Document redaction with data retention
First Claim
Patent Images
1. A method for redacting an electronic document (ED) having a file format, comprising:
- obtaining a request to redact a sensitive data item in the ED, wherein the ED is compatible with a first version of rendering software and a second version of rendering software;
identifying a first instance and a second instance of the sensitive data item in a markup of the ED,wherein the first instance of the sensitive data item is configured for rendering by the first version but not the second version of the rendering software, andwherein the second instance of the sensitive data item is configured for rendering by the second version but not the first version of the rendering software; and
generating a redacted ED having the file format by;
replacing a first portion of the markup comprising the first instance of the sensitive data item with;
a first alternative content section comprising a tag specifying a neutral data item; and
a second alternative content section comprising a tag specifying an encrypted version of the sensitive data item,wherein the first version of rendering software generates a rendered version of the redacted ED comprising content from only one of the first alternative content section and the second alternative content section depending on user credentials; and
replacing a second portion of the markup comprising the second instance of the sensitive data item with the neutral data item.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for redacting an electronic document (ED) having a file format, including: obtaining a request to redact a sensitive data item in the ED; identifying a first instance and a second instance of the sensitive data item in a markup of the ED, where the second instance of the sensitive data item is not visible in a rendered version of the ED; and generating a redacted ED having the file format by: replacing the first instance of the sensitive data item and the second instance of the sensitive data item with a neutral data item, and inserting, into the markup, an encrypted version of the sensitive data item at a first location.
-
Citations
20 Claims
-
1. A method for redacting an electronic document (ED) having a file format, comprising:
-
obtaining a request to redact a sensitive data item in the ED, wherein the ED is compatible with a first version of rendering software and a second version of rendering software; identifying a first instance and a second instance of the sensitive data item in a markup of the ED, wherein the first instance of the sensitive data item is configured for rendering by the first version but not the second version of the rendering software, and wherein the second instance of the sensitive data item is configured for rendering by the second version but not the first version of the rendering software; and generating a redacted ED having the file format by; replacing a first portion of the markup comprising the first instance of the sensitive data item with; a first alternative content section comprising a tag specifying a neutral data item; and a second alternative content section comprising a tag specifying an encrypted version of the sensitive data item, wherein the first version of rendering software generates a rendered version of the redacted ED comprising content from only one of the first alternative content section and the second alternative content section depending on user credentials; and replacing a second portion of the markup comprising the second instance of the sensitive data item with the neutral data item. - View Dependent Claims (2, 3, 4, 5, 6, 7, 18, 19)
-
-
8. A system for redacting an electronic document (ED) having a file format, comprising:
-
a memory; and a computer processor connected to the memory that; obtains a request to redact a sensitive data item in the ED, wherein the ED is compatible with a first version of rendering software and a second version of rendering software; identifies a first and a second instance of the sensitive data item in a markup of the ED, wherein the first instance of the sensitive data item is configured for rendering by the first version but not the second version of the rendering software, and wherein the second instance of the sensitive data item is configured for rendering by the second version but not the first version of the rendering software; and generates a redacted ED having the file format by; replacing a first portion of the markup comprising the first instance of the sensitive data item with; a first alternative content section comprising a tag specifying a neutral data item; and a second alternative content section comprising a tag specifying an encrypted version of the sensitive data item, wherein the first version of rendering software generates a rendered version of the redacted ED comprising content from only one of the first alternative content section and the second alternative content section depending on user credentials; and replacing a second portion of the markup comprising the second instance of the sensitive data item with the neutral data item. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A non-transitory computer readable medium (CRM) storing computer readable program code executed by a processor that:
-
obtains a request to redact a sensitive data item in an electronic document (ED) having a file format, wherein the ED is compatible with a first version of rendering software and a second version of rendering software; identifies a first instance and a second instance of the sensitive data item in a markup of the ED, wherein the first instance of the sensitive data item is configured for rendering by the first version but not the second version of the rendering software, and wherein the second instance of the sensitive data item is configured for rendering by the second version but not the first version of the rendering software; and generates a redacted ED having the file format by; replacing a first portion of the markup comprising the first instance of the sensitive data item with; a first alternative content section comprising a tag specifying a neutral data item; and a second alternative content section comprising a tag specifying an encrypted version of the sensitive data item, wherein the first version of rendering software generates a rendered version of the redacted ED comprising content from only one of the first alternative content section and the second alternative content section depending on user credentials; and replacing a second portion of the markup comprising the second instance of the sensitive data item with the neutral data item. - View Dependent Claims (14, 15, 16, 17, 20)
-
Specification