Context-aware content object security

Assignee

• Box, Inc. · US

Inventors

• Alok Ojha · Newark, US
• Sivaramakrishnan Subramanian · Savanuru, IN
• Kechen Huang · Menlo Park, US
• Pal Ramanathan · Foster City, US
• Varun Parmar · Los Altos, US
• Yi Zhao · Ithaca, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/20
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

As a default, a global permissions model is established. The global permissions model serves for applying a first set of resource access permissions to shared content objects. Additionally, a set of context-aware access policies that govern user interactions over the shared content object is established. When a particular user requests an interaction over a shared content object, then interaction attributes associated with the request are gathered. The context-aware access policies are applied to the request by determining a set of extensible access permissions that are derived from the interaction attributes. The context-aware access policies are enforced by overriding the first set of resource access permissions with dynamically-determined access permissions. When a particular access request is denied, a response is generated in accordance with the set of extensible access permissions and the user is notified. In some cases, the access request is permitted, but only after the user provides a justification.