Preserving data protection with policy

Assignee

• MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

• Preston Derek Adam · Woodinville, US
• Narendra S. Acharya · Kirkland, US
• Innokentiy Basmov · Redmond, US
• Octavian T. Ureche · Renton, US
• Yogesh A. Mehta · Bellevue, US
• Alex M. Semenko · Issaquah, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/2107
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Data files are encrypted based on a key associated with an entity that sets a data protection policy controlling access to the data files. The data protection policy identifies various restrictions on how the plaintext data of the encrypted data in the data files can be used. The data files have corresponding metadata identifying the entity that sets the data protection policy, and processes that are running instances of applications that are allowed to access the plaintext data are also associated with the identifier of the entity. These identifiers of the entity, as well as the data protection policy, are used by an operating system of a computing device to protect the data in accordance with the data protection policy, including having the protection be transferred to other devices with the protected data, or preventing the protected data from being transferred to other devices.