METHOD, COMPONENTS AND SYSTEM FOR TRACKING AND CONTROLLING END USER PRIVACY

US 20070271379A1
Filed: 05/17/2007
Published: 11/22/2007
Est. Priority Date: 05/17/2006
Status: Active Grant

First Claim

Patent Images

1. A method of controlling the use and communication of User Data in a network, the method comprising:

maintaining in connection with a Privacy Service (PS), a policy for User Data related to one or more of an End User identity element, a User Data trust element, User Data usage rights element and User Data security element for use or communication of the User Data;

in connection with a communication of the User Data from a sending node to a receiving node, receiving information by the PS related to attributes of the communication related to at least one of the Application, Context or Time of the communication;

updating the policy for the User Data based on the received information; and

controlling the communication and use of the User data based on the updated policy for the User Data.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A privacy service is provided for use in protection of user data transferred in a network, including a converged network. The privacy service extracts and measures service elements of a message containing user data. The service elements include an identity element, a trust element, a rights element and a security element. The privacy service performs security by comparing service elements with a user defined privacy policy. The privacy policy may also be based on particular factors relating to the application, context, and time of the message. In another embodiment, the privacy service provides controls that indicate when user data is misappropriated as a result of an infringement of the user defined privacy policy. Further the privacy service provides a means to audit and trace deviations from the privacy policy for the purpose of repudiation, or future defense of security threats.

61 Citations

View as Search Results

41 Claims

1. A method of controlling the use and communication of User Data in a network, the method comprising:
- maintaining in connection with a Privacy Service (PS), a policy for User Data related to one or more of an End User identity element, a User Data trust element, User Data usage rights element and User Data security element for use or communication of the User Data;
  
  in connection with a communication of the User Data from a sending node to a receiving node, receiving information by the PS related to attributes of the communication related to at least one of the Application, Context or Time of the communication;
  
  updating the policy for the User Data based on the received information; and
  
  controlling the communication and use of the User data based on the updated policy for the User Data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 2. The method of claim 1 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data includes the sending of control information by the PS.
  - 3. The method of claim 1 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data includes controlling the exposure of an End User'"'"'s identity identified with the User Data.
  - 4. The method of claim 1 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data includes providing an indication of the trustworthiness of the User Data in connection with the communication of the user Data.
  - 5. The method of claim 1 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data defining a set of rights for usage of the User Data by the receiving node following the communication of the User Data.
  - 6. The method of claim 1 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data includes controlling the security of the transmission and access to the User Data in connection with the communication of user data.
  - 7. The method of claim 6 wherein the controlling of security includes at least one of controlling a communication encryption level, User Data password protection, and a site key.
  - 8. The method of claim 1 wherein the maintaining a policy for User Data includes maintaining a policy related to an End User identity element, a User Data trust element, a User Data usage rights element and a User Data security element for use or communication of the User Data.
  - 9. The method of claim 8 wherein the receiving information by the PS related to attributes of the communication includes receiving information related to the Application, Context and Time of the communication.
  - 10. The method of claim 8 further comprising measuring by the PS metrics related to the End User identity element, the User Data trust element, the User Data usage rights element and the User Data security element for use or communication of the User Data in connection with the communication of the User Data and using the measurement in connection with maintaining the policy and controlling the User Data.
  - 11. The method of claim 8 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data includes the sending of control information by the PS.
  - 12. The method of claim 8 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data includes controlling the exposure of an End User'"'"'s identity identified with the User Data.
  - 13. The method of claim 8 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data includes providing an indication of the trustworthiness of the User Data in connection with the communication of the user Data.
  - 14. The method of claim 8 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data defining a set of rights for usage of the User Data by the receiving node following the communication of the User Data.
  - 15. The method of claim 8 wherein the controlling the communication and use of the User Data based on the updated policy for the User Data includes controlling the security of the transmission and access to the User Data in connection with the communication of user data.
  - 16. The method of claim 15 wherein the controlling of security includes at least one of controlling a communication encryption level, User Data password protection, and a site key.
  - 17. The method of claim 10 further comprising using the PS metrics to provide policy deviation indications to an End User and wherein the controlling the communication and use of the User data based on the updated policy for the User Data includes the sending of control information by the PS including policy control information originating from the End User based on the policy deviation metrics.
  - 18. The method of claim 10 further comprising tracking the PS metrics and determining a selected policy manifold metric based on selected PS metrics accumulated or a selected time period whereby the policy manifold metric provides an overall privacy indication with respect to the User Data and selected time period upon which the selected PS metrics are based.
  - 19. The method of claim 1 where the PS is implemented in a wireless communication device for a user of the communication devise as a network node and wherein the controlling the communication and use of the User data based on the updated policy for the User Data includes the sending of control information by the PS via a wireless interface.
  - 20. The method of claim 1 where the PS is implemented in a network component that is separate from a communication device used by an End User of the PS, further comprising communicating with the communication device by the End User to establish or modify the policy for the User Data.

21. A Privacy Server (PS) configured to control the use and communication of User Data in a network comprising:
- a component configured to maintain a policy for User Data related to one or more of an End User identity element, a User Data trust element, User Data usage rights element and User Data security element for use or communication of the User Data;
  
  a component configured receive information related to attributes of to a communication of the User Data from a sending node to a receiving, the attributes related to at least one of the Application, Context or Time of the communication;
  
  a component configured to update the policy for the User Data based on the received information; and
  
  a component configured to send information to control the communication and use of the User Data based on the updated policy for the User Data.
- View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41)
- - 22. The PS claim 21 wherein PS components are implemented in a single device for configured to serve a single policy setting End User.
  - 23. The PS of claim 21 wherein component configured to send information to control the communication and use of the User Data is configured to send information to control the exposure of an End User'"'"'s identity identified with the User Data.
  - 24. The PS of claim 21 wherein component configured to send information to control the communication and use of the User Data is configured to send information providing an indication of the trustworthiness of the User Data in connection with the communication of the user Data.
  - 25. The PS of claim 21 wherein component configured to send information to control the communication and use of the User Data is configured to send information to define a set of rights for usage of the User Data by the receiving node following the communication of the User Data.
  - 26. The PS of claim 21 wherein component configured to send information to control the communication and use of the User Data is configured to send information to control the security of the transmission and access to the User Data in connection with the communication of user data.
  - 27. The PS of claim 26 wherein component configured to send information to control the communication and use of the User Data is configured to send information to control at least one of a communication encryption level, User Data password protection, and a site key.
  - 28. The PS of claim 21 wherein the component configured to maintain the policy for User Data is configured to maintain a policy related to an End User identity element, a User Data trust element, a User Data usage rights element and a User Data security element for use or communication of the User Data.
  - 29. The PS of claim 28 wherein component configured to receive information related to attributes of the communication is configured to receive information related to the Application, Context and Time of the communication.
  - 30. The PS of claim 28 further comprising a component configured to measure metrics related to the End User identity element, the User Data trust element, the User Data usage rights element and the User Data security element for use or communication of the User Data in connection with the communication of the User Data and wherein the component configured to maintain the policy is configured to use the measurements to maintain the policy and to generate information to control the User Data.
  - 31. The PS of claim 30 wherein the PS components are implemented in a single device for configured to serve a single policy setting End User.
  - 32. The PS of claim 28 wherein component configured to send information to control the communication and use of the User Data is configured to send information to control the exposure of an End User'"'"'s identity identified with the User Data.
  - 33. The PS of claim 28 wherein component configured to send information to control the communication and use of the User Data is configured to send information providing an indication of the trustworthiness of the User Data in connection with the communication of the user Data.
  - 34. The PS of claim 28 wherein component configured to send information to control the communication and use of the User Data is configured to send information to define a set of rights for usage of the User Data by the receiving node following the communication of the User Data.
  - 35. The PS of claim 28 wherein component configured to send information to control the communication and use of the User Data is configured to send information to control the security of the transmission and access to the User Data in connection with the communication of user data.
  - 36. The PS of claim 35 wherein component configured to send information to control the communication and use of the User Data is configured to send information to control at least one of a communication encryption level, User Data password protection, and a site key.
  - 37. The PS of claim 30 further comprising a component configured to use the PS metrics to provide policy deviation indications to an End User wherein component configured to send control information is configured to send control information that includes policy control information originating from the End User based on the policy deviation metrics.
  - 38. The PS of claim 30 further comprising a component configured to track the PS metrics and to determine a selected policy manifold metric based on selected PS metrics accumulated or a selected time period whereby determined policy manifold metrics provide an overall privacy indication with respect to the User Data and selected time period upon which the selected PS metrics are based.
  - 39. The PS of claim 21 implemented in a communication device configured for use as a network node by a user of the PS.
  - 40. The PS of claim 21 implemented in a wireless transmit receive unit (WTRU) configured for use as a network node by a user of the PS wherein the WTRU is configured to send the control information via a wireless interface.
  - 41. The PS of claim 21 where the PS is implemented in a network component that is separate from a communication device used by an End User of the PS, further comprising a component for communicating with the communication device used by the End User to establish or modify the policy for the User Data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Interdigital Technology Corporation (InterDigital, Inc.)
Original Assignee
Interdigital Technology Corporation (InterDigital, Inc.)
Inventors
Carlton, Alan, Menon, Narayan, Briancon, Alan

Granted Patent

US 7,877,494 B2
Time in Patent Office

Days
Field of Search
US Class Current

709/225
CPC Class Codes

G06F 21/6263 during internet communicati...

METHOD, COMPONENTS AND SYSTEM FOR TRACKING AND CONTROLLING END USER PRIVACY

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

61 Citations

41 Claims

Specification

Use Cases

Quick Links

Others

METHOD, COMPONENTS AND SYSTEM FOR TRACKING AND CONTROLLING END USER PRIVACY

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

61 Citations

41 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others