System and method for data privacy in URL based context queries
First Claim
1. A method comprising the steps of:
- receiving a reference, over a network, to a data object from a user;
identifying, via the network, an entity that controls the data object, such that spatial, temporal, social and topical data available to the network that relates to the data object are retrieved and utilized for said identifying the entity that controls the data object;
retrieving, via the network, a permission for the data object, the permission being associated with the entity that controls the data object, said permission comprising a permission context having permission context criteria comprising spatial, temporal, social and topical criteria, and further comprising a set of associations, data axes and data values between each of the spatial, temporal, social and topical criteria, the set of associations are ordered in an order such that each of the associations of the set of associations are evaluated in the order, such that associations that are lower in the order override associations that are higher in the order where the respective associations relate to a same respective data axes and respective data values;
retrieving, via the network, spatial data, temporal data, social data and topical data available to the network that relates to the user and to the permission context;
determining, via the network, using the spatial data, temporal data, social data and topical data, that the user matches the permission context criteria;
in response to determining the user matches the permission context criteria, determining, via the network, using the permission for the data object, the user is one of;
permitted to access to the data object and not permitted to access to the data object, such thatwhere the user is permitted access to the data object, access is granted to the data object, andwhere the user is not permitted access to the data object, access is denied to the data object.
9 Assignments
0 Petitions
Accused Products
Abstract
A system and method for data privacy in URL based context queries. A reference to a data object is received from a user. At least one entity that controls the data object is identified via the network. At least one permission for the data object is retrieved via the network, wherein the permission is associated with the entity that controls the data object. It is then determined, via the network, if the user is permitted to access to the data object using the permission for the data object and spatial data, temporal data social data and logical data available to the network that relates to the user and to the permission for the data object. If the user is permitted access to the data object, access is granted to the data object, and if the user is nor permitted access to the data object, access is denied to the data object.
-
Citations
21 Claims
-
1. A method comprising the steps of:
-
receiving a reference, over a network, to a data object from a user; identifying, via the network, an entity that controls the data object, such that spatial, temporal, social and topical data available to the network that relates to the data object are retrieved and utilized for said identifying the entity that controls the data object; retrieving, via the network, a permission for the data object, the permission being associated with the entity that controls the data object, said permission comprising a permission context having permission context criteria comprising spatial, temporal, social and topical criteria, and further comprising a set of associations, data axes and data values between each of the spatial, temporal, social and topical criteria, the set of associations are ordered in an order such that each of the associations of the set of associations are evaluated in the order, such that associations that are lower in the order override associations that are higher in the order where the respective associations relate to a same respective data axes and respective data values; retrieving, via the network, spatial data, temporal data, social data and topical data available to the network that relates to the user and to the permission context; determining, via the network, using the spatial data, temporal data, social data and topical data, that the user matches the permission context criteria; in response to determining the user matches the permission context criteria, determining, via the network, using the permission for the data object, the user is one of;
permitted to access to the data object and not permitted to access to the data object, such thatwhere the user is permitted access to the data object, access is granted to the data object, and where the user is not permitted access to the data object, access is denied to the data object. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system comprising:
-
a processor; a non-transitory storage medium for tangibly storing thereon program logic for execution by the processor, the program logic comprising; object reference receiving logic executed by the processor for receiving a reference, over a network, to a data object from a user; controlling entity identification logic executed by the processor for identifying, via the network, an entity that controls the data object, such that spatial, temporal, social and topical data available to the network that relates to the data object are retrieved and utilized for said identifying the entity that controls the data object; permission retrieval logic executed by the processor for retrieving, via the network, a permission for the data object, the permission being associated with the entity that controls the data object, said permission comprising a permission context having permission context criteria comprising spatial, temporal, social and topical criteria, and further comprising a set of associations, data axes and data values between each of the spatial, temporal, social and topical criteria, the set of associations are ordered in an order such that each of the associations of the set of associations are evaluated in the order, such that associations that are lower in the order override associations that are higher in the order where the respective associations relate to a same respective data axes and respective data values; user data retrieval logic executed by the processor for retrieving, via the network, spatial data, temporal data, social data and topical data available to the network that relates to the user and to the permission context; user matching logic executed by the processor for determining, via the network, using the spatial data, temporal data, social data and topical data, that the user matches the permission context criteria; permission determination logic executed by the processor for, in response to determining the user matches the permission context criteria, determining, via the network, using the permission for the data object, the user is one of;
permitted to access to the data object and not permitted to access to the data object, such thatwhere the user is permitted access to the data object, access is granted to the data object, and where the user is not permitted access to the data object, access is denied to the data object. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable storage medium for tangibly storing thereon computer readable instructions for a method comprising:
-
receiving a reference, over a network, to a data object from a user; identifying, via the network, an entity that controls the data object, such that spatial, temporal, social and topical data available to the network that relates to the data object are retrieved and utilized for said identifying the entity that controls the data object; retrieving, via the network, a permission for the data object, the permission being associated with the entity that controls the data object, said permission comprising a permission context having permission context criteria comprising spatial, temporal, social and topical criteria, and further comprising a set of association, data axes and data values between each of the spatial, temporal, social and topical criteria, the set of associations are ordered in an order such that each of the associations of the set of associations are evaluated in the order, such that associations that are lower in the order override associations that are higher in the order where the respective associations relate to a same respective data axes and respective data values; retrieving, via the network, spatial data, temporal data, social data and topical data available to the network that relates to the user and to the permission context; retrieving, via the network, spatial data, temporal data, social data and topical data available to the network that relates to the user and to the permission context; determining, via the network, using the spatial data, temporal data, social data and topical data, that the user matches the permission context criteria; in response to determining the user matches the permission context criteria, determining, via the network, using the permission for the data object, the user is one of;
permitted to access to the data object and not permitted to access to the data object, such thatwhere the user is permitted access to the data object, access is granted to the data object, and where the user is not permitted access to the data object, access is denied to the data object. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification