Secure access of electronic documents and data from client terminal
First Claim
Patent Images
1. A system for secure access of electronic data, said system comprising:
- a document database;
a management service configured to manage access to the document database and receive user credential information and receive a document retrieval request through a network, perform user authentication by using the user credential information, and if said user credential information was authenticated, transmit, in response to said document retrieval request, an authorization key and a pointer indicating a physical address of a requested document in said document database;
a multi-function apparatus shared by a plurality of users and configured for secure access of electronic data corresponding to electronic documents in the document database, the multi-function apparatus including;
a user interface including a touch screen display to display user interface screens provided for each authorized user amongst the plurality of users, upon login and authentication of the authorized user, to request retrieval of an electronic document stored in the document database, to request a print operation to print the retrieved document locally, to request a scan operation to scan an input document locally, and to upload one or more scanned document images to the document database;
a scanner engine including hardware to scan a hard copy of the input document and generate a document image from the scanned document, to perform the scan operation, and upload the document image to the document database after receiving the upload instruction from the user via the user interface locally;
a database management part configured to retrieve specified data from the document database, the database management part being separated by at least a network from the management service that manages access to the document database, each of the network, the management service and the document database being external to the multi-function apparatus;
a document request part configured to transmit user credential information and transmit the document retrieval request by the user through the network to the management service;
an authorization processing part configured to (i) intercept from said management service, in a case that said user credential information is authenticated by said management service, an authorization key and a pointer indicating a physical address of a requested document in said document database, and (ii) automatically transmit to the database management part, user authentication information, said pointer, said authorization key and a specified request to retrieve the requested document;
a printer engine including hardware to perform a print operation by printing a hard copy of the retrieved document retrieved from the document database after receiving the print instruction from the user via the user interface locally; and
a data monitor part that monitors for access events of accesses of electronic documents stored, or to store, in said document database, and when an access of a specific document stored, or to store, in said document database occurs, the data monitor part captures access event metadata corresponding to the access of the specific document and transmits the access event metadata through the network to the management service, to cause the management service to update, based on the access event metadata corresponding to the access of the specific document, a metadata record maintained for the specific document,wherein the access event metadata corresponding to the access of the specific document and transmitted by said data monitor part to the management service includes a hyperlink to the specific document after the access,wherein image data corresponding to the scan operation and the print operation and metadata maintained for said image data are stored in the document database and are retrievable from the document database upon user authentication performed on the user interface by a user who has access to said image data and said metadata, andwherein said database management part compares the user authentication information and the authorization key with access credentials associated with the requested document, and if the specified request to retrieve the requested document is authenticated based on the comparison, said database management part retrieves from said document database the requested document indicated by the pointer and transmits the retrieved document to said document request part.
1 Assignment
0 Petitions
Accused Products
Abstract
An improved approach for secure access of electronic documents and data is provided.
20 Citations
9 Claims
-
1. A system for secure access of electronic data, said system comprising:
-
a document database; a management service configured to manage access to the document database and receive user credential information and receive a document retrieval request through a network, perform user authentication by using the user credential information, and if said user credential information was authenticated, transmit, in response to said document retrieval request, an authorization key and a pointer indicating a physical address of a requested document in said document database; a multi-function apparatus shared by a plurality of users and configured for secure access of electronic data corresponding to electronic documents in the document database, the multi-function apparatus including; a user interface including a touch screen display to display user interface screens provided for each authorized user amongst the plurality of users, upon login and authentication of the authorized user, to request retrieval of an electronic document stored in the document database, to request a print operation to print the retrieved document locally, to request a scan operation to scan an input document locally, and to upload one or more scanned document images to the document database; a scanner engine including hardware to scan a hard copy of the input document and generate a document image from the scanned document, to perform the scan operation, and upload the document image to the document database after receiving the upload instruction from the user via the user interface locally; a database management part configured to retrieve specified data from the document database, the database management part being separated by at least a network from the management service that manages access to the document database, each of the network, the management service and the document database being external to the multi-function apparatus; a document request part configured to transmit user credential information and transmit the document retrieval request by the user through the network to the management service; an authorization processing part configured to (i) intercept from said management service, in a case that said user credential information is authenticated by said management service, an authorization key and a pointer indicating a physical address of a requested document in said document database, and (ii) automatically transmit to the database management part, user authentication information, said pointer, said authorization key and a specified request to retrieve the requested document; a printer engine including hardware to perform a print operation by printing a hard copy of the retrieved document retrieved from the document database after receiving the print instruction from the user via the user interface locally; and a data monitor part that monitors for access events of accesses of electronic documents stored, or to store, in said document database, and when an access of a specific document stored, or to store, in said document database occurs, the data monitor part captures access event metadata corresponding to the access of the specific document and transmits the access event metadata through the network to the management service, to cause the management service to update, based on the access event metadata corresponding to the access of the specific document, a metadata record maintained for the specific document, wherein the access event metadata corresponding to the access of the specific document and transmitted by said data monitor part to the management service includes a hyperlink to the specific document after the access, wherein image data corresponding to the scan operation and the print operation and metadata maintained for said image data are stored in the document database and are retrievable from the document database upon user authentication performed on the user interface by a user who has access to said image data and said metadata, and wherein said database management part compares the user authentication information and the authorization key with access credentials associated with the requested document, and if the specified request to retrieve the requested document is authenticated based on the comparison, said database management part retrieves from said document database the requested document indicated by the pointer and transmits the retrieved document to said document request part. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeRicoh Americas Corporation (Ricoh Company Limited), Ricoh Company Limited
-
Original AssigneeRicoh Americas Corporation (Ricoh Company Limited), Ricoh Company Limited
-
InventorsUchida, Yuki, Yoon, Chin, Harrison, James
-
Primary Examiner(s)GEORGANDELLIS, ANDREW C
-
Application NumberUS12/251,880Publication NumberTime in Patent Office2,610 DaysField of Search726/4US Class Current1/1CPC Class CodesG06F 16/93 Document management systemsG06F 21/6227 where protection concerns t...H04L 63/08 for authentication of entit...H04L 63/10 for controlling access to d...H04L 9/32 including means for verifyi...
