Policy enforcement in a secure data file delivery system
First Claim
1. A computer readable medium useful in association with a computer which includes a processor and a memory, the computer readable medium being non-transitory and including computer instructions which are configured to cause the computer to assure adherence to a policy by a package to be delivered from a sender associated with an enterprise to one or more recipients through a computer network by:
- responsive to receipt of package data which is generated by the sender and which specifies the package, applying a policy to the package wherein the policy is specified by policy data received from a policy authority of the sender, the policy authority including a rule base associated with the sender enterprise;
determining whether the policy permits delivery of the package; and
upon a condition in which the policy permits delivery of the package, delivering the package by;
sending notification to the recipients wherein the notification includes package identification data; and
responsive to receipt of the package identification data from a particular one of the recipients, providing the particular recipient with access to the package.
2 Assignments
0 Petitions
Accused Products
Abstract
A server interacts with a sender to form a package which can include one or more attached data files to be sent to one or more recipients, and the server applies a policy established by a policy authority of the sender to the package. Since the sever both forms the package through interaction with the sender and applies the policy, any violations of the policy by the package can be brought to the sender'"'"'s attention during an interactive session with the sender and before encryption of all or part of the package. As a result, the sender is educated regarding the policy of the sender'"'"'s policy authority, and the sender can modify the package immediately to comport with the policy. The server delivers the package to the one or more intended recipients by sending notification to each recipient and including in such notification package identification data, e.g., a URL by which the package can be retrieved. The policy of the policy authority can be specified as a list of associations between one or more conditions and one or more actions to be carried out upon satisfaction of the associated conditions.
-
Citations
27 Claims
-
1. A computer readable medium useful in association with a computer which includes a processor and a memory, the computer readable medium being non-transitory and including computer instructions which are configured to cause the computer to assure adherence to a policy by a package to be delivered from a sender associated with an enterprise to one or more recipients through a computer network by:
-
responsive to receipt of package data which is generated by the sender and which specifies the package, applying a policy to the package wherein the policy is specified by policy data received from a policy authority of the sender, the policy authority including a rule base associated with the sender enterprise; determining whether the policy permits delivery of the package; and upon a condition in which the policy permits delivery of the package, delivering the package by; sending notification to the recipients wherein the notification includes package identification data; and responsive to receipt of the package identification data from a particular one of the recipients, providing the particular recipient with access to the package. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
-
Specification