Browse Prior Art Database

Advanced Rule-Based ACL Management

IP.com Disclosure Number: IPCOM000248662D
Publication Date: 2016-Dec-22
Document File: 3 page(s) / 108K

Publishing Venue

The IP.com Prior Art Database

Abstract

Disclosed is a method Access Control List (ACL) management for document sharing that associates a document to a rule set and a rule set to a collection of rules. A rule associates a condition with the security that will be applied to the document.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 67% of the total text.

1

Advanced Rule-Based ACL Management

Desired access to electronic documents and other business objects frequently and unexpectedly may change. For example, if a patient changes primary care doctors, access to the patient's online medical records needs to be transferred from the old doctor to the new one. At the very least, the new doctor needs to be given access to the patient’s medical records. Changing access to the patient’s documents may be time consuming and error prone.

A system is needed to automate security access to online documents based on changes associated with the documents.

The core idea of the novel solution is to associate a document to a rule set and a rule set to a collection of rules. A rule associates a condition with the security that will be applied to the document. The security can be defined through an Access Control List (ACL). If a document's metadata changes, (e.g., Primary Physician), a rules database associated with the novel system can automatically determine and set the proper access to the document.

For example, when a doctor receives a new patient's file, the medical team that works with this doctor needs read access on that file. In order to do that, the proposed system builds a rule set such as:

· Rule 1: If doctor metadata equals Dr. A, then set the ACL that gives full access to the file to Dr. Ad' direct associates.

· Rule 2: If doctor metadata equals Dr. A, then set the ACL that gives read access to the file to Dr. A’s receptionist.

· R...