Information record infrastructure, system and method

US 8,600,895 B2
Filed: 02/19/2013
Issued: 12/03/2013
Est. Priority Date: 07/06/2000
Status: Expired due to Fees

- Alert
- Pin

Associated Cases

Associated Defendants

First Claim

Patent Images

1. A method of controlling access to a plurality of records stored within a plurality of automated external databases, each record having an associated set of access rules (“

ASAR”

), a location identifier (“

LI”

), and a content identifier (“

CI”

) maintained in an automated centralized index (“

ACI”

), comprising;

receiving a request, communicated from a requestor to a centralized automated security processor (“

GASP”

), the request containing a specified CI (“

SCI”

);

authenticating the requestor;

querying the ACI to find entries corresponding to the SCI;

for each found entry, applying the ASAR corresponding to the LI to determine if the record stored in a respective automated external database (“

AXD”

) of the plurality of automated external databases corresponding to the LI is accessible;

for each accessible record (“

AR”

), automatically communicating from the GASP to the AXD storing the AR information sufficient to determine whether the AR is releasable by the AXD storing the AR by applying a set of native access rules (“

NAR”

) maintained by the AXD storing the AR;

logically associating the releasable ARs into a linked set of releasable ARs; and

communicating the linked set of releasable ARs to the requestor.

View all claims

6 Assignments

Timeline View

Assignment View

Litigations

0 Petitions

Accused Products

Abstract

A method of controlling access to records stored within databases, each record having associated access rules, a location identifier, and a content identifier maintained in a centralized index, comprising: receiving a request, communicated from a requestor to a security processor, the request containing a specified content identifier; querying the centralized index to find entries corresponding to the specified content identifier; for each entry, applying the access rules for the record to determine whether the record is accessible; for each accessible record, automatically communicating from the security processor to the database storing the accessible record sufficient information to determine whether it is releasable per a set of native access rules of the database; logically associating the releasable accessible records into a linked set of releasable records; and communicating the linked set of releasable records to the requestor.

154 Citations

20 Claims

1. A method of controlling access to a plurality of records stored within a plurality of automated external databases, each record having an associated set of access rules (“
- ASAR”
  
  ), a location identifier (“
  
  LI”
  
  ), and a content identifier (“
  
  CI”
  
  ) maintained in an automated centralized index (“
  
  ACI”
  
  ), comprising;
  
  receiving a request, communicated from a requestor to a centralized automated security processor (“
  
  GASP”
  
  ), the request containing a specified CI (“
  
  SCI”
  
  );
  
  authenticating the requestor;
  
  querying the ACI to find entries corresponding to the SCI;
  
  for each found entry, applying the ASAR corresponding to the LI to determine if the record stored in a respective automated external database (“
  
  AXD”
  
  ) of the plurality of automated external databases corresponding to the LI is accessible;
  
  for each accessible record (“
  
  AR”
  
  ), automatically communicating from the GASP to the AXD storing the AR information sufficient to determine whether the AR is releasable by the AXD storing the AR by applying a set of native access rules (“
  
  NAR”
  
  ) maintained by the AXD storing the AR;
  
  logically associating the releasable ARs into a linked set of releasable ARs; and
  
  communicating the linked set of releasable ARs to the requestor.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1, further comprising applying at least one compensation rule and communicating the result to a compensation database.
  - 3. The method according to claim 2, wherein the compensation rule is dependent on at least one of:
    - an identity of the requestor;
      
      the SCI;
      
      a compensation rule defined by the CASP; and
      
      a compensation rule defined by the respective AXD storing the releasable AR.
  - 4. The method according to claim 2, wherein the compensation rule is determined by a function of:
    - an identity of the requestor;
      
      the SCI;
      
      a compensation rule defined by the CASP; and
      
      a compensation rule defined by the respective AXD storing the releasable AR.
  - 5. The method according to claim 1, wherein the releasable ARs comprising the linked set of releasable ARs are separately encrypted.
  - 6. The method according to claim 1, further comprising communicating, from the CASP to the respective AXD storing the releasable AR, instructions to authorize release of the releasable AR.
  - 7. The method according to claim 1, wherein a cryptographic applet generates at least a communication to a logging server upon decryption of at least one of the linked releasable ARs.

8. A method of controlling access to a plurality of records stored within a plurality of automated external databases, each record being associated with an entry maintained in an automated centralized index (“
- ACI”
  
  ), comprising an associated set of access rules (“
  
  ASAR”
  
  ), a location identifier (“
  
  LI”
  
  ), and a content identifier (“
  
  CI”
  
  ), the method comprising;
  
  receiving a request, communicated from a requestor to a centralized automated security processor (“
  
  GASP”
  
  ), the request containing a specified CI (“
  
  SCI”
  
  );
  
  authenticating the requestor;
  
  querying the ACI to find entries corresponding the SCI;
  
  for each found entry, applying the ASAR corresponding to the LI to determine if the record stored in a respective automated external database (“
  
  AXD”
  
  ) of the plurality of automated external databases corresponding to the LI is accessible;
  
  for each accessible record (“
  
  AR”
  
  ), communicating, from the GASP to the AXD storing the AR, information sufficient for the AXD storing the AR to apply a set of native access rules (“
  
  NAR”
  
  ) it maintains to determine whether the AR is releasable by the AXD storing the AR;
  
  generating, by the CASP, an index of releasable ARs;
  
  communicating the generated index to the requestor;
  
  receiving a communication from the requestor containing a selection of at least one releasable AR in the generated index;
  
  linking the selected releasable ARs into a logically associated set of releasable ARs (“
  
  LAS”
  
  ); and
  
  communicating the LAS to the requestor.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
- - 9. The method according to claim 8, further comprising applying at least one compensation rule and communicating the result to a compensation database.
  - 10. The method according to claim 9, wherein the compensation rule is dependent on at least one of:
    - an identity of the requestor;
      
      the SCI;
      
      a compensation rule defined by the CASP; and
      
      a compensation rule defined by the respective AXD storing the selected releasable AR.
  - 11. The method according to claim 9, wherein the compensation rule is determined by a function of:
    - an identity of the requestor;
      
      the SCI;
      
      a compensation rule defined by the CASP; and
      
      a compensation rule defined by the respective AXD storing the selected releasable AR.
  - 12. The method according to claim 8, wherein the selected releasable ARs comprising the LAS are separately encrypted.
  - 13. The method according to claim 8, wherein the CI comprises an identification of at least one of:
    - (1) an entity;
      
      (2) a transaction with another entity;
      
      (3) a communication with another entity;
      
      (4) a relationship with another entity;
      
      (5) an ownership or other possessory interest in the record; and
      
      (6) a contractual interest in the record.
  - 14. The method according to claim 8, wherein a cryptographic applet generates at least a communication to a logging server upon decryption of at least one of the linked selected releasable ARs.
  - 15. The method according to claim 8, further comprising logging at least one of:
    - each request; and
      
      each selection.

16. An apparatus for controlling access to a plurality of records stored within a plurality of automated external databases (“
- AXES”
  
  ), comprising;
  
  an automated centralized index (“
  
  ACI”
  
  ), stored in a memory, configured to store an entry for each record consisting of a location identifier (“
  
  LI”
  
  ), an associated set of access rules (“
  
  ASAR”
  
  ), and a content identifier (“
  
  CI”
  
  );
  
  an input port configured to receive a request from a requestor for access to one or more records stored in the plurality of AXES, wherein the request specifies a CI with which to query the ACI;
  
  at least one processor configured to;
  
  generate a query based on the specified CI (“
  
  SCI”
  
  );
  
  find entries in the ACI containing the SCI;
  
  for each found entry, apply the ASAR corresponding to the LI to determine if the record stored in a respective one of the AXES corresponding to the LI is accessible;
  
  generate a communication, for communication to the respective one of the AXES storing an accessible record (“
  
  AR”
  
  ), wherein the communication contains information sufficient for the respective one of the AXES storing the AR to apply a set of native access rules (“
  
  NAR”
  
  ) it maintains to determine if the AR is releasable;
  
  form a linked set of releasable ARs by logically associating the releasable ARs; and
  
  generate a communication containing the linked set of releasable ARs; and
  
  at least one communications port configured to communicate;
  
  the generated communication to the respective one of the AXES storing the ARs; and
  
  the linked set of releasable ARs.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The apparatus according to claim 16, wherein the at least one processor is further configured to apply an at least one compensation rule.
  - 18. The apparatus according to claim 17, wherein the at least one compensation rule is dependent on at least one of:
    - an identity of the requestor;
      
      the SCI;
      
      a compensation rule defined by the CASP; and
      
      a compensation rule defined by the respective one of the AXES storing the AR.
  - 19. The apparatus according to claim 17, wherein the at least one compensation rule is determined by a function of:
    - an identity of the requestor;
      
      the SCI;
      
      a compensation rule defined by the CASP; and
      
      a compensation rule defined by the respective one of the AXES storing the AR.
  - 20. The apparatus according to claim 16, wherein the releasable ARs comprising the linked set of releasable ARs are separately encrypted.

Specification

Resources

Litigation Campaign Assessment

Litigation Data

Current Assignee
RPX Corporation
Original Assignee
David Paul Felsher
Inventors
Felsher, David Paul
Primary Examiner(s)
Nigh, James D

Application Number

US13/770,764
Publication Number

US 20130159021A1
Time in Patent Office

287 Days
Field of Search

705/2, 705/3, 705/50
US Class Current

705/50
CPC Class Codes

G06F 21/6227   where protection concerns t...

G06F 21/6245   Protecting personal data, e...

G06Q 10/10   Office automation; Time man...

G06Q 30/0283   Price estimation or determi...

G16H 10/60   for patient-specific data, ...

G16H 10/65   stored on portable record c...

G16H 40/67   for remote operation

Information record infrastructure, system and method

First Claim

6 Assignments

Litigations

0 Petitions

Accused Products

Abstract

154 Citations

20 Claims

Specification

11 Family Members

Thank you for your feedback