Multiple user stored data cryptographic labeling system and method
First Claim
Patent Images
1. A method of cryptographically labeling a data file of electronically stored data comprising the steps of:
- generating a file label comprising a first field containing control variables for encrypting and decrypting said data file;
generating at least one other field of said label, said field having portions to identify individual users and portions to identify the rights unique to each said user;
prefixing said label to the file;
encrypting the file in accordance with the control variables in said first field; and
allowing access to said file for any user only in accordance with said rights preidentified in a field of said file identified with said user.
3 Assignments
0 Petitions
Accused Products
Abstract
There is disclosed a system and method of extending the labels on an encryption technique so that different users can utilize the same files under different rights established by both the user and the system administrator. This system and method take advantage of an extension of the file label which contains configuration capabilities and user rights and privileges to that file. The extended labeling is expandable so that several users can each be identified having specific rights and specific encryption capability with respect to the file.
-
Citations
19 Claims
-
1. A method of cryptographically labeling a data file of electronically stored data comprising the steps of:
-
generating a file label comprising a first field containing control variables for encrypting and decrypting said data file; generating at least one other field of said label, said field having portions to identify individual users and portions to identify the rights unique to each said user; prefixing said label to the file; encrypting the file in accordance with the control variables in said first field; and allowing access to said file for any user only in accordance with said rights preidentified in a field of said file identified with said user. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system for cryptographically labeling a data file of electronically stored data comprising:
-
means for generating a file label comprising a first field containing control variables for encrypting and decrypting said data file; means for generating at least one other field of said label, said field having portions to identify individual users and portions to identify the rights unique to each said user; means for prefixing said label to the file; means for encrypting the file in accordance with the control variables in said first field; and means for allowing access to said file for any user only in accordance with said rights preidentified in a field of said file identified with said user. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A system for encryption of a data file, said system comprising:
-
means for generating a label for storage with each said data file; said label having an expandable field for controlling encryption and decryption of data to and from said file, said expandable field including; at least one user identification portion and a user rights portion associated with each said user identification portion;
said user rights portion created under control of said user; anda user privileges portion associated with each said user;
said user privileges portion created independent of said user. - View Dependent Claims (14)
-
-
15. A security system for use with data processing systems where labels are associated with each data file, said system including:
-
means for establishing in a field of each said label, on a data file by data file basis, a unique identification of the encryption/decryption technique to be used with said file; means for encrypting and decrypting a particular data file in accordance with the encryption/decryption technique specified in said label associated with said data file; and means for controlling said established field by a creator of said data file.
-
-
16. A computer system including a CPU and a memory having files stored therein and accessible by at least one user, said system including an arrangement for controlling access to said files, said arrangement including cryptographically labeling a file of electronically stored data comprising:
-
means for generating a file label comprising a first field containing control variables for encrypting and decrypting said file; means for generating at least one other field of said label, said field having portions to identify individual users and portions to identify the rights unique to each said user; means for prefixing said label to the file; means for encrypting the file in accordance with the control variables in said first field; and means for allowing access to said file for any user only in accordance with said rights preidentified in a field of said file identified with said user. - View Dependent Claims (17, 18, 19)
-
Specification