A smart device, comprising:
- a data storage apparatus on the smart device;
  
  a plurality of data resources in the data storage apparatus on the smart device;
  
  a user role determination apparatus on the smart device for determining the role of a user requesting access to at least one of the plurality of data resources; and
  
  at least one permission apparatus on the smart device operative to receive the role of the user from the user role determination apparatus and to control based on the role of the user the access of the user to the plurality of data resources.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The smart device of claim 1 wherein the plurality of data resources include at least one data resource from the group comprising a file, applet, application, program, directory, folder and an accessible data component.
  - 3. The smart device of claim 1 wherein the role of a user is selected from the group comprising a public role, a cardholder role, an order fulfillment role, an administrative role, a miscellaneous role, a customized role and a super user role.
  - 4. The smart device of claim 1 wherein the user role determination apparatus is responsive to a digital authentication key.
  - 5. The smart device of claim 1 wherein the at least one permission apparatus grants at least one access selected from the group including:
    - read, insert, update, delete, grant, grant with option, revoke, alter and customized access.
  - 6. The smart device of claim 1 and further including a user identity determination apparatus for determining the identity of the user.
  - 7. The smart device of claim 1 wherein the smart device comprises a smart card.

8. A method for selectively controlling access by multiple users to a plurality of data resources on a smart device, comprising the steps of:
- determining the identity of a user requesting access to at least one of the plurality of data resources on the smart device;
  
  determining the role of the user; and
  
  controlling, based on the role of the user, the access of the user to the plurality of data resources.
- View Dependent Claims (9, 10, 11, 12)
- - 9. The method of claim 8 wherein the plurality of data resources include at least one data resource from the group comprising a file, applet, application, program, directory, folder and an accessible data component.
  - 10. The method of claim 8 wherein the step of determining a role of the user includes the step of receiving a digital authentication key.
  - 11. The method of claim 10 wherein the role of a user is selected from the group comprising a public role, a cardholder role, an order fulfillment role, an administrative role, a miscellaneous role, a customized role and a super user role.
  - 12. The method of claim 8 wherein the step of controlling the access of the user includes granting at least one access from the group including:
    - read, insert, update, delete, grant, grant with option, revoke, alter and customized access.

13. A method of operating a smart device containing a plurality of data resources, comprising the steps of:
- receiving from a user a request to access at least one of the plurality of data resources on the smart device;
  
  determining a role of the user requesting access to at least one of the plurality of data resources;
  
  determining a plurality of permissions stored on the card; and
  
  supporting, based on the role of the user and the plurality of permissions, access of the user to at least one of the plurality of data resources.
- View Dependent Claims (14, 15, 16)
- - 14. The method of claim 13 wherein the plurality of data resources include at least one data resource from the group comprising a file, applet, application, program, directory, folder and an accessible data component.
  - 15. The method of claim 13 wherein the role of a user is selected from the group comprising a public role, a cardholder role, an order fulfillment role, an administrative role, a miscellaneous role, a customized role and a super user role.
  - 16. The method of claim 13 wherein the plurality of permissions include at least two permissions selected from the group of permissions including:
    - read, insert, update, delete, grant, grant with option, revoke, alter and customized permission.

17. A system for operating a smart device containing a plurality of data resources, comprising:
- receiving apparatus connected to receive a user request to access at least one of the plurality of data resources on the smart device;
  
  determining apparatus connected to receive the request from the user and determine a role of the user;
  
  a memory on the smart device storing a plurality of permissions; and
  
  permissioning apparatus responsive to the role of the user and the plurality of permissions to provide access to the user to at least one of the plurality of data resources.
- View Dependent Claims (18, 19, 20, 21)
- - 18. The system of claim 17 wherein the plurality of data resources include at least one data resource from the group comprising a file, applet, application, program, directory, folder and an accessible data component.
  - 19. The system of claim 17 wherein the role of a user is selected from the group comprising a public role, a cardholder role, an order fulfillment role, an administrative role, a miscellaneous role, a customized role and a super user role.
  - 20. The system of claim 17 wherein the plurality of permissions includes at least two permissions selected from the group of permissions including:
    - read, insert, update, delete, grant, grant with option, revoke, alter and customized permission.
  - 21. The system of claim 17 wherein the smart device is a smart card.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Janssen Scope LLC (Intellectual Ventures LLC)
Original Assignee
Janssen Scope LLC (Intellectual Ventures LLC)
Inventors
Murray, Joseph, Shaw, Mari Myra

Application Number

US10/846,005
Publication Number

US 20050039041A1
Time in Patent Office

Days
Field of Search
US Class Current

726/26
CPC Class Codes

G06F 21/6245   Protecting personal data, e...

G06F 21/6254   by anonymising data, e.g. d...

G06F 21/78   to assure secure storage of...

G06F 2221/2113   Multi-level security, e.g. ...

G16H 10/65   stored on portable record c...

Access, identity, and ticketing system for providing multiple access methods for smart devices

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Access, identity, and ticketing system for providing multiple access methods for smart devices

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links