System and method for sharing investigation results
First Claim
1. A computer-implemented method, comprising:
- storing first graph state information representing a pre-redacted graph having nodes and edges;
wherein the pre-redacted graph represents results of a first user'"'"'s investigation involving a plurality of data objects and links therebetween;
wherein a particular edge of the pre-redacted graph corresponds to a particular link connecting a first data object of the plurality of data objects with a second data object of the plurality of data objects;
wherein the plurality of data objects and the links therebetween are associated with access control lists governing access to the data objects and the links;
causing, based on the first graph state information, a visualization of the pre-redacted graph to be displayed on a video display;
receiving, based on user input from the first user, information that identifies a set of target users;
in response to receiving the information that identifies the set of target users, automatically determining a common access control level of the set of target users;
after causing the visualization of the pre-redacted graph to be displayed, automatically generating, based at least in part on the common access control level and the access control lists, second graph state information representing a redacted graph having one or more nodes or edges of the pre-redacted graph redacted;
causing, based on the second graph state information, a visualization of the redacted graph to be displayed on the video display;
wherein the visualization of the redacted graph indicates the one or more nodes or edges of the pre-redacted graph that were redacted;
after causing the visualization of the redacted graph to be displayed on the video display and responsive to receiving an indication of acceptance by the first user of the redacted graph, publishing the second graph state information to a graph repository;
wherein the method is performed by one or more computing devices.
8 Assignments
0 Petitions
Accused Products
Abstract
A computer-based investigative analysis system is disclosed in which a user can share results of an investigation with other users in a way that allows the sharing user to visualize how the results will be shared before they are shared. The results are shared in the form of a visual graph having nodes, edges, and other presentation elements. The nodes represent data objects that are the subject of the investigation and the edges represent connections between the data objects. The graph is shared in the form of an automatically generated redacted graph omitting nodes, edges, and presentation elements for which the other users do not have permission to view. Before sharing the graph, the sharing user is presented with a visualization of the automatically generated redacted graph providing the user an opportunity to confirm that sharing the redacted graph will not constitute an unauthorized information leakage.
-
Citations
11 Claims
-
1. A computer-implemented method, comprising:
-
storing first graph state information representing a pre-redacted graph having nodes and edges; wherein the pre-redacted graph represents results of a first user'"'"'s investigation involving a plurality of data objects and links therebetween; wherein a particular edge of the pre-redacted graph corresponds to a particular link connecting a first data object of the plurality of data objects with a second data object of the plurality of data objects; wherein the plurality of data objects and the links therebetween are associated with access control lists governing access to the data objects and the links; causing, based on the first graph state information, a visualization of the pre-redacted graph to be displayed on a video display; receiving, based on user input from the first user, information that identifies a set of target users; in response to receiving the information that identifies the set of target users, automatically determining a common access control level of the set of target users; after causing the visualization of the pre-redacted graph to be displayed, automatically generating, based at least in part on the common access control level and the access control lists, second graph state information representing a redacted graph having one or more nodes or edges of the pre-redacted graph redacted; causing, based on the second graph state information, a visualization of the redacted graph to be displayed on the video display; wherein the visualization of the redacted graph indicates the one or more nodes or edges of the pre-redacted graph that were redacted; after causing the visualization of the redacted graph to be displayed on the video display and responsive to receiving an indication of acceptance by the first user of the redacted graph, publishing the second graph state information to a graph repository; wherein the method is performed by one or more computing devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
Specification