20240020400. MANAGING ACCESS TO DATA simplified abstract (OnData, Inc.)
Contents
MANAGING ACCESS TO DATA
Organization Name
Inventor(s)
Shaofei Chen of Austin TX (US)
Daniel Cole Harrell of Colorado Springs CO (US)
MANAGING ACCESS TO DATA - A simplified explanation of the abstract
This abstract first appeared for US patent application 20240020400 titled 'MANAGING ACCESS TO DATA
Simplified Explanation
The patent application describes a system for managing access to data stored in a database. The system includes the ability to encrypt data using an application encryption algorithm and assign user-specific data access roles and permissions.
- The system stores a database with various fields of data.
- The data in the database can be encrypted using an application encryption algorithm.
- User-specific data access roles and permissions are defined, specifying which subset of the data each role has authorization to decrypt.
- A user token representing credentials and user-specific data access roles is generated by the access rights system.
- When a query for data is received, the system compares the user-specific data access role of the user token with the access rights system to identify the user-specific data permissions for that role.
Potential applications of this technology:
- Data security and access control in various industries such as healthcare, finance, and government.
- Securely managing sensitive information in cloud-based systems.
- Protecting personal data in online platforms and applications.
Problems solved by this technology:
- Ensuring that only authorized users have access to specific data.
- Protecting sensitive information from unauthorized access or breaches.
- Simplifying the management of user access roles and permissions.
Benefits of this technology:
- Enhanced data security and privacy.
- Improved control over data access and permissions.
- Simplified management of user roles and permissions.
- Increased compliance with data protection regulations.
Original Abstract Submitted
managing access to data, including storing a database that includes fields; encrypting data of all or some fields of the database using an application encryption algorithm; receiving data indicating user-specific data access roles and user-specific data permissions for each of the user-specific data access roles, each of the user-specific data permissions defining a subset of the data of the database that the corresponding user-specific data access role has authorization for decrypting the subset of the data; receiving a user token representing credentials and user-specific data access roles of an authorized user, wherein the user token is generated by the access rights system; receiving a query for requested data stored by the database; comparing the user-specific data access role of the user token with the user-specific data access roles of the access rights system to identify user-specific data permissions for the user-specific data access role of the user token.