Providing Security for Queries to Electronic Product Code Information Services
First Claim
1. A computer-implemented method for protecting data residing in a repository of an electronic product code information service against undesired data disclosure, the method comprising:
- defining one or more disclosure policies for an item tagged with an electronic product code, the item having associated data stored in the repository, the one or more disclosure policies describing one or more of;
who is permitted to query the repository for information, what type of information is permitted to be obtained from the repository in response to a query, and under what condition the repository can be queried; and
enforcing the one or more disclosure policies in response to a received query from a party by only disclosing a subset of the data from the repository, the subset being determined in accordance with the defined one or more disclosure policies.
8 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus, including computer program products, implementing and using techniques for protecting data residing in a repository of an electronic product code information service against undesired data disclosure. One or more disclosure policies are defined for an item tagged with an electronic product code. The item has associated data stored in the repository. The disclosure policies describe one or more of: who is permitted to query the repository for information, what type of information is permitted to be obtained from the repository in response to a query, and under what condition the repository can be queried. The disclosure policies are enforced in response to a received query from a party by only disclosing a subset of the data from the repository, the subset being determined in accordance with the defined one or more disclosure policies. A web-based tool for defining disclosure policies is also described.
77 Citations
20 Claims
-
1. A computer-implemented method for protecting data residing in a repository of an electronic product code information service against undesired data disclosure, the method comprising:
-
defining one or more disclosure policies for an item tagged with an electronic product code, the item having associated data stored in the repository, the one or more disclosure policies describing one or more of;
who is permitted to query the repository for information, what type of information is permitted to be obtained from the repository in response to a query, and under what condition the repository can be queried; andenforcing the one or more disclosure policies in response to a received query from a party by only disclosing a subset of the data from the repository, the subset being determined in accordance with the defined one or more disclosure policies. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer program product for protecting data residing in a repository of an electronic product code information service against undesired data disclosure, comprising a computer useable medium including a computer readable program, wherein the computer readable program when executed on a computer causes the computer to:
-
define one or more disclosure policies for an item tagged with an electronic product code, the item having associated data stored in the repository, the one or more disclosure policies describing one or more of;
who is permitted to query the repository for information, what type of information is permitted to be obtained from the repository in response to a query, and under what condition the repository can be queried; andenforce the one or more disclosure policies in response to a received query from a party by only disclosing a subset of the data from the repository, the subset being determined in accordance with the defined one or more disclosure policies. - View Dependent Claims (11, 12)
-
-
13. A computer program product for defining disclosure policies for data residing in a repository of an electronic product code information service, comprising a computer useable medium including a computer readable program, wherein the computer readable program when executed on a computer causes the computer to:
-
present a user interface through which a user can define one or more disclosure policies for the data residing in the repository; receive user input defining the one or more disclosure policies; and apply the defined disclosure policies to the data residing in the repository. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification