Browse Prior Art Database

Method and System for Providing Location-based Access to Sensitive Data

IP.com Disclosure Number: IPCOM000236057D
Publication Date: 2014-Apr-03
Document File: 2 page(s) / 80K

Publishing Venue

The IP.com Prior Art Database

Abstract

A method and system is disclosed for controlling access to sensitive data by utilizing location data in addition to password authentication.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 51% of the total text.

Page 01 of 2

Method and System for Providing Location-based Access to Sensitive Data

Disclosed is a method and system for controlling access to sensitive data such as, but not limited to, a user account information, a bank account information, one or more personnel records and an enterprise account information on an electronic device based
on location data. The sensitive data can be data located on the electronic device. The electronic device, can be, but need not be limited to, a smart phone and a tablet with built in Global Positioning System (GPS) receivers and other electronic devices retrofit to have similar technologies added. The method and system utilizes GPS information of the electronic device along with one or more registered locations stored on the electronic device along with a password authentication in order to restrict access to the sensitive data. The one or more registered locations can be, but need not be limited to, a work location and other trusted sites. The one or more registered locations can be determined by one or more of, but not limited to, a security administrator generating standard or individual profiles for one or more electronic devices.

Further, the sensitive data can have one or more levels of access restriction based on the location data. For example, sensitive data such as the one or more personnel records can be accessible in office only. Taking another example, the method and system can enable access to the sensitive data only within one of an actual work site and a user's home. Further, if an individual is traveling, the method and system can add one or more non-local work-sites as authorized locations. If the authorized locations are in foreign countries, the method and system can take into consideration one or more laws regarding data usage and security associated with the foreign countries. For example, the sensitive data tagged as defense related by government regulations have restricted access within certain country borders.

In order to restrict access to the sensitive data, the method and system initially creates ranges of trusted GPS coordinates during an encryption process on the electronic device for identifying the one or more registered lo...