Data security system and method with editor

US 20050132070A1
Filed: 11/26/2004
Published: 06/16/2005
Est. Priority Date: 11/13/2000
Status: Active Grant

First Claim

Patent Images

1. A method of securing data contained in a data document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects being grouped into subsets corresponding to respective ones of a plurality of security levels without reference to said data document, said method operable on said data document in a computer system, comprising:

identifying and displaying, in situ in said data document, said security sensitive words, characters or data objects and uniquely displaying subsets of said security sensitive words, characters or data objects for each one of said plurality of security levels;

conforming said data document to predetermined protocols for each one of said plurality of security levels by identifying and displaying in situ adjunctive words, characters or data objects;

upon command inserting one of a plurality of security level tags corresponding to said plurality of security levels into said data document at or near the identified security sensitive words, characters or data objects and adjunctive words, characters or data objects;

extracting said identified security sensitive words, characters or data objects and adjunctive words, characters or data objects from said data document; and

either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The method, program and system secures sensitive data/objects found in a data source document with an editor. The simple editor identifies and displays, in situ, the sensitive words/objects per each security level. Level tags are inserted and adjunctive words/objects are marked/displayed per the level'"'"'s protocol. The precursor document is processed to extract sensitive and adjunctive words/objects. The stripped data is either separately stored or partial versions of the secured document are stored per protocol. A comprehensive editor secures content data and meta data contained in a data document object model (DOM). The editor maps the source document root, branch and leaf components as binary files populated with content data and meta data. Security introns, earlier identified based upon the level'"'"'s informational attributes, are excluded. Security exons are copied from the source content and meta data binary files into a security safe document (template). Filtration, extraction, dispersal and storage follow.

1714 Citations

108 Claims

1. A method of securing data contained in a data document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects being grouped into subsets corresponding to respective ones of a plurality of security levels without reference to said data document, said method operable on said data document in a computer system, comprising:
- identifying and displaying, in situ in said data document, said security sensitive words, characters or data objects and uniquely displaying subsets of said security sensitive words, characters or data objects for each one of said plurality of security levels;
  
  conforming said data document to predetermined protocols for each one of said plurality of security levels by identifying and displaying in situ adjunctive words, characters or data objects;
  
  upon command inserting one of a plurality of security level tags corresponding to said plurality of security levels into said data document at or near the identified security sensitive words, characters or data objects and adjunctive words, characters or data objects;
  
  extracting said identified security sensitive words, characters or data objects and adjunctive words, characters or data objects from said data document; and
  
  either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 2. A method of securing data as claimed in claim 1 including inserting placeholders into said remainder data which placeholders mark the extracted data upon command.
  - 3. A method of securing data as claimed in claim 1 wherein partial versions of said extracted data with said remainder data are stored based upon security levels unique to each partial version and including displaying said partial versions upon command.
  - 4. A method of securing data as claimed in claim 1 wherein the step of inserting said security level tags occurs automatically.
  - 5. A method of securing data as claimed in claim 1 wherein the steps of:
    - identifying and displaying, conforming said data document, and inserting said security level tags, occurs substantially automatically.
  - 6. A method of securing data as claimed in claim 1 including accepting and displaying in situ manually designated words, characters or data objects as additional security sensitive words, characters or data objects.
  - 7. A method of securing data as claimed in claim 1 wherein said security sensitive words, characters or data objects are defined by compliance with law, regulation or policy, privacy, national, organizational or private security concerns.
  - 8. A method of securing data as claimed in claim 7 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and in compliance with said concerns.
  - 9. A method of securing data as claimed in claim 1 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and, upon command, the method compiles one or more adaptive filters, corresponding to said plurality of security levels, which one or more filters are employed during:
    - identifying and displaying, and extracting said identified security sensitive words, characters or data objects.
  - 10. A method of securing data as claimed in claim 9 wherein said one or more adaptive filters operate in conjunction with a compilation of additional data and includes retrieving at least one of contextual, semiotic and taxonomic words, characters or data objects from said compilation of additional data related to said security sensitive words, characters or data objects.
  - 11. A method of securing data as claimed in claim 2 wherein partial versions of said extracted data with said remainder data are stored based upon security levels unique to each partial version and including displaying said partial versions upon command.
  - 12. A method of securing data as claimed in claim 11 wherein the step of inserting said security level tags occurs automatically.
  - 13. A method of securing data as claimed in claim 12 wherein the steps of:
    - identifying and displaying, and conforming said data document, occurs substantially automatically.
  - 14. A method of securing data as claimed in claim 13 including accepting and displaying in situ manually designated words, characters or data objects as additional security sensitive words, characters or data objects.
  - 15. A method of securing data as claimed in claim 14 wherein said security sensitive words, characters or data objects are defined by compliance with law, regulation or policy, privacy, national, organizational or private security concerns.
  - 16. A method of securing data as claimed in claim 15 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and in compliance with said concerns.
  - 17. A method of securing data as claimed in claim 16 including compiling one or more adaptive filters, corresponding to said plurality of security levels, which one or more filters are employed during:
    - identifying and displaying, and extracting said identified security sensitive words, characters or data objects.
  - 18. A method of securing data as claimed in claim 17 wherein said one or more adaptive filters operate in conjunction with a compilation of additional data and includes retrieving at least one of contextual, semiotic and taxonomic words, characters or data objects from said compilation of additional data related to said security sensitive words, characters or data objects.

19. A method of securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said method operable on said data in said document in a computer system, comprising:
- mapping said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  excluding security introns and associated content data and meta data based upon predetermined informational attributes relative to said document object model;
  
  providing a security safe document formatted as a safe document object model;
  
  copying security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model;
  
  extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (20, 21, 22, 23, 24)
- - 20. A method of securing content and meta data as claimed in claim 19 wherein said extracting occurs on each said root, branch and leaf components of said security safe document.
  - 21. A method of securing content and meta data as claimed in claim 19 wherein excluding security introns and providing a security safe document and copying security exons are non-sequential acts.
  - 22. A method of securing content and meta data as claimed in claim 19 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.
  - 23. A method of securing content and meta data as claimed in claim 20 wherein excluding security introns and providing a security safe document and copying security exons are non-sequential acts.
  - 24. A method of securing content and meta data as claimed in claim 23 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.

25. A method of securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said method operable on said data in said document in a computer system, comprising:
- mapping said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  providing a security safe document formatted as a safe document object model;
  
  copying security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model, said safe document object model consisting of security exons and excluding security introns, and the respective associated content data and meta data relative thereto, which exons and introns being previously identified based upon predetermined informational attributes relative to said document object model;
  
  extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (26, 27, 28, 29, 30)
- - 26. A method of securing content and meta data as claimed in claim 25 wherein said extracting occurs on each said root, branch and leaf components of said security safe document.
  - 27. A method of securing content and meta data as claimed in claim 25 wherein excluding security introns and providing a security safe document and copying security exons are non-sequential acts.
  - 28. A method of securing content and meta data as claimed in claim 25 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.
  - 29. A method of securing content and meta data as claimed in claim 26 wherein excluding security introns and providing a security safe document and copying security exons are non-sequential acts.
  - 30. A method of securing content and meta data as claimed in claim 29 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.

31. A method of securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said safe document object model consisting of security exons and excluding security introns, and the respective associated content data and meta data relative thereto, said exons and introns being identified based upon predetermined informational attributes relative to said document object model, said method operable on said data in said document in a computer system, comprising:
- mapping said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  providing a security safe document formatted as a safe document object model;
  
  copying security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model;
  
  extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (32, 33, 34, 35, 36)
- - 32. A method of securing content and meta data as claimed in claim 31 wherein said extracting occurs on each said root, branch and leaf components of said security safe document.
  - 33. A method of securing content and meta data as claimed in claim 31 wherein providing a security safe document and copying security exons are non-sequential acts.
  - 34. A method of securing content and meta data as claimed in claim 31 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.
  - 35. A method of securing content and meta data as claimed in claim 32 providing a security safe document and copying security exons are non-sequential acts.
  - 36. A method of securing content and meta data as claimed in claim 35 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.

37. A computer readable medium containing programming instructions for securing data contained in a data document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects being grouped into subsets corresponding to respective ones of a plurality of security levels without reference to said data document, said method operable on said data document in a computer system, comprising:
- identifying and displaying, in situ in said data document, said security sensitive words, characters or data objects and uniquely displaying subsets of said security sensitive words, characters or data objects for each one of said plurality of security levels;
  
  conforming said data document to predetermined protocols for each one of said plurality of security levels by identifying and displaying in situ adjunctive words, characters or data objects;
  
  upon command inserting one of a plurality of security level tags corresponding to said plurality of security levels into said data document at or near the identified security sensitive words, characters or data objects and adjunctive words, characters or data objects;
  
  extracting said identified security sensitive words, characters or data objects and adjunctive words, characters or data objects from said data document; and
  
  either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54)
- - 38. A computer readable medium for securing data as claimed in claim 37 including inserting placeholders into said remainder data which placeholders mark the extracted data upon command.
  - 39. A computer readable medium for securing data as claimed in claim 37 wherein partial versions of said extracted data with said remainder data are stored based upon security levels unique to each partial version and including displaying said partial versions upon command.
  - 40. A computer readable medium for securing data as claimed in claim 37 wherein inserting said security level tags occurs automatically.
  - 41. A computer readable medium for securing data as claimed in claim 37 wherein identifying and displaying, conforming said data document, and inserting said security level tags, occurs substantially automatically.
  - 42. A computer readable medium for securing data as claimed in claim 37 including accepting and displaying in situ manually designated words, characters or data objects as additional security sensitive words, characters or data objects.
  - 43. A computer readable medium for securing data as claimed in claim 37 wherein said security sensitive words, characters or data objects are defined by compliance with law, regulation or policy, privacy, national, organizational or private security concerns.
  - 44. A computer readable medium for securing data as claimed in claim 43 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and in compliance with said concerns.
  - 45. A computer readable medium for securing data as claimed in claim 37 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and, upon command, the method compiles one or more adaptive filters, corresponding to said plurality of security levels, which one or more filters are employed during:
    - identifying and displaying, and extracting said identified security sensitive words, characters or data objects.
  - 46. A computer readable medium for securing data as claimed in claim 45 wherein said one or more adaptive filters operate in conjunction with a compilation of additional data and includes retrieving at least one of contextual, semiotic and taxonomic words, characters or data objects from said compilation of additional data related to said security sensitive words, characters or data objects.
  - 47. A computer readable medium for securing data as claimed in claim 38 wherein partial versions of said extracted data with said remainder data are stored based upon security levels unique to each partial version and including displaying said partial versions upon command.
  - 48. A computer readable medium for securing data as claimed in claim 47 wherein inserting said security level tags occurs automatically.
  - 49. A computer readable medium for securing data as claimed in claim 48 wherein identifying and displaying, and conforming said data document, occurs substantially automatically.
  - 50. A computer readable medium for securing data as claimed in claim 49 including accepting and displaying in situ manually designated words, characters or data objects as additional security sensitive words, characters or data objects.
  - 51. A computer readable medium for securing data as claimed in claim 50 wherein said security sensitive words, characters or data objects are defined by compliance with law, regulation or policy, privacy, national, organizational or private security concerns.
  - 52. A computer readable medium for securing data as claimed in claim 51 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and in compliance with said concerns.
  - 53. A computer readable medium for securing data as claimed in claim 52 including compiling one or more adaptive filters, corresponding to said plurality of security levels, which one or more filters are employed during:
    - identifying and displaying, and extracting said identified security sensitive words, characters or data objects.
  - 54. A computer readable medium for securing data as claimed in claim 53 wherein said one or more adaptive filters operate in conjunction with a compilation of additional data and includes retrieving at least one of contextual, semiotic and taxonomic words, characters or data objects from said compilation of additional data related to said security sensitive words, characters or data objects.

55. A computer readable medium containing programming instructions for securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said method operable on said data in said document in a computer system, comprising:
- mapping said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  excluding security introns and associated content data and meta data based upon predetermined informational attributes relative to said document object model;
  
  providing a security safe document formatted as a safe document object model;
  
  copying security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model;
  
  extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (56, 57, 58, 59, 60)
- - 56. A computer readable medium for securing data as claimed in claim 55 wherein said extracting occurs on each said root, branch and leaf components of said security safe document.
  - 57. A computer readable medium for securing data as claimed in claim 55 wherein excluding security introns and providing a security safe document and copying security exons are non-sequential acts.
  - 58. A computer readable medium for securing data as claimed in claim 55 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.
  - 59. A computer readable medium for securing data as claimed in claim 56 wherein excluding security introns and providing a security safe document and copying security exons are non-sequential acts.
  - 60. A computer readable medium for securing data as claimed in claim 59 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.

61. A computer readable medium containing programming instructions for securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said method operable on said data in said document in a computer system, comprising:
- mapping said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  providing a security safe document formatted as a safe document object model;
  
  copying security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model, said safe document object model consisting of security exons and excluding security introns, and the respective associated content data and meta data relative thereto, which exons and introns being previously identified based upon predetermined informational attributes relative to said document object model;
  
  extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (62, 63, 64, 65, 66)
- - 62. A computer readable medium for securing data as claimed in claim 61 wherein said extracting occurs on each said root, branch and leaf components of said security safe document.
  - 63. A computer readable medium for securing data as claimed in claim 61 wherein excluding security introns and providing a security safe document and copying security exons are non-sequential acts.
  - 64. A computer readable medium for securing data as claimed in claim 61 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.
  - 65. A computer readable medium for securing data as claimed in claim 62 wherein excluding security introns and providing a security safe document and copying security exons are non-sequential acts.
  - 66. A computer readable medium for securing data as claimed in claim 65 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.

67. A computer readable medium containing programming instructions for securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said safe document object model consisting of security exons and excluding security introns, and the respective associated content data and meta data relative thereto, said exons and introns being identified based upon predetermined informational attributes relative to said document object model, said method operable on said data in said document in a computer system, comprising:
- mapping said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  providing a security safe document formatted as a safe document object model;
  
  copying security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model;
  
  extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (68, 69, 70, 71, 72)
- - 68. A computer readable medium for securing data as claimed in claim 67 wherein said extracting occurs on each said root, branch and leaf components of said security safe document.
  - 69. A computer readable medium for securing data as claimed in claim 67 wherein providing a security safe document and copying security exons are non-sequential acts.
  - 70. A computer readable medium for securing data as claimed in claim 67 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.
  - 71. A computer readable medium for securing data as claimed in claim 68 providing a security safe document and copying security exons are non-sequential acts.
  - 72. A computer readable medium for securing data as claimed in claim 71 wherein either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.

73. An information processing system for securing data contained in a data document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects being grouped into subsets corresponding to respective ones of a plurality of security levels without reference to said data document, said method operable on said data document in a computer system, comprising:
- means for identifying and displaying, in situ in said data document, said security sensitive words, characters or data objects and uniquely displaying subsets of said security sensitive words, characters or data objects for each one of said plurality of security levels;
  
  means for conforming said data document to predetermined protocols for each one of said plurality of security levels by identifying and displaying in situ adjunctive words, characters or data objects;
  
  means for inserting, under command, one of a plurality of security level tags corresponding to said plurality of security levels into said data document at or near the identified security sensitive words, characters or data objects and adjunctive words, characters or data objects;
  
  extractor for extracting said identified security sensitive words, characters or data objects and adjunctive words, characters or data objects from said data document; and
  
  means for either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90)
- - 74. An information processing system as claimed in claim 73 including means for inserting placeholders into said remainder data which placeholders mark the extracted data upon command.
  - 75. An information processing system as claimed in claim 73 wherein said means for storing stores partial versions of said extracted data with said remainder data based upon security levels unique to each partial version and including displaying said partial versions upon command.
  - 76. An information processing system as claimed in claim 73 wherein the means for inserting said security level tags occurs automatically.
  - 77. An information processing system as claimed in claim 73 wherein means for identifying and displaying, means for conforming said data document, and means for inserting said security level tags, occurs substantially automatically.
  - 78. An information processing system as claimed in claim 73 including means for accepting and displaying in situ manually designated words, characters or data objects as additional security sensitive words, characters or data objects.
  - 79. An information processing system as claimed in claim 73 wherein said security sensitive words, characters or data objects are defined by compliance with law, regulation or policy, privacy, national, organizational or private security concerns.
  - 80. An information processing system as claimed in claim 79 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and in compliance with said concerns.
  - 81. An information processing system as claimed in claim 73 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and, upon command, a compiler compiles one or more adaptive filters, corresponding to said plurality of security levels, which one or more filters are employed by said means for identifying and displaying, and said extractor during extraction of said identified security sensitive words, characters or data objects.
  - 82. An information processing system as claimed in claim 81 wherein said one or more adaptive filters operate in conjunction with a compilation of additional data and includes means for retrieving at least one of contextual, semiotic and taxonomic words, characters or data objects from said compilation of additional data related to said security sensitive words, characters or data objects.
  - 83. An information processing system as claimed in claim 74 wherein partial versions of said extracted data with said remainder data are stored via said means for storing based upon security levels unique to each partial version and including means for displaying said partial versions upon command.
  - 84. An information processing system as claimed in claim 83 wherein said means for inserting said security level tags occurs automatically.
  - 85. An information processing system as claimed in claim 84 wherein said means for identifying and displaying, and means for conforming said data document, occurs substantially automatically.
  - 86. An information processing system as claimed in claim as claimed in claim 85 including means for accepting and displaying in situ manually designated words, characters or data objects as additional security sensitive words, characters or data objects.
  - 87. An information processing system as claimed in claim 86 wherein said security sensitive words, characters or data objects are defined by compliance with law, regulation or policy, privacy, national, organizational or private security concerns.
  - 88. An information processing system as claimed in claim 87 wherein said security sensitive words, characters or data objects are defined in a plurality of filters corresponding to said plurality of security levels and in compliance with said concerns.
  - 89. An information processing system as claimed in claim 88 including means for compiling one or more adaptive filters, corresponding to said plurality of security levels, said one or more filters are employed with said means for identifying and displaying, and said extractor during extraction of said identified security sensitive words, characters or data objects.
  - 90. An information processing system as claimed in claim 89 wherein said one or more adaptive filters operate in conjunction with a compilation of additional data and includes means for retrieving at least one of contextual, semiotic and taxonomic words, characters or data objects from said compilation of additional data related to said security sensitive words, characters or data objects.

91. An information processing system for securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said method operable on said data in said document in a computer system, comprising:
- a mapper to map said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  means for excluding security introns and associated content data and meta data based upon predetermined informational attributes relative to said document object model;
  
  a security safe document formatted as a safe document object model;
  
  a copier for copying security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model;
  
  extractor for extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  means for either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (92, 93, 94, 95, 96)
- - 92. An information processing system for securing content and meta data as claimed in claim 91 wherein said extractor operates on each said root, branch and leaf components of said security safe document.
  - 93. An information processing system as claimed in claim 91 wherein said means for excluding security introns operates concurrently with said security safe document and copier for said security exons.
  - 94. An information processing system as claimed in claim 91 wherein said means for storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes a supplemental mapper for mapping said extracted data to said root, branch and leaf components of said security safe document.
  - 95. An information processing system as claimed in claim 92 wherein said means for excluding said security introns operates concurrently with said security safe document and said copier for said security exons.
  - 96. An information processing system as claimed in claim 95 wherein said means for storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes a supplemental mapper for mapping extracted data to said root, branch and leaf components of said security safe document.

97. An information processing system for securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said method operable on said data in said document in a computer system, comprising:
- a mapper for mapping said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  a security safe document formatted as a safe document object model;
  
  a copier for copying security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model, said safe document object model consisting of security exons and excluding security introns, and the respective associated content data and meta data relative thereto, which exons and introns being previously identified based upon predetermined informational attributes relative to said document object model;
  
  an extractor for extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  means for storing either the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (98, 99, 100, 101, 102)
- - 98. An information processing system as claimed in claim 97 wherein said extractor operates on each said root, branch and leaf components of said security safe document.
  - 99. An information processing system as claimed in claim 97 wherein said means for excluding said security introns operates concurrently with said security safe document and said copier of said security exons.
  - 100. An information processing system as claimed in claim 97 wherein said means for storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes a supplemental mapper for mapping extracted data to said root, branch and leaf components of said security safe document.
  - 101. An information processing system as claimed in claim 98 wherein said means for excluding said security introns operates concurrently with said security safe document and said copier for said security exons.
  - 102. An information processing system as claimed in claim 101 wherein said means for storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes a supplemental mapper for mapping extracted data to said root, branch and leaf components of said security safe document.

103. An information processing system for securing content data and meta data contained in a document formatted as a document object model, said document having one or more security sensitive words, characters or data objects, said security sensitive words, characters or data objects grouped into subsets corresponding to respective ones of a plurality of security levels without regard to said document, said document object model having a blueprint and root, branch and leaf components, said safe document object model consisting of security exons and excluding security introns, and the respective associated content data and meta data relative thereto, said exons and introns being identified based upon predetermined informational attributes relative to said document object model, said method operable on said data in said document in a computer system, comprising:
- a mapper for mapping said root, branch and leaf components of said document as binary files populated with content data and meta data representing subsets of said document object model blueprint;
  
  a security safe document formatted as a safe document object model;
  
  a copier for copying said security exons from said content data and meta data binary files into said security safe document formatted as said safe document object model;
  
  extractor for extracting said security sensitive words, characters or data objects from the copied content data and meta data; and
  
  means for either storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data based upon security levels unique to each partial version.
- View Dependent Claims (104, 105, 106, 107, 108)
- - 104. An information processing system as claimed in claim 103 wherein said extractor operates on each said root, branch and leaf components of said security safe document.
  - 105. An information processing system as claimed in claim 103 wherein said security safe document is used concurrently with said copier for said security exons.
  - 106. An information processing system as claimed in claim 103 wherein said means for storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes mapping extracted data to said root, branch and leaf components of said security safe document.
  - 107. An information processing system as claimed in claim 104 wherein said security safe document is employed by said copier for said security exons.
  - 108. An information processing system as claimed in claim 107 wherein said means for storing the extracted data separately from remainder data or storing partial versions of said extracted data with said remainder data includes a supplemental mapper for mapping extracted data to said root, branch and leaf components of said security safe document.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
DigitalDoors, Inc.
Original Assignee
DigitalDoors, Inc.
Inventors
Nemzow, Martin A., Redlich, Ron M.

Granted Patent

US 8,176,563 B2
Time in Patent Office

Days
Field of Search
US Class Current

709/228
CPC Class Codes

G06F 21/6209 to a single file or object,...

G06F 2221/2113 Multi-level security, e.g. ...

Data security system and method with editor

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

1714 Citations

108 Claims

Specification

Solutions

Use Cases

Quick Links

Data security system and method with editor

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

1714 Citations

108 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links