Secure document management system

US 6,978,366 B1
Filed: 10/17/2000
Issued: 12/20/2005
Est. Priority Date: 11/01/1999
Status: Active Grant

First Claim

Patent Images

1. Apparatus for secure management of data in a computer controlled storage system comprising:

a trusted data management server (tdm server), responsive to a user or user program application, capable of storing data in and retrieving data from a storage system that comprises;

security structure generator means to generate the following security management structures;

a unique identifier for said data;

access control information for said data;

a data signature for authenticating said data from said data and said unique identifier; and

an access control information signature for authenticating said access control information from said access control information and said unique identifier.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention provides a method and apparatus for secure management of data in a computer controlled storage system. The system includes a trusted data management server (tdm server), responsive to a user or user program application, for storing data in and retrieving data from a storage system. The tdm server includes a security structure generator to generate the following security management structures: an unique identifier for the data; access control information for the data; a data signature for authenticating the data from the data and the unique identifier; and an access control information signature for authenticating the access control information from the access control information and the unique identifier.

Citations

20 Claims

1. Apparatus for secure management of data in a computer controlled storage system comprising:
- a trusted data management server (tdm server), responsive to a user or user program application, capable of storing data in and retrieving data from a storage system that comprises;
  
  security structure generator means to generate the following security management structures;
  
  a unique identifier for said data;
  
  access control information for said data;
  
  a data signature for authenticating said data from said data and said unique identifier; and
  
  an access control information signature for authenticating said access control information from said access control information and said unique identifier.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 18)
- - 2. The apparatus of claim 1 further comprising:
    - encryption means for encrypting;
      
      said data; and
      
      said access control information, when required by said tdm server.
  - 3. The apparatus of claim 2 wherein said encryption means is adapted to encrypt said data and said access control information.
  - 4. The apparatus of claim 2 further comprising:
    - storage control means for causing said storage system to store said security management structures and said data.
  - 5. The apparatus of claim 4 wherein said data is stored in encrypted form.
  - 6. The apparatus of claim 5 further comprising:
    - access control means for accessing said data stored in said storage system with said unique identifier.
  - 7. The apparatus of claim 6 wherein said access control means comprises:
    - means responsive to a request from a user for accessing secured data from said storage system, adapted to;
      
      retrieve a unique identifier for said data from said user or storage system;
      
      retrieve from said storage system said security management structures corresponding to said data; and
      
      carry out the following determination steps;
      
      determine if said access control information and unique identifier correspond with said access control information signature;
      
      determine if said data and its unique identifier correspond with said data signature;
      
      determine if said unique identifier of said access control information corresponds with said unique identifier of said secured data; and
      
      determine whether said access control information permits said user to access said secured data; and
      
      den grant access to said user to said data if each of said determination steps is satisfied, and otherwise refuse access.
  - 8. The apparatus of claim 7 wherein said access control means further includes means to notify said user if access is refused.
  - 18. Computer readable storage means for storing instructions for use in the execution in a computer system for causing the computer system to effect the apparatus of claim 1.

9. A method for secure management of data in a computer controlled storage system comprising:
- in a trusted data management server (tdm server), responsive to a user or user program application, for storing data in and retrieving data from a storage system generating the following security management structures;
  
  a unique identifier for said data;
  
  access control information for said data;
  
  a data signature for authenticating said data from said data and said unique identifier; and
  
  an access control information signature for authenticating said access control information from said access control information and said unique identifier.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 19)
- - 10. The method of claim 9 further comprising:
    - encrypting said data, or said access control information.
  - 11. The method of claim 10 comprising encrypting said data and said access control information.
  - 12. The method of claim 10 further comprising:
    - causing said storage system to store said security management structures and said data.
  - 13. The method of claim 12 wherein said data is stored encrypted.
  - 14. The method of claim 13 further comprising:
    - accessing said data stored in said storage with said unique identifier.
  - 15. The method of claim 13 responsive to a request from a user for accessing data from said storage system, retrieving a unique identifier for said data from said user or database storage;
    - retrieve from said storage system said security management structures corresponding to said secured data; and
      
      carrying out the following determination steps;
      
      determine if said access control information and its unique identifier correspond with said access control information signature;
      
      determine if said secured data and its unique identifier correspond with said data signature;
      
      determine if said unique identifier of said access control information corresponds with said secured data; and
      
      determine whether said access control information permits said user to access said secured data; and
      
      then granting access to said user to said data if each of said determination steps is satisfied, and otherwise refusing access.
  - 16. The method of claim 15 including notifying said user if access is refused.
  - 17. Computer readable storage means for storing instructions for use in the execution in a computer system of the method of claim 10.
  - 19. An article of manufacture comprising a computer usable medium having computer readable program code means embodied therein for causing secure management of data in a computer controlled storage system, the computer readable program code means in said article of manufacture comprising computer readable program code means for causing a computer to effect the steps of claim 9.

20. A method for storing a document in a secure storage system comprising the steps of:
- submitting the document for secure storage;
  
  generating a random number at a trusted document management server;
  
  requesting a database management system to reserve the generated random number as a document key;
  
  computing a digital document signature at the trusted document management server, wherein the document signature is capable of authenticating document content and the document key;
  
  creating an initial access control list (ACL) at the trusted document management server;
  
  computing a digital ACL signature at the trusted document management sever, wherein the ACL signature is capable of authenticating ACL content and the document key; and
  
  instructing the database management system to store the document, the document signature, the ACL and the ACL signature.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Ignatchenko, Sergey, Tantsorov, Igor L., Mirlas, Lev
Primary Examiner(s)
Barron, Jr., Gilberto
Assistant Examiner(s)
Ungar, Daniel M.

Application Number

US09/690,249
Time in Patent Office

1,890 Days
Field of Search

713/166, 713/165, 713/167, 713/193, 711/163
US Class Current

713/166
CPC Class Codes

G06F 21/6218 to a system of files or obj...

Secure document management system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Secure document management system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links