US2018019990A1PendingUtilityA1

Dynamic Binding Of Access And Usage Rights To Computer-Based Resources

56
Assignee: MEDOX TECH INCPriority: Apr 11, 2006Filed: May 4, 2017Published: Jan 18, 2018
Est. expiryApr 11, 2026(expired)· nominal 20-yr term from priority
Inventors:Michael Beck
G06F 21/6272G16H 80/00G16H 10/60G06F 21/33G06F 21/6245G06F 21/604G06F 21/31H04L 63/105H04L 63/10G06Q 50/24G06F 19/322H04L 63/08G06Q 50/22G16H 50/20G16H 70/20
56
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

Methods and apparatus, including computer program products, related to dynamic binding of access and usage rights to a computer-based resource. In general, data characterizing a request for content is received, a determination as to whether first security credentials authenticate a user is made, and, if so and the user is authorized to access or use the content, security is of the content is replaced. Replacing security may involve removing the security from the content in accordance with second security credentials. The removal of security may enable the user to perform actions to the content. The removal of security may be followed with an addition of security of a second type such that content is moved from a first trusted environment to a second trusted environment.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
         1 . A computer program product, tangibly embodied in a computer-readable media, the computer program product comprising instructions to cause data processing apparatus to perform operations comprising:
 receiving data characterizing a request for content, the content being secured with a first security against access by a user;   determining whether first security credentials authenticate the user; and   replacing the first security of the content with a second security if the user is authenticated by the first security credentials and authorized to use the content, the replacing comprising removing the first security in accordance with second security credentials and the replacing to enable the user to perform actions to the content.   
     
     
         2 . The computer program product of  claim 1 , wherein the receiving data is performed by a server application receiving the data from a client application performing the request, and the server application performs the replacing the first security to move the content from a first trusted environment to a second trusted environment, the second trusted environment comprising a secure session between the server and client applications. 
     
     
         3 . The computer program product of  claim 1 , wherein the actions comprise one or more types of actions authorized to be performed at a client of the user. 
     
     
         4 . The computer program product of  claim 1 , wherein the content is secured against access in accordance with a decryption scheme, the removing security comprises decrypting the content with the second security credentials not being available to the user, and the operations further comprise initiating transmission of the content to the user in accordance with a secure server session. 
     
     
         5 . The computer program product of  claim 1 , further comprising determining whether the user is associated with rights to perform the access, and wherein the replacing the first security comprises replacing the first security if the user has the rights to perform the access. 
     
     
         6 . The computer program product of  claim 5 , wherein the user is authorized to access or use the content at a first time but is not authorized to access or use the content at a second time later than the first time or earlier than the first time based on a modification of a policy of the user. 
     
     
         7 . The computer program product of  claim 1 , wherein the content is medical health information. 
     
     
         8 . The computer program product of  claim 7 , wherein the content is a component of an electronic medical record comprising a plurality of components, the user being authorized for the content but not being authorized for at least one other of the components. 
     
     
         9 . The computer program product of  claim 1 , wherein the actions comprise at least one or more of causing the content to be viewed, printed, copied, modified, or exported. 
     
     
         10 . The computer program product of  claim 1 , wherein the user is authorized for at least one type of action but not other types of actions. 
     
     
         11 . The computer program product of  claim 1 , wherein the user is authorized for a set of actions different from actions authorized for another user. 
     
     
         12 . A computer-implemented method comprising:
 receiving data characterizing a request for content, the content being secured with a first security against access by a user;   determining whether first security credentials authenticate the user; and   replacing the first security of the content with a second security if the user is authenticated by the first security credentials and authorized to use the content, the replacing comprising removing security from the content in accordance with second security credentials and the replacing to enable the user to perform actions to the content.   
     
     
         13 . The method of  claim 12 , wherein the receiving data is performed by a server application receiving the data from a client application performing the request, and the server application performs the replacing the first security to move the content from a first trusted environment to a second trusted environment, the second trusted environment comprising a secure session between the server and client applications. 
     
     
         14 . The method of  claim 12 , wherein the content is secured against access in accordance with a decryption scheme, the removing security comprises decrypting the content with the second security credentials not being available to the user, and the method further comprises initiating transmission of the content to the user in accordance with a secure server session. 
     
     
         15 . The method of  claim 12 , wherein the user is authorized to access or use the content at a first time but is not authorized to access or use the content at a second time later than or earlier than the first time based on a modification of a policy of the user. 
     
     
         16 . The method of  claim 12 , wherein the content is medical health information. 
     
     
         17 . The method of  claim 16 , wherein the content is a component of an electronic medical record comprising a plurality of components, the user being authorized for the content but not being authorized for at least one other of the components. 
     
     
         18 . A computer program product, tangibly embodied in a computer-readable media, the computer program product comprising instructions to cause data processing apparatus to perform operations comprising:
 receiving at a server data characterizing a request for content, the content being secured with a first security against access by a client of a user;   determining whether first security credentials authenticate the user; and   if the user is authenticated by the first security credentials and authorized to use the content,   replacing the first security of the content with a second security, the replacing comprising removing security from the content in accordance with second security credentials; and   authorizing the user to perform at least one action of a plurality of types of actions, the at least one action being associated with the user at the server.   
     
     
         19 . The computer program product of  claim 18 , wherein the content is medical health information. 
     
     
         20 . The computer program product of  claim 18 , wherein the user is authorized to access or use the content at a first time but is not authorized to access or use the content at a second time later than the first time or earlier than the first time.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.