Audience-based sensitive information handling for shared collaborative documents
First Claim
1. A system for providing audience-based redaction of sensitive information in an electronic document, comprising:
- a processor;
a memory;
a module for providing audience-based redaction of sensitive information stored in the memory, executable by the processor and configured for;
receiving a request from a first user via a first computing device to create a first electronic document;
creating the first electronic document and storing the first electronic document in a document database;
based on redaction rules, automatically searching the first electronic document to identify sensitive information, the sensitive information comprising first sensitive data;
based on searching the first electronic document to identify the sensitive information, creating redaction metadata, wherein the first electronic document comprises the redaction metadata identifying the sensitive information and required access levels;
receiving a request from a second computing device to access the first electronic document stored in the document database;
retrieving the first electronic document from the document database;
identifying one or more users associated with the second computing device;
based on identifying the one or more users associated with the second computing device, determining an access level for each of the one or more users associated with the second computing device, wherein determining the access level for each of the one or more users associated with the second computing device is further based on determining a social network relationship between the first user and the one or more users associated with the second computing device;
based on determining the access level for each of the one or more users associated with the second computing device, determining a weakest access level for the one or more users associated with the second computing device;
creating a rendering of the first electronic document, wherein the rendering of the first electronic document is created by redacting the first sensitive data from the first electronic document based on the redaction metadata and the weakest access level for the one or more users associated with the second computing device;
providing the rendering of the first electronic document to the second computing device for display;
receiving an edit to the redacted first sensitive data of the first electronic document from the second computing device;
based on receiving the edit, updating the redaction metadata to preserve the first sensitive data; and
updating the rendering of the first electronic document based on the edit to the redacted first sensitive data.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for providing audience-based redaction of sensitive information in an electronic document may include receiving a request from a computing device to access an electronic document, retrieving the electronic document, identifying the user(s) associated with the computing device, determining an access level for each user associated with the computing device, determining the lowest access level for the user(s) associated with the computing device, generating a rendering of the electronic document for display on the computing device based on the lowest access level for the user(s) associated with the computing device, and providing the rendering of the electronic document to the computing device for display. When generating the rendering of the electronic document for display, sensitive information in the electronic document is typically redacted based on the lowest access level for the user(s) associated with the computing device.
-
Citations
14 Claims
-
1. A system for providing audience-based redaction of sensitive information in an electronic document, comprising:
-
a processor; a memory; a module for providing audience-based redaction of sensitive information stored in the memory, executable by the processor and configured for; receiving a request from a first user via a first computing device to create a first electronic document; creating the first electronic document and storing the first electronic document in a document database; based on redaction rules, automatically searching the first electronic document to identify sensitive information, the sensitive information comprising first sensitive data; based on searching the first electronic document to identify the sensitive information, creating redaction metadata, wherein the first electronic document comprises the redaction metadata identifying the sensitive information and required access levels; receiving a request from a second computing device to access the first electronic document stored in the document database; retrieving the first electronic document from the document database; identifying one or more users associated with the second computing device; based on identifying the one or more users associated with the second computing device, determining an access level for each of the one or more users associated with the second computing device, wherein determining the access level for each of the one or more users associated with the second computing device is further based on determining a social network relationship between the first user and the one or more users associated with the second computing device; based on determining the access level for each of the one or more users associated with the second computing device, determining a weakest access level for the one or more users associated with the second computing device; creating a rendering of the first electronic document, wherein the rendering of the first electronic document is created by redacting the first sensitive data from the first electronic document based on the redaction metadata and the weakest access level for the one or more users associated with the second computing device; providing the rendering of the first electronic document to the second computing device for display; receiving an edit to the redacted first sensitive data of the first electronic document from the second computing device; based on receiving the edit, updating the redaction metadata to preserve the first sensitive data; and updating the rendering of the first electronic document based on the edit to the redacted first sensitive data. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer program product for providing audience-based redaction of sensitive information in an electronic document comprising a non-transitory computer-readable storage medium having computer-executable instructions for:
-
receiving a request from a first user via a first computing device to create a first electronic document; creating the first electronic document and storing the first electronic document in a document database; based on redaction rules, automatically searching the first electronic document to identify sensitive information, the sensitive information comprising first sensitive data; based on searching the first electronic document to identify the sensitive information, creating redaction metadata, wherein the first electronic document comprises the redaction metadata identifying the sensitive information and required access levels; receiving a request from a second computing device to access the first electronic document stored in the document database; retrieving the first electronic document from the document database; identifying one or more users associated with the second computing device; based on identifying the one or more users associated with the second computing device, determining an access level for each of the one or more users associated with the second computing device, wherein determining the access level for each of the one or more users associated with the second computing device is further based on determining a social network relationship between the first user and the one or more users associated with the second computing device; based on determining the access level for each of the one or more users associated with the second computing device, determining a weakest access level for the one or more users associated with the second computing device; creating a rendering of the first electronic document, wherein the rendering of the first electronic document is created by redacting the first sensitive data from the first electronic document based on the redaction metadata and the weakest access level for the one or more users associated with the second computing device; providing the rendering of the first electronic document to the second computing device for display; receiving an edit to the redacted first sensitive data of the first electronic document from the second computing device; based on receiving the edit, updating the redaction metadata to preserve the first sensitive data; and updating the rendering of the first electronic document based on the edit to the redacted first sensitive data. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
Specification