Data security system and with territorial, geographic and triggering event protocol

US 9,311,499 B2
Filed: 03/13/2009
Issued: 04/12/2016
Est. Priority Date: 11/13/2000
Status: Active Grant

First Claim

Patent Images

1. A computerized method of securing data in a plurality of security controlled data stores with access controls thereat, each data store having a defined security level, said data potentially having sensitive content defined as sensitive words, data objects, characters, images, data elements or icons, comprising:

separately storing sensitive content in secure data stores of said plurality of security data stores at the respective defined security level for said sensitive content;

permitting reconstruction of some or all of said data with appropriate access controls applied to respective secure data stores; and

said storing or reconstruction based upon (i) territorial protocol and a geographic location signal or (ii) a triggering event; and

at least one of;

prior to storing, at least one or more of tagging, labeling, or classifying said sensitive content in said secure data stores;

orconcurrent with storing, at least one or more of tagging, labeling, or classifying said sensitive content in said secure data stores.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The method, program and information processing system secures data, and particularly security sensitive words, characters or data objects in the data, in a computer system with territorial, geographic and triggering event protocols. The method and system determines device location within or without a predetermined region and then extracts security data from the file, text, data object or whatever. The extracted data is separated from the remainder data and stored either on media in a local drive or remotely, typically via wireless network, to a remote store. Encryption is used to further enhance security levels. Extraction may be automatic, when the portable device is beyond a predetermined territory, or triggered by an event, such a “save document” or a time-out routine. Reconstruction of the data is permitted only with security clearance and within certain geographic territories. An information processing system for securing data is also described.

151 Citations

23 Claims

1. A computerized method of securing data in a plurality of security controlled data stores with access controls thereat, each data store having a defined security level, said data potentially having sensitive content defined as sensitive words, data objects, characters, images, data elements or icons, comprising:
- separately storing sensitive content in secure data stores of said plurality of security data stores at the respective defined security level for said sensitive content;
  
  permitting reconstruction of some or all of said data with appropriate access controls applied to respective secure data stores; and
  
  said storing or reconstruction based upon (i) territorial protocol and a geographic location signal or (ii) a triggering event; and
  
  at least one of;
  
  prior to storing, at least one or more of tagging, labeling, or classifying said sensitive content in said secure data stores;
  
  orconcurrent with storing, at least one or more of tagging, labeling, or classifying said sensitive content in said secure data stores.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
- - 2. A computerized method of securing data as claimed in claim 1 wherein said storing includes at least one or both of filtering or extracting said sensitive content in said secure data stores.
  - 3. A computerized method of securing data as claimed in claim 1 wherein said storing includes at least one or both of removing or copying said sensitive content in said secure data stores.
  - 4. A computerized method of securing data as claimed in claim 1 wherein said storing includes at least one or both of filtering and transferring or extracting and transferring said sensitive content in said secure data stores.
  - 5. A computerized method of securing data as claimed in claim 1 wherein said storing of said sensitive content in said secure data stores includes at least one or both of partially or completely storing said sensitive content in said secure data stores.
  - 6. A computerized method of securing data as claimed in claim 1 wherein said storing of said sensitive content in said secure data stores includes partially or completely storing said sensitive content in said secure data stores with at least one of encryption or parsing of data.
  - 7. A computerized method of securing data as claimed in claim 1 wherein said sensitive content is defined as at least one of security sensitive content, content of significance, trade secret content, personal identifying information, content subject to regulatory provisions, or back-up content and said respective ones of said secure data stores are correspondingly designated as at least one of security sensitive stores, stores for content of significance, trade secret stores, personal identifying information stores, regulatory provision stores, or back-up stores.
  - 8. A computerized method of securing data as claimed in claim 1 wherein said storing of sensitive content in said secure data stores includes at least one or more of storing in predetermined security data stores, storing in a predetermined manner by random selection of security data stores, storing by data class in said security data stores, storing data by data type in said security data stores, or storing by level of security in said security data stores.
  - 9. A computerized method of securing data as claimed in claim 1 wherein said storing of sensitive content in said secure data stores includes storing data in said security data stores in a predetermined manner with an algorithmic selection.
  - 10. A computerized method of securing data as claimed in claim 1 wherein said storing of sensitive content in said secure data stores includes storing data in optical media data stores.
  - 11. A computerized method of securing data as claimed in claim 1 wherein storing of said sensitive content is done separately with respect to at least one of remainder data, left-over data, non-sensitive content data, surplus data, residue data, remnant data, or data complementary to sensitive content data.
  - 12. A computerized method of securing data as claimed in claim 1 wherein permitting reconstruction includes at least one of reassembly, reconstitution, regeneration, compilation, reorganization, reclamation or reformation of some or all of said data with appropriate access controls applied to respective secure data stores.
  - 13. A computerized method of securing data as claimed in claim 1 wherein permitting reconstruction includes the use of at least one of predetermined access controls, assigned access controls, access controls generated with said storing of said secure data, or access controls and encryption.
  - 14. A computerized method of securing data as claimed in claim 1 wherein permitting reconstruction includes at least one of reassembly, reconstitution, regeneration, compilation, reorganization, reclamation or reformation of some or all of said data with appropriate access controls applied to respective secure data stores.
  - 15. A computerized method of securing data as claimed in claim 1 wherein said access controls are applied to at least one or more of predetermined respective secure data stores, associated respective secure data stores, correlated respective secure data stores, or designated respective secure data stores.
  - 16. A computerized method of securing data as claimed in claim 1 wherein the method of securing data is deployed in a client-server computer system with at least one server computer and a plurality of secure data stores, said server operatively coupled to at least one client computer and said secure data stores over a communications network,said server effecting said storing of sensitive content in secure data stores of said plurality of security data stores;
    - andsaid server controlling the application of said access controls.
  - 17. A computerized method of securing data as claimed in claim 1 wherein said sensitive content is at least one or more of:
    - select sensitive words, data objects, characters, images, data elements or icons;
      
      defined sensitive words, data objects, characters, images, data elements or icons;
      
      known sensitive words, data objects, characters, images, data elements or icons;
      
      certain sensitive words, data objects, characters, images, data elements or icons;
      
      a collection of sensitive words, data objects, characters, images, data elements or icons;
      
      a plurality of predetermined sensitive words, data objects, characters, images, data elements or icons;
      
      ora plurality of predetermined sensitive words, data objects, characters, images, data elements or icons having different hierarchal or orthogonal levels of sensitive content.
  - 18. A computerized method of securing data as claimed in claim 1 wherein said sensitive content is at least one or more of:
    - portions of predetermined sensitive words, data objects, characters, images, data elements or icons;
      
      orwords, data objects, characters, images, data elements or icons which are not from a plurality of predetermined words, data objects, characters, images, data elements or icons.
  - 19. A computerized method of securing data as claimed in claim 1 wherein said sensitive content is related to sensitive words, data objects, characters, images, data elements or icons, by at least or more of a function or a meaning.

20. A computerized method of securing data in a plurality of security controlled data stores with access controls thereat, each data store having a defined security level, said data potentially having sensitive content defined as sensitive words, data objects, characters, images, data elements or icons, comprising:
- separately storing sensitive content in secure data stores of said plurality of security data stores at the respective defined security level for said sensitive content;
  
  permitting reconstruction of some or all of said data with appropriate access controls applied to respective secure data stores; and
  
  said storing or reconstruction based upon (i) territorial protocol and a geographic location signal or (ii) a triggering event;
  
  wherein said access controls are applied to respective secure data stores in at least one of the following manners;
  
  said access controls applied sequentially to respective secure data stores;
  
  said access controls applied concurrently to respective secure data stores;
  
  said access controls applied to respective secure data stores subsequent to application of a security protocol;
  
  said secure data stores are mapped and said access controls are applied to obtain the mapped secure data stores;
  
  orsaid access controls are applied subsequent to an exchange of compensation or an exchange of data,said access controls applied to respective secure data stores subsequent to application of a hierarchical security protocol.

21. A computerized method of securing data in a plurality of security controlled data stores with access controls thereat, each data store having a defined security level, said data potentially having sensitive content defined as sensitive words, data objects, characters, images, data elements or icons, comprising:
- separately storing sensitive content in secure data stores of said plurality of security data stores at the respective defined security level for said sensitive content;
  
  permitting reconstruction of some or all of said data with appropriate access controls applied to respective secure data stores; and
  
  said storing or reconstruction based upon (i) territorial protocol and a geographic location signal or (ii) a triggering event, andwherein the method of securing data is deployed in a client-server computer system with at least one server computer and a plurality of secure data stores, said server operatively coupled to at least one client computer and said secure data stores over a communications network,said server effecting said storing of sensitive content in secure data stores of said plurality of security data stores; and
  
  said server permitting reconstruction of some or all of said data by controlling the application of said access controls to respective secure data stores.

22. A computerized method of securing data in a plurality of security controlled data stores with access controls thereat, each data store having a defined security level, said data potentially having sensitive content defined as sensitive words, data objects, characters, images, data elements or icons, comprising:
- separately storing sensitive content in secure data stores of said plurality of security data stores at the respective defined security level for said sensitive content;
  
  permitting reconstruction of some or all of said data with appropriate access controls applied to respective secure data stores; and
  
  said storing or reconstruction based upon (i) territorial protocol and a geographic location signal or (ii) a triggering event;
  
  wherein the method of securing data is deployed in a client-server computer system with at least one server computer and a plurality of secure data stores, said server operatively coupled to at least one client computer and said secure data stores over a communications network,said server effecting said storing of sensitive content in secure data stores of said plurality of security data stores.

23. A computerized method of securing data in a plurality of security controlled data stores with access controls thereat, each data store having a defined security level, said data potentially having sensitive content defined as sensitive words, data objects, characters, images, data elements or icons, comprising:
- separately storing sensitive content in secure data stores of said plurality of security data stores at the respective defined security level for said sensitive content;
  
  permitting reconstruction of some or all of said data with appropriate access controls applied to respective secure data stores; and
  
  said storing or reconstruction based upon (i) territorial protocol and a geographic location signal or (ii) a triggering event;
  
  wherein the method of securing data is deployed in a client-server computer system with at least one server computer and a plurality of secure data stores, said server operatively coupled to at least one client computer and said secure data stores over a communications network,said server permitting reconstruction of some or all of said data by controlling the application of said access controls to respective secure data stores.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
DigitalDoors, Inc.
Original Assignee
DigitalDoors, Inc.
Inventors
Redlich, Ron M., Nemzow, Martin A.
Primary Examiner(s)
CERVETTI, DAVID GARCIA

Application Number

US12/403,850
Publication Number

US 20090178144A1
Time in Patent Office

2,587 Days
Field of Search

726/27, 713/166
US Class Current

1/1
CPC Class Codes

G06F 21/6209 to a single file or object,...

G06F 2221/2111 Location-sensitive, e.g. ge...

Data security system and with territorial, geographic and triggering event protocol

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

151 Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Data security system and with territorial, geographic and triggering event protocol

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

151 Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links