Document redaction with data retention

US 9,754,120 B2
Filed: 02/13/2015
Issued: 09/05/2017
Est. Priority Date: 02/13/2015
Status: Active Grant

First Claim

Patent Images

1. A method for redacting an electronic document (ED) having a file format, comprising:

obtaining a request to redact a sensitive data item in the ED, wherein the ED is compatible with a first version of rendering software and a second version of rendering software;

identifying a first instance and a second instance of the sensitive data item in a markup of the ED,wherein the first instance of the sensitive data item is configured for rendering by the first version but not the second version of the rendering software, andwherein the second instance of the sensitive data item is configured for rendering by the second version but not the first version of the rendering software; and

generating a redacted ED having the file format by;

replacing a first portion of the markup comprising the first instance of the sensitive data item with;

a first alternative content section comprising a tag specifying a neutral data item; and

a second alternative content section comprising a tag specifying an encrypted version of the sensitive data item,wherein the first version of rendering software generates a rendered version of the redacted ED comprising content from only one of the first alternative content section and the second alternative content section depending on user credentials; and

replacing a second portion of the markup comprising the second instance of the sensitive data item with the neutral data item.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for redacting an electronic document (ED) having a file format, including: obtaining a request to redact a sensitive data item in the ED; identifying a first instance and a second instance of the sensitive data item in a markup of the ED, where the second instance of the sensitive data item is not visible in a rendered version of the ED; and generating a redacted ED having the file format by: replacing the first instance of the sensitive data item and the second instance of the sensitive data item with a neutral data item, and inserting, into the markup, an encrypted version of the sensitive data item at a first location.

Citations

20 Claims

1. A method for redacting an electronic document (ED) having a file format, comprising:
- obtaining a request to redact a sensitive data item in the ED, wherein the ED is compatible with a first version of rendering software and a second version of rendering software;
  
  identifying a first instance and a second instance of the sensitive data item in a markup of the ED,wherein the first instance of the sensitive data item is configured for rendering by the first version but not the second version of the rendering software, andwherein the second instance of the sensitive data item is configured for rendering by the second version but not the first version of the rendering software; and
  
  generating a redacted ED having the file format by;
  
  replacing a first portion of the markup comprising the first instance of the sensitive data item with;
  
  a first alternative content section comprising a tag specifying a neutral data item; and
  
  a second alternative content section comprising a tag specifying an encrypted version of the sensitive data item,wherein the first version of rendering software generates a rendered version of the redacted ED comprising content from only one of the first alternative content section and the second alternative content section depending on user credentials; and
  
  replacing a second portion of the markup comprising the second instance of the sensitive data item with the neutral data item.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 18, 19)
- - 2. The method of claim 1, wherein the second portion is further replaced with the encrypted version of the sensitive data item.
  - 3. The method of claim 2, further comprising:
    - identifying a third instance of the sensitive data item in the markup of the ED,wherein generating the redacted ED further comprises;
      
      replacing a third portion of the markup comprising the third instance of the sensitive data item with the neutral data item and the encrypted version of the sensitive data item,wherein the first instance of the sensitive data item and the third instance of the sensitive data item are located in different files in the markup of the ED.
  - 4. The method of claim 1, further comprising:
    - identifying, during a search of the markup, a third instance of the sensitive data item;
      
      displaying a prompt based on the third instance;
      
      receiving, in response to the prompt, an instruction to not redact the third instance; and
      
      resuming the search without replacing the third instance based on the instruction.
  - 5. The method of claim 1, wherein generating the redacted ED further comprises:
    - creating a content extension section in the markup comprising the encrypted version of the sensitive data item.
  - 6. The method of claim 1, wherein the file format is Open Office XML (OOXML).
  - 7. The method of claim 1, wherein generating the redacted ED further comprises:
    - determining a bounding box for the first instance of the sensitive data item in the rendered version of the ED; and
      
      determining a size of a bounding box, wherein the first portion is further replaced with an attribute specifying the neutral data item has the size in a rendered version of the redacted ED.
  - 18. The method of claim 1, further comprising:
    - identifying a third instance of the sensitive data item in the markup of the ED,wherein the markup of the ED comprises a prior version of the ED and the third instance is within the prior version of the ED,wherein the third instance is not rendered and not visible in a rendered version of the ED, andwherein generating the redacted ED comprises replacing a third portion of the markup comprising the third instance with the neutral data item and the encrypted version of the sensitive data item.
  - 19. The system of claim 1, wherein:
    - the processor also identifies a third instance of the sensitive data item in the markup of the ED,wherein the markup of the ED comprises a prior version of the ED and the third instance is within the prior version of the ED,wherein the third instance is not rendered and not visible in a rendered version of the ED, andwherein generating the redacted ED comprises replacing a third portion of the markup comprising the third instance with the neutral data item and the encrypted version of the sensitive data item.

8. A system for redacting an electronic document (ED) having a file format, comprising:
- a memory; and
  
  a computer processor connected to the memory that;
  
  obtains a request to redact a sensitive data item in the ED, wherein the ED is compatible with a first version of rendering software and a second version of rendering software;
  
  identifies a first and a second instance of the sensitive data item in a markup of the ED,wherein the first instance of the sensitive data item is configured for rendering by the first version but not the second version of the rendering software, andwherein the second instance of the sensitive data item is configured for rendering by the second version but not the first version of the rendering software; and
  
  generates a redacted ED having the file format by;
  
  replacing a first portion of the markup comprising the first instance of the sensitive data item with;
  
  a first alternative content section comprising a tag specifying a neutral data item; and
  
  a second alternative content section comprising a tag specifying an encrypted version of the sensitive data item,wherein the first version of rendering software generates a rendered version of the redacted ED comprising content from only one of the first alternative content section and the second alternative content section depending on user credentials; and
  
  replacing a second portion of the markup comprising the second instance of the sensitive data item with the neutral data item.
- View Dependent Claims (9, 10, 11, 12)
- - 9. The system of claim 8, wherein the second portion is further replaced with the encrypted version of the sensitive data item.
  - 10. The system of claim 9, wherein generating the redacted ED further comprises:
    - replacing a third portion of the markup comprising a third instance of the sensitive data item with the neutral data item and the encrypted version of the sensitive data item,wherein the first instance of the sensitive data item and the third instance of the sensitive data item are located in different files of the ED.
  - 11. The system of claim 8, wherein generating the redacted ED further comprises:
    - creating a content extension section in the markup comprising the encrypted version of the sensitive data item.
  - 12. The system of claim 8, wherein the file format is Open Office XML (OOXML).

13. A non-transitory computer readable medium (CRM) storing computer readable program code executed by a processor that:
- obtains a request to redact a sensitive data item in an electronic document (ED) having a file format, wherein the ED is compatible with a first version of rendering software and a second version of rendering software;
  
  identifies a first instance and a second instance of the sensitive data item in a markup of the ED,wherein the first instance of the sensitive data item is configured for rendering by the first version but not the second version of the rendering software, andwherein the second instance of the sensitive data item is configured for rendering by the second version but not the first version of the rendering software; and
  
  generates a redacted ED having the file format by;
  
  replacing a first portion of the markup comprising the first instance of the sensitive data item with;
  
  a first alternative content section comprising a tag specifying a neutral data item; and
  
  a second alternative content section comprising a tag specifying an encrypted version of the sensitive data item,wherein the first version of rendering software generates a rendered version of the redacted ED comprising content from only one of the first alternative content section and the second alternative content section depending on user credentials; and
  
  replacing a second portion of the markup comprising the second instance of the sensitive data item with the neutral data item.
- View Dependent Claims (14, 15, 16, 17, 20)
- - 14. The non-transitory CRM of claim 13, wherein the second portion is further replaced with the encrypted version of the sensitive data item.
  - 15. The non-transitory CRM of claim 14, wherein the computer readable program code executed by the processor also:
    - identifies a third instance of the sensitive data item in the markup of the ED,wherein generating the redacted ED further comprises;
      
      replacing a third portion of the markup comprising the third instance of the sensitive data item with the neutral data item and the encrypted version of the sensitive data item,wherein the first instance of the sensitive data item and the third instance of the sensitive data item are located in different files in the markup of the ED.
  - 16. The non-transitory CRM of claim 13, wherein generating the redacted ED further comprises:
    - creating a content extension section in the markup comprising the encrypted version of the sensitive data item.
  - 17. The non-transitory CRM of claim 13, wherein the file format is Open Office XML (OOXML).
  - 20. The non-transitory CRM of claim 13, wherein the computer readable program code executed by the processor also:
    - identifies a third instance of the sensitive data item in the markup of the ED,wherein the markup of the ED comprises a prior version of the ED,wherein the prior version of the ED comprises the third instance of the sensitive data item,wherein the third instance is not rendered and not visible in a rendered version of the ED, andwherein generating the redacted ED comprises replacing a third portion of the markup comprising the third instance with the neutral data item and the encrypted version of the sensitive data item.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Konica Minolta Laboratory U.S.A., Inc. (Konica Minolta Inc.)
Original Assignee
Konica Minolta Laboratory U.S.A., Inc. (Konica Minolta Inc.)
Inventors
Bellert, Darrell Eugene
Primary Examiner(s)
LANIER, BENJAMIN E

Application Number

US14/622,651
Publication Number

US 20160239668A1
Time in Patent Office

935 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 21/1062   Editing

G06F 21/1063   Personalisation

G06F 21/602   Providing cryptographic fac...

G06F 21/6209   to a single file or object,...

Document redaction with data retention

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Document redaction with data retention

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links