Integrated method and system for controlling information access and distribution
First Claim
1. A distributed content entity embodied in a computer-readable medium, comprising:
- an information entity;
a protection specification;
wherein the protection specification includes information for controlling use of the information entity, the protection specification and the information entity are associated, and the protection specification is distributed with the information entity; and
an identifier for identifying at least one of a protection model and an information model.
3 Assignments
0 Petitions
Accused Products
Abstract
A distributed content entity includes a protection specification and an information entity, in which the protection specification and the information entity are attached and transported together. The protection specification includes information for controlling the use of the information entity. A framework generates the distributed content entity, in which the framework includes a protection specification unit storing the protection specification and including an access control enforcement manager and an enhanced access control enforcement manager; an information unit for storing the protected information entity; and an access checking unit connected to the protection specification unit and the information unit. The access checking unit checks whether a user has a privilege to access the protected information entity based on the protection specification and the access control manager, and checks whether the requested access meets conditions determined based on the protection specification and enforced by the enhanced access control manager. An example of the enhanced access control manager is a terms and conditions enforcement manager for enforcing the terms and conditions of an agreement relating to permitted uses of the protected information entity.
562 Citations
66 Claims
-
1. A distributed content entity embodied in a computer-readable medium, comprising:
-
an information entity; a protection specification; wherein the protection specification includes information for controlling use of the information entity, the protection specification and the information entity are associated, and the protection specification is distributed with the information entity; and an identifier for identifying at least one of a protection model and an information model. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 29)
-
-
12. A framework for protecting a distributed content entity, the distributed content entity including a protection specification and an information entity, the framework comprising:
-
a protection specification unit storing the protection specification; an information unit for storing the information entity, wherein the information unit is in a distributed arrangement with the protection specification unit; and an access checking unit connected to the protection specification unit and the information unit, wherein the access checking unit checks whether a user has a privilege to access the information entity based on the protection specification, checks whether the requested access meets conditions determined based on the protection specification, combines the information entity and the protection specification into a distributed content entity and sends the distributed content entity to a user, and wherein the protection specification includes one or more information items for controlling use of the information entity. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 30, 31, 32, 33)
-
-
34. An apparatus for generating a distributed content entity including a protection specification and an information entity, the protection specification containing information for controlling use of the information entity, the apparatus comprising:
-
a protection specification unit storing the protection specification; an information unit for storing the information entity, wherein the information unit is in a distributed arrangement with the protection specification unit; and an access checking unit connected to the protection specification unit and the information unit, wherein the access checking unit combines the information entity from the information unit with the protection specification from the protection specification unit to form the distributed content entity for distribution. - View Dependent Claims (35, 36, 37, 38, 39, 40, 41, 42, 43)
-
-
44. A method for transmitting a protected information entity, comprising:
-
generating a distributed content entity by combining the protected information entity with a protection specification containing information for controlling use of the protected information entity, and an identifier for identifying at least one of a protection model and an information model; and transmitting the distributed content entity. - View Dependent Claims (45, 46, 47, 48, 49, 50)
-
-
51. A program product, embodied on a computer-readable medium, for protecting a distributed content entity which includes an information entity and a protection specification containing information for controlling use of the information entity, wherein the protection specification is for distribution with the information entity, the program product comprising:
-
a protection specification code means for storing the protection specification; an information code means for storing the information entity, wherein the information code means is in a distributed arrangement with the protection specification code means; and an access checking unit code means for checking whether a user has a privilege to access the information entity based on the protection specification, and for checking whether the requested access meets conditions determined based on the protection specification. - View Dependent Claims (52, 53, 54, 55, 56, 57, 58, 59)
-
-
60. An apparatus for receiving a distributed content entity including a protection specification associated with an information entity, the protection specification containing information for controlling use of the information entity, the apparatus comprising:
-
an access checking unit receiving the distributed content entity; and an information unit connected to the access checking unit and storing the information entity, wherein the protection specification is in a distributed relation with the information unit, and wherein the access checking unit records the information entity in the information unit, and controls use of the information entity based on the protection specification.
-
-
61. A method for receiving a distributed content entity including a protection specification associated with an information entity and an identifier for identifying at least one of a protection model and an information model, the protection specification containing information for controlling use of the information entity, the method comprising:
-
receiving the distributed content entity; and controlling use of the information entity based on the protection specification and the identifier, wherein the protection specification is in a distributed relation with the information entity. - View Dependent Claims (62, 63, 64, 65, 66)
-
Specification