System and method of differential access control of shared data

Assignee

• Amadeus S.A.S. · FR

Inventors

• Catherine Bignotti · Biot, FR
• Bertrand Alberola · Mouans-Sartoux, FR
• Véronique LEROY · Biot, FR
• Jean-Chafic Hays · Nice, FR
• Pierre Brun · Valbonne, FR

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/6218
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A method of data access control in an intermediation server includes: storing a record containing: a record identifier; a plurality of sections each containing data; and in association with each section, an owner identifier selected from a set of requester identifiers corresponding to respective requester subsystems; storing access control data corresponding to each requester identifier; wherein the access control data for a given requester identifier indicates which other requester identifiers are permitted to access a section of the record having the given requester identifier associated therewith as the owner identifier; responsive to receiving, from one of the requester subsystems, a request containing the record identifier and an active one of the requester identifiers corresponding to the active requester subsystem: granting access to a subset of the sections according to the active requester identifier, the owner identifiers and the access control data.