Methods and Systems for Restricting Data Access Based on Properties of At Least One of a Process and a Machine Executing the Process
Abstract
A method of restricting data access based on properties of at least one of a process and a machine executing the process includes receiving, by an access control management system, from a first computing device, information associated with an encrypted data object. The method includes requesting, by the access control management system, from a verifier, verification that a second computing device executes a process in accordance with a process attribute identified in the information associated with the encrypted data object. The method includes sending, by the access control management system, to the second computing device, the received information associated with the encrypted data object, responsive to the verification of the process attribute.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A method of restricting data access based on properties of at least one of a process and a machine executing the process, the method comprising:
receiving, by an access control management system, from a first computing device, information associated with an encrypted data object; requesting, by the access control management system, from a verifier, verification that a second computing device executes a process in accordance with a process attribute identified in the information associated with the encrypted data object; and sending, by the access control management system, to the second computing device, the received information associated with the encrypted data object, responsive to the verification of the process attribute.
2 . The method of claim 1 , wherein receiving further comprises receiving information including an identifier of each of a plurality of independent verifiers.
3 . The method of claim 2 , further comprising selecting the independent verifier based upon the identifier in the received information.
4 . The method of claim 1 , wherein requesting verification further comprises requesting verification upon receiving, by the access control management system, from the second computing device, a request for the information associated with the encrypted data object.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.