Method and system for managing the display of sensitive content in non-trusted environments

US 20050125673A1
Filed: 12/08/2003
Published: 06/09/2005
Est. Priority Date: 12/08/2003
Status: Active Grant

First Claim

Patent Images

1. A method for managing the display of sensitive content in non-trusted environments, comprising the steps of:

interrogating a list of policies associated with a given user and a physical device;

determining a location of the physical device;

comparing the location of the physical device with a list of trusted locations; and

enforcing a plurality of rules contained in the policy, wherein access to sensitive information is limited or restricted based on the location.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method (10) for managing the display of sensitive content in non-trusted environments can include the steps of interrogating (12) a list of policies associated with a given user and a physical device, determining (14) a location of the physical device, comparing (18) the location of the physical device with a list of trusted locations, and enforcing (20) a plurality of rules contained in the policy by limiting or restricting access to sensitive information based on the location.

95 Citations

View as Search Results

18 Claims

1. A method for managing the display of sensitive content in non-trusted environments, comprising the steps of:
- interrogating a list of policies associated with a given user and a physical device;
  
  determining a location of the physical device;
  
  comparing the location of the physical device with a list of trusted locations; and
  
  enforcing a plurality of rules contained in the policy, wherein access to sensitive information is limited or restricted based on the location.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the method further comprises the step of providing a reminder to the given user in response to an attempt to access sensitive information on the physical device.
  - 3. The method of claim 1, wherein the method further comprises the step of requesting authentication from the given user in response to an attempt to access sensitive information on the physical device.
  - 4. The method of claim 3, wherein the step of requesting authentication comprises at least one among requesting provision of a unique password for the given user, a unique accessing device, or a unique biometric characteristic of the given user.
  - 5. The method of claim 1, wherein the step of determining a location comprises the step of using at least one among a global positioning system and a terrestrial wireless infrastructure system to provide the location of the physical device.
  - 6. The method claim 1, wherein the step of enforcing comprises at least one among blacking out a display, replacing the sensitive content with innocuous content, prohibiting access to the content, and hiding the content from the given user.

7. A system for managing the display of sensitive content in non-trusted environments, comprising:
- a memory;
  
  a display; and
  
  a processor coupled to the memory and the display, wherein the processor is programmed to;
  
  interrogate a list of policies associated with a given user and a physical device;
  
  determine a location of the physical device;
  
  compare the location of the physical device with a list of trusted locations; and
  
  enforce a plurality of rules contained in the policy, wherein access to sensitive information is limited or restricted based on the location.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The system of claim 7, wherein the processor is further programmed to provide a reminder to the given user in response to an attempt to access sensitive information on the physical device.
  - 9. The system of claim 7, wherein the processor is further programmed to request authentication from the given user in response to an attempt to access sensitive information on the physical device.
  - 10. The system of claim 9, wherein the processor requests authentication by requesting at least one among the provision of a unique password for the given user, a unique accessing device, or a unique biometric characteristic of the given user.
  - 11. The system of claim 7, wherein the processor determines the location by using at least one among a global positioning system and a terrestrial wireless infrastructure system to provide the location of the physical device.
  - 12. The system of claim 7, wherein the processor enforces the policies by at least one among blacking out a display, replacing the sensitive content with innocuous content, prohibiting access to the content, and hiding the content from the given user.

13. A machine-readable storage, having stored thereon a computer program having a plurality of code sections executable by a machine for causing the machine to perform the steps of:
- interrogating a list of policies associated with a given user and a physical device;
  
  determining a location of the physical device;
  
  comparing the location of the physical device with a list of trusted locations; and
  
  enforcing a plurality of rules contained in the policy, wherein access to sensitive information is limited or restricted based on the location.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The machine-readable storage of claim 13, wherein the computer program further comprises a plurality of code sections for causing the machine to provide a reminder to the given user in response to an attempt to access sensitive information on the physical device.
  - 15. The machine-readable storage of claim 13, wherein the computer program further comprises a plurality of code sections for causing to request authentication from the given user in response to an attempt to access sensitive information on the physical device.
  - 16. The machine-readable storage of claim 15, wherein the computer program requests authentication by requesting at least one among a provision of a unique password for the given user, a unique accessing device, or a unique biometric characteristic of the given user.
  - 17. The machine-readable storage of claim 13, wherein the computer program determines a location by using at least one among a global positioning system and a terrestrial wireless infrastructure system to provide the location of the physical device.
  - 18. The machine-readable storage claim 13, wherein the computer program enforces the policy by at least one among blacking out a display, replacing the sensitive content with innocuous content, prohibiting access to the content, and hiding the content from the given user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Fitzpatrick, Gregory P., Cheng, Tsz Simon, Cossey, Brent W.

Granted Patent

US 7,523,316 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/182
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/34   involving the use of extern...

G06F 21/6245   Protecting personal data, e...

G06F 21/84   output devices, e.g. displa...

G06F 2221/2111   Location-sensitive, e.g. ge...

Method and system for managing the display of sensitive content in non-trusted environments

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

95 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for managing the display of sensitive content in non-trusted environments

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

95 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links