-
公开(公告)号:US09026801B2
公开(公告)日:2015-05-05
申请号:US13457309
申请日:2012-04-26
申请人: Helen Balinsky , Neil Moore , Steven J. Simske
发明人: Helen Balinsky , Neil Moore , Steven J. Simske
CPC分类号: G06F21/00 , G06F21/552
摘要: System call interception is activated for an application process. It is recorded that system call interception is active for the application process. Ongoing checking is performed to determine whether system call interception remains active.
摘要翻译: 为应用程序进程激活系统调用拦截。 记录系统呼叫截取对于应用程序进程是活动的。 执行正在进行的检查以确定系统呼叫拦截是否保持活动。
-
公开(公告)号:US20130291051A1
公开(公告)日:2013-10-31
申请号:US13457309
申请日:2012-04-26
申请人: Helen Balinsky , Neil Moore , Steven J. Simske
发明人: Helen Balinsky , Neil Moore , Steven J. Simske
IPC分类号: G06F21/00
CPC分类号: G06F21/00 , G06F21/552
摘要: System call interception is activated for an application process. It is recorded that system call interception is active for the application process. Ongoing checking is performed to determine whether system call interception remains active.
摘要翻译: 为应用程序进程激活系统调用拦截。 记录系统呼叫截取对于应用程序进程是活动的。 执行正在进行的检查以确定系统呼叫拦截是否保持活动。
-
公开(公告)号:US20130124567A1
公开(公告)日:2013-05-16
申请号:US13295935
申请日:2011-11-14
申请人: Helen BALINSKY , Neil Moore , Steven J. Simske
发明人: Helen BALINSKY , Neil Moore , Steven J. Simske
IPC分类号: G06F17/30
CPC分类号: G06F21/6209 , G06F16/93 , G06F21/00 , G06F21/604
摘要: Input is obtained to modify one of a set of self-consistent and prioritized document policies, each policy indicating an allowability of a requested action when a condition of the policy is satisfied. Each policy is representable by a node on a multipartite graph, the node being located in a part of the multipartite graph that corresponds to the allowability indicated by the policy. Two nodes are connectable by an edge that indicates a relative priority between their corresponding policies. A transitive closure of the representation is computed so as to identify paths of contiguous edges that connect pairs of nodes. When two policies with different allowabilities are applicable to a single requested action on a single document, and when the corresponding nodes are connected by one of the identified paths, a relative priority is automatically assigned to the two policies as indicated by the path.
摘要翻译: 获得输入以修改一组自相一致和优先权文件策略中的一个,每个策略指示当策略的条件满足时请求的动作的允许。 每个策略可以由多部分图形上的节点表示,该节点位于多部分图形的一部分,该对应于策略指示的允许性。 两个节点可以通过指示相应策略之间相对优先级的边来连接。 计算表示的传递闭包,以便识别连接节点对的连续边缘的路径。 当具有不同允许性的两个策略适用于单个文档上的单个请求操作时,并且当对应的节点通过所标识的路径之一连接时,相对优先级被自动分配给由路径指示的两个策略。
-
公开(公告)号:US08689281B2
公开(公告)日:2014-04-01
申请号:US13286095
申请日:2011-10-31
申请人: Helen Balinsky , Neil Moore , Steven J. Simske
发明人: Helen Balinsky , Neil Moore , Steven J. Simske
IPC分类号: H04L29/06
CPC分类号: G06F21/6218
摘要: A method includes obtaining input to modify a policy of a set of context-aware document policies. A policy of the set is applicable to a requested action on a document so as to indicate allowability of the requested action based at least on satisfaction of a condition of the policy that relates to a content of the document. When a plurality of policies of the set are applicable to the requested action on the document, allowability of the requested action is determined by the allowability that is indicated by application of the applicable policy with a highest priority. The modified policy is compared with another policy of the set. If the comparison indicates the modified policy and the other policy are applicable to a single requested action on a single document, the set of policies is automatically ensured to remain self consistent.
摘要翻译: 一种方法包括获得输入以修改一组上下文感知文档策略的策略。 该集合的策略适用于对文档的请求的动作,以便至少基于满足与文档的内容相关的策略的条件来指示所请求的动作的可允许性。 当集合的多个策略适用于对文档的所请求的动作时,所请求的动作的可允许性由通过应用具有最高优先权的适用策略指示的允许性来确定。 将修改的策略与该集合的另一策略进行比较。 如果比较表明已修改的策略和其他策略适用于单个文档上的单个请求的操作,则会自动确保一组策略保持自身一致。
-
公开(公告)号:US20150169500A1
公开(公告)日:2015-06-18
申请号:US13885953
申请日:2011-01-28
申请人: Helen Balinsky , Steven J. Simske
发明人: Helen Balinsky , Steven J. Simske
CPC分类号: G06F17/211 , G06F17/30011 , G06Q10/06 , G06Q10/103
摘要: Document management system includes a composite document (CD) and a mixed workflow, which includes an unordered stage followed by one of i) an ordered stage or ii) another unordered stage. The system includes a map-file (map) of the document (CD) for a participant (P) in the mixed workflow that is associated with the ordered or other unordered stage, and a wrap (W) of the map-file (map). Wrap (W) includes a number of map-file fragments (F) equal to or greater than a number of workflow participants (P) within a group (G) associated with the unordered stage. The number of map-file fragments (F) renders the document (CD) inaccessible to the participant (P) that is associated with the ordered or other unordered stage until each of the number of map-file fragments (F) is released by each of the workflow participants (P) within the group (G).
摘要翻译: 文件管理系统包括复合文件(CD)和混合工作流程,其包括无序阶段,其后是i)有序阶段或ii)另一无序阶段。 该系统包括与有序或其他无序级相关联的混合工作流中的参与者(P)的文档(CD)的地图文件(地图),以及地图文件(地图 )。 包裹(W)包括等于或大于与无序级相关联的组(G)内的工作流参与者(P)的数量的多个地图文件片段(F)。 地图文件片段(F)的数量使得与有序或其他无序级相关联的参与者(P)不可访问文档(CD),直到每个地图文件片段(F)被释放为每个 的组(G)中的工作流参与者(P)。
-
公开(公告)号:US20130246799A1
公开(公告)日:2013-09-19
申请号:US13810714
申请日:2010-09-21
申请人: Helen Balinsky , Steven J. Simske
发明人: Helen Balinsky , Steven J. Simske
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , G06F21/6209
摘要: In a method for providing differential access to a digital document among workflow participants, in which at least one of the workflow participants is outside of a common secure environment (300), a first set of keys including an encryption key, a signature key, and a verification key is associated with atomic unit(s) (304). The atomic unit(s) is encrypted using the encryption key and signed using the signature key (306, 308). A level of access to the atomic unit(s) to be granted to each of the workflow participants and the keys in the first set of keys to supply to each of the workflow participants based upon the identified level of access are identified (310, 312). In addition, each of the workflow participants is supplied with the identified one or more keys (314) and the encrypted and signed atomic unit(s) is supplied to a first workflow participant (316).
摘要翻译: 在用于在工作流参与者之间提供对数字文档的差异访问的方法中,其中至少一个工作流参与者在公共安全环境(300)之外,包括第一组密钥,包括加密密钥,签名密钥和 验证密钥与原子单元相关联(304)。 使用加密密钥对原子单元进行加密,并使用签名密钥(306,308)进行签名。 识别对基于所识别的访问级别而授予每个工作流参与者的原子单元的访问级别和第一组密钥中的密钥以供应给每个工作流参与者(310,312 )。 另外,每个工作流参与者被提供有识别的一个或多个密钥(314),并且加密和签名的原子单元被提供给第一工作流参与者(316)。
-
公开(公告)号:US08364729B2
公开(公告)日:2013-01-29
申请号:US13050888
申请日:2011-03-17
申请人: Helen Balinsky , Liqun Chen , Steven J. Simske
发明人: Helen Balinsky , Liqun Chen , Steven J. Simske
IPC分类号: G06F21/00
CPC分类号: G06F17/2229 , G06F21/6227 , H04L9/14 , H04L2209/60
摘要: A document management system includes a document. One or more of a plurality of map-files of the document correspond(s) with a step of a multi-step workflow associated with the document. A random nonce is generated for each of the steps of the multi-step workflow except for an initial step of the multi-step workflow. Each of the random nonces i) is incorporated as a map-file entry into a respective one of the plurality of map-files corresponding with a step of the multi-step workflow that directly precedes the step of the multi-step workflow for which the random nonce is generated and ii) is used to perform a nonce-based initiating operation a respective one of the plurality of map-files corresponding with the step of the multi-step workflow for which the random nonce is generated.
摘要翻译: 文件管理系统包括文件。 文档的多个地图文件中的一个或多个对应于具有与文档相关联的多步工作流的步骤。 为多步骤工作流程的每个步骤生成随机随机数,除了多步骤工作流程的初始步骤。 随机随机i)中的每一个被并入作为地图文件条目到与多步骤工作流的步骤相对应的多个地图文件中的相应一个,其直接在多步骤工作流的步骤之前,其中 生成随机随机数,并且ii)用于执行对应于生成随机随机数的多步骤工作流的步骤的多个映射文件中的相应一个映射文件的基于事件的发起操作。
-
公开(公告)号:US20120185759A1
公开(公告)日:2012-07-19
申请号:US13006181
申请日:2011-01-13
申请人: Helen BALINSKY , Steven J. Simske
发明人: Helen BALINSKY , Steven J. Simske
IPC分类号: G06F17/24
CPC分类号: G06Q10/103 , G06F21/6227 , G06F2221/2141
摘要: A method and system for collaboratively editing a composite document having a plurality of original document parts. For each of one or more original document parts, a non-editable version of the original document part may be stored. Edits to the original document part may be stored in a plurality of edit parts. Each of the plurality of edit parts may be editable by a single associated one of a plurality of users and may be non-editable by all other users of the plurality of users. The plurality of edit parts may be individually encrypted and the edit parts may be stored separately from the original document parts.
摘要翻译: 一种用于协同编辑具有多个原始文档部分的复合文档的方法和系统。 对于一个或多个原始文档部分中的每一个,可以存储原始文档部分的不可编辑版本。 可以将原始文档部分的编辑存储在多个编辑部分中。 多个编辑部分中的每一个可以由多个用户中的单个相关联的一个可编辑,并且可以由多个用户的所有其他用户不可编辑。 多个编辑部分可以单独加密,并且编辑部分可以与原始文档部分分开存储。
-
公开(公告)号:US09600448B2
公开(公告)日:2017-03-21
申请号:US13885953
申请日:2011-01-28
申请人: Helen Balinsky , Steven J. Simske
发明人: Helen Balinsky , Steven J. Simske
CPC分类号: G06F17/211 , G06F17/30011 , G06Q10/06 , G06Q10/103
摘要: Document management system includes a composite document (CD) and a mixed workflow, which includes an unordered stage followed by one of i) an ordered stage or ii) another unordered stage. The system includes a map-file (map) of the document (CD) for a participant (P) in the mixed workflow that is associated with the ordered or other unordered stage, and a wrap (W) of the map-file (map). Wrap (W) includes a number of map-file fragments (F) equal to or greater than a number of workflow participants (P) within a group (G) associated with the unordered stage. The number of map-file fragments (F) renders the document (CD) inaccessible to the participant (P) that is associated with the ordered or other unordered stage until each of the number of map-file fragments (F) is released by each of the workflow participants (P) within the group (G).
-
公开(公告)号:US09141900B2
公开(公告)日:2015-09-22
申请号:US14347303
申请日:2012-01-19
申请人: Steven J. Simske , Marie Vans , Helen Balinsky
发明人: Steven J. Simske , Marie Vans , Helen Balinsky
CPC分类号: G06K19/0614 , G06F21/602 , G06K7/12 , G06K19/06037 , G06K19/06046
摘要: A method and apparatus for encoding, in a simultaneous multiple security application, independently encrypted security data elements within a single matrix of blocks in a progressive barcode. The method and apparatus including, encoding information of a first data element within the matrix using black modules and, encoding information of a second data element within the matrix using color modules. The barcode being configured to be overprinted as it progresses through progressive states. The progressive barcode, resulting from the overprinting through the progressive states, masking the ability to conclusively determine the barcode in a previous state.
摘要翻译: 一种用于在同时多重安全应用中对逐行条形码的单个矩阵中的独立加密的安全数据元素进行编码的方法和装置。 所述方法和装置包括:使用黑色模块对所述矩阵内的第一数据元素的信息进行编码;以及使用颜色模块对所述矩阵内的第二数据元素的信息进行编码。 条形码被配置为在进行逐行状态时被套印。 通过逐行状态的叠印产生的逐行条形码,掩盖了在先前状态下最终确定条形码的能力。
-
-
-
-
-
-
-
-
-
搜索结果
212 条记录 (耗时 0.027 秒)
