TWI430130B - File usage permission management system - Google Patents
File usage permission management system Download PDFInfo
- Publication number
- TWI430130B TWI430130B TW98120325A TW98120325A TWI430130B TW I430130 B TWI430130 B TW I430130B TW 98120325 A TW98120325 A TW 98120325A TW 98120325 A TW98120325 A TW 98120325A TW I430130 B TWI430130 B TW I430130B
- Authority
- TW
- Taiwan
- Prior art keywords
- file
- network
- management system
- coupling interface
- data
- Prior art date
Links
Landscapes
- Storage Device Security (AREA)
Description
本發明係有關於電子檔案之使用權限,特定而言係有關於可自動回收檔案使用權限之檔案使用權限管理系統。The invention relates to the use rights of the electronic file, in particular, the file use right management system for automatically retrieving the use rights of the file.
傳統之電子檔案保密方法係有若干種,其中最常見者係利用軟體程式在電子檔案儲存時依照檔案產生者設定使用者或使用群組賦予特定權限,而當開啟電子檔案時,則依照使用者名稱及密碼判定使用者或使用群組是否賦予權限處理檔案,未經認可的使用者或使用群組將無法處理電子檔案,以防止機密電子檔案外洩。There are several types of traditional electronic file confidentiality methods. The most common ones use software programs to assign specific permissions to users or groups when the electronic files are stored. When the electronic files are opened, the users are The name and password determine whether the user or the group is authorized to process the file. Unauthorized users or groups will not be able to process the electronic file to prevent the leakage of confidential electronic files.
上述電子檔案儲存流程為電子檔案儲存時先行選擇是否設定使用權限,如否則直接存檔,如是則先設定使用者或使用群組,再設定使用權限而完成電子檔案存檔流程。再則,電子檔案開啟流程為軟體程式將電子檔案開啟時先行判斷開啟人是否為檔案產生者,如是則直接開啟並執行操作,如否則判斷是否為認可之使用者或使用群組,如否則拒絕開啟,如是則依所賦予之權限開啟電子檔案並執行操作。The above electronic file storage process selects whether to set the usage right first when the electronic file is stored, for example, if the file is directly archived, if the user or the group is set first, then the use permission is set to complete the electronic file archiving process. Furthermore, the electronic file opening process is to first determine whether the opener is the file producer when the electronic file is opened, and if so, directly open and perform the operation, such as otherwise determining whether it is an approved user or using a group, if otherwise rejecting Open, if yes, open the electronic file and perform operations according to the permissions granted.
然而,上述傳統電子檔案保密方法係存在若干問題。例如,上述電子檔案之權限內容係儲存於電子檔案內,因此若檔案產生者欲修改使用者或使用群組對檔案之權限時,除非檔案產生者能夠回收所有檔案,否則檔案產生者將無法修改使用者或使用群組對檔案之使用權限,如此則造成無法機動式修改檔案之使用權限。若某機密性檔案遭到原公司或機構內部人員攜出後,只要該原公司或機構內部人員知道該機密性檔案之帳密,則該機密性檔案則有可能會遭到該位原內部人員無限制地流通,而產生內部機密外洩之情況。是故,本發明提供一解決方案以克服上述傳統電子檔案保密方法所產生之無法機動式修改權限之問題。However, the above conventional electronic file confidentiality method has several problems. For example, the permission content of the above electronic file is stored in the electronic file, so if the file producer wants to modify the user or use the group right to the file, the file producer cannot modify the file unless the file producer can recycle all the files. The user or the use of the group to use the file, this will not be able to modify the file permissions. If a confidential file is carried out by the original company or internal personnel, as long as the original company or internal personnel knows the confidentiality of the confidential file, the confidential file may be subject to the original internal personnel. Unrestricted circulation, resulting in internal confidential leakage. Therefore, the present invention provides a solution to overcome the problem of the inability to manually modify the rights generated by the above-described conventional electronic file security method.
鑑於上述問題,本發明揭露一種檔案使用權限管理系統。In view of the above problems, the present invention discloses a file usage rights management system.
於一觀點中,本發明之檔案使用權限管理系統包含網路;伺服器,上述伺服器包含第一網路耦合介面以及第一資料庫,其中上述第一網路耦合介面係耦合至上述網路,以及上述第一資料庫係包含複數檔案識別碼以及複數權限資料;以及使用者端設備,上述使用者端設備包含第二網路耦合介面、儲存單元以及檔案使用過濾模組,其中上述第二網路耦合介面係耦合至上述網路,其中上述儲存單元包含一檔案,上述檔案係伴隨一檔案識別碼,其中上述檔案使用過濾模組係用以過濾使用者對上述檔案之使用。In one aspect, the file usage rights management system of the present invention includes a network; the server includes a first network coupling interface and a first database, wherein the first network coupling interface is coupled to the network And the first database includes a plurality of file identifiers and a plurality of rights data; and a user terminal device, wherein the user equipment includes a second network coupling interface, a storage unit, and a file usage filtering module, wherein the second The network coupling interface is coupled to the network, wherein the storage unit includes a file, and the file is accompanied by a file identification code, wherein the file use filter module is used to filter the use of the file by the user.
本發明之一優點係為本檔案使用權限管理系統可機動性管理檔案之使用權限。One of the advantages of the present invention is that the file usage rights management system can use the mobility management file.
本發明之另一優點係為本檔案使用權限管理系統可有效防止意外流出之檔案被外部人士使用,杜絕機密資料外洩而被任意使用之風險。Another advantage of the present invention is that the file usage rights management system can effectively prevent accidentally outflowing files from being used by outsiders, and eliminate the risk of unauthorized use of confidential data.
本發明之再另一優點係為本檔案使用權限管理系統可使不同階級之使用者對同一檔案有不同層級之使用權限,有效管理機密性檔案只能被階級較高之使用者所使用。Yet another advantage of the present invention is that the file usage rights management system allows users of different classes to have different levels of access to the same file, and effective management of confidential files can only be used by users of higher ranks.
此類優點從以下較佳實施例之敘述並伴隨後附圖式及申請專利範圍將使讀者得以清楚了解本發明。The advantages of the present invention will be apparent from the following description of the preferred embodiments of the invention.
本發明將配合較佳實施例與隨附之圖示詳述於下。應可理解者為本發明中所有之較佳實施例僅為例示之用,並非用以限制本發明。因此除文中之較佳實施例外,本發明亦可廣泛地應用在其他實施例中。且本發明並不受限於任何實施例,應以隨附之申請專利範圍及其同等領域而定。The invention will be described in conjunction with the preferred embodiments and the accompanying drawings. It is to be understood that the preferred embodiments of the present invention are intended to be illustrative only and not to limit the invention. Therefore, the invention may be applied to other embodiments in addition to the preferred embodiments. The invention is not limited to any embodiment, but should be determined by the scope of the appended claims and their equivalents.
本發明係揭露一種檔案使用權限管理系統,以管理使用者對檔案之使用權限。參照第一圖,於本發明之較佳實施例中,本發明之檔案使用權限管理系統10包含使用者端設備101,例如個人或筆記型電腦、個人數位助理(PDA)等、伺服器110以及網路118。網路118包含但不限於區域網路(Local Area Network;LAN)、網際網路(Internet)、虛擬私人網路(Virtual Private Network;VPN)等各類網路。於本發明之一實施例中,使用者端設備101包含處理單元102、儲存單元103、檔案使用過濾模組106以及網路耦合介面109。儲存單元103、檔案使用過濾模組106以及網路耦合介面109係各別耦合至處理單元102。儲存單元103係用以儲存至少一檔案例如檔案104,每一檔案例如檔案104係伴隨一唯一之檔案識別碼(File ID)105。檔案使用過濾模組106係用以過濾使用者對每一檔案例如檔案104之使用權限。此處所述對檔案104之使用權限包含但不限於可否讀、可否寫、可否列印、可否複製等。於本發明之一實施例中,檔案使用過濾模組106可以軟體實施。檔案使用過濾模組106係包含資料庫107,資料庫107中儲存有至少一權限資料108。網路耦合介面109係用以耦合至網路118。網路耦合介面109包含有線網路耦合介面或無線網路耦合介面。The present invention discloses a file usage rights management system for managing user rights to use files. Referring to the first figure, in a preferred embodiment of the present invention, the file usage rights management system 10 of the present invention includes a user terminal device 101, such as a personal or notebook computer, a personal digital assistant (PDA), etc., a server 110, and Network 118. The network 118 includes, but is not limited to, a local area network (LAN), an Internet, and a virtual private network (VPN). In an embodiment of the present invention, the user equipment 101 includes a processing unit 102, a storage unit 103, a file usage filtering module 106, and a network coupling interface 109. The storage unit 103, the file usage filter module 106, and the network coupling interface 109 are each coupled to the processing unit 102. The storage unit 103 is for storing at least one file, such as the file 104, and each file, such as the file 104, is accompanied by a unique file ID (File ID) 105. The file usage filter module 106 is used to filter the user's access rights to each file, such as the file 104. The usage rights for the file 104 described herein include, but are not limited to, readability, writeability, printability, copyability, and the like. In an embodiment of the invention, the file usage filter module 106 can be implemented in software. The file usage filter module 106 includes a database 107 in which at least one rights data 108 is stored. Network coupling interface 109 is coupled to network 118. The network coupling interface 109 includes a wired network coupling interface or a wireless network coupling interface.
於本發明之一實施例中,如第一圖所示,伺服器110係包含處理單元111、控制台112、資料庫113以及網路耦合介面117。控制台112、資料庫113以及網路耦合介面117係各別耦合至處理單元111。伺服器110係透過網路耦合介面117耦合至網路118,以進一步透過網路耦合介面109耦合至使用者端設備101。資料庫113係用以儲存複數個使用者之帳號資料114、複數個檔案識別碼115以及複數個權限資料116。控制台112係用以設定資料庫113中所儲存之帳號資料114、檔案識別碼115以及權限資料116,例如控制台112可用以編輯例如刪除、變更或新增資料庫113中所儲存之帳號資料114、檔案識別碼115以及權限資料116,或可用以設定編輯例如刪除、變更或新增帳號資料114、檔案識別碼115以及權限資料116之時間排程。伺服器110係經過帳密管理機制過濾使用者之登入。網路耦合介面117係用以耦合至網路118。網路耦合介面117包含有線網路耦合介面或無線網路耦合介面。In an embodiment of the present invention, as shown in the first figure, the server 110 includes a processing unit 111, a console 112, a database 113, and a network coupling interface 117. Console 112, database 113, and network coupling interface 117 are each coupled to processing unit 111. The server 110 is coupled to the network 118 via a network coupling interface 117 for further coupling to the consumer device 101 via the network coupling interface 109. The database 113 is used to store a plurality of user account data 114, a plurality of file identification codes 115, and a plurality of rights data 116. The console 112 is configured to set the account data 114, the file identifier 115, and the rights data 116 stored in the database 113. For example, the console 112 can be used to edit, for example, delete, change, or add account data stored in the database 113. 114. The file identification code 115 and the rights information 116 may be used to set a time schedule for editing, for example, deleting, changing or adding the account information 114, the file identification code 115, and the rights information 116. The server 110 filters the user's login through the account management mechanism. Network coupling interface 117 is coupled to network 118. The network coupling interface 117 includes a wired network coupling interface or a wireless network coupling interface.
如第二圖所示,帳號資料214中之每一帳號資料,例如帳號1及帳號2,係對應檔案識別碼215中之不同群組之檔案識別碼。如第二圖所示,檔案識別碼215中之每一檔案識別碼係對應至權限資料216中之一權限資料,例如權限資料1、權限資料2或權限資料3,其中每一權限資料之權限層級不同。應注意者為,於本發明之一實施例中,如第二圖所示,雖不同帳號可對應至同一檔案識別碼,然而不同帳號所對應之同一檔案識別碼可對應至不同層級之權限資料。亦即,雖不同之使用者可使用同一檔案,然而不同使用者對同一檔案之使用權限層級可為不同。例如,第二圖中帳號1所對應之檔案識別碼1係對應至權限資料1,而帳號2所對應之檔案識別碼1係對應至權限資料2。反之,於本發明之另一實施例中,不同帳號所對應之同一檔案識別碼可對應至同一層級之權限資料。亦即,不同使用者對同一檔案之使用權限層級亦可為相同。例如,第二圖中帳號1所對應之檔案識別碼2係對應至權限資料1,而帳號2所對應之檔案識別碼2亦對應至權限資料1。As shown in the second figure, each account data in the account information 214, such as account number 1 and account number 2, is a file identification code corresponding to a different group in the file identification code 215. As shown in the second figure, each file identification code in the file identification code 215 corresponds to one of the rights data in the permission data 216, such as the rights data 1, the rights data 2, or the rights data 3, wherein the rights of each rights data The level is different. It should be noted that, in an embodiment of the present invention, as shown in the second figure, although different account numbers may correspond to the same file identifier, the same file identifier corresponding to different accounts may correspond to different levels of rights data. . That is, although different users can use the same file, different users can use different levels of the same file. For example, in the second figure, the file identification code 1 corresponding to the account number 1 corresponds to the authority data 1, and the file identification code 1 corresponding to the account number 2 corresponds to the authority data 2. On the other hand, in another embodiment of the present invention, the same file identification code corresponding to different account accounts may correspond to the rights data of the same level. That is, different users can use the same privilege level for the same file. For example, in the second figure, the file identification code 2 corresponding to the account number 1 corresponds to the authority data 1, and the file identification code 2 corresponding to the account number 2 also corresponds to the authority data 1.
於本發明之一實施例中,當使用者欲利用使用者端設備101使用儲存單元103所儲存之檔案104時,檔案使用過濾模組106遂啟動並取得檔案104之檔案識別碼105,並透過網路耦合介面109耦合至網路118,以進一步透過網路耦合介面117耦合並連線至伺服器110。使用者將被要求輸入帳號密碼以登入伺服器110,通過認證後檔案使用過濾模組106將檔案識別碼105透過網路118傳輸至伺服器110之資料庫113。資料庫113於接收上述檔案識別碼105後,使用者之帳號以及上述檔案識別碼105將被作為參數於權限資料116中搜尋出上述帳號及上述檔案識別碼105所對應之權限資料,並將搜尋所得之權限資料透過網路118傳輸至檔案使用過濾模組106並儲存於其內之資料庫107中,以形成權限資料108。權限資料108中記載有該使用者對檔案104之使用權限,包含但不限於可否讀、可否寫、可否列印、可否複製等。接著,檔案使用過濾模組106遂利用權限資料108中所記載之使用權限過濾使用者對檔案104之使用。例如,若權限資料108係記載可讀、不可寫、可列印及不可複製,則使用者遂無法寫入及複製檔案104,僅能讀及列印檔案104。In an embodiment of the present invention, when the user wants to use the client device 101 to use the file 104 stored by the storage unit 103, the file usage filtering module 106 starts and obtains the file identification code 105 of the file 104, and transmits The network coupling interface 109 is coupled to the network 118 for further coupling and connection to the server 110 via the network coupling interface 117. The user will be required to enter the account password to log in to the server 110, and the file identification filter 105 will be transmitted to the database 113 of the server 110 via the network 118 through the authenticated file usage filter module 106. After receiving the file identification code 105, the user database and the file identification code 105 are used as parameters to search the authority data 116 for the account data and the authority data corresponding to the file identification code 105, and search for The obtained authority data is transmitted to the file usage filtering module 106 via the network 118 and stored in the database 107 therein to form the authority data 108. The authority data 108 describes the user's authority to use the file 104, including but not limited to whether it is readable, readable, printable, copyable, or the like. Next, the file usage filter module 106 uses the usage rights described in the rights information 108 to filter the user's use of the file 104. For example, if the rights data 108 is readable, non-writable, printable, and non-reproducible, the user cannot write and copy the file 104, and can only read and print the file 104.
於本發明之一實施例中,當檔案104之產生者或管理者欲更改特定之使用者對檔案104之使用權限,則上述檔案產生者或管理者可連線至伺服器110且輸入帳密以登入伺服器110,並利用控制台112變更資料庫113中該特定使用者之帳號所對應之檔案識別碼105所對應之權限資料。如此,當該特定使用者欲利用使用者端設備101使用檔案104時,連線至伺服器110所下載之權限資料將與先前連線下載所得之權限資料108不同,該特定使用者對檔案104所能進行之動作遂受改變。當檔案104之產生者或管理者欲更改每一使用者對檔案104之使用權限時,則對每一有對應至檔案識別碼105之使用者帳號重複上述步驟。In an embodiment of the present invention, when the producer or manager of the file 104 wants to change the usage rights of the particular user to the file 104, the file producer or manager can connect to the server 110 and enter the account. To log in to the server 110, the console 112 is used to change the authority data corresponding to the file identifier 105 corresponding to the account of the specific user in the database 113. Thus, when the specific user wants to use the file 104 by the user equipment 101, the rights data downloaded to the server 110 will be different from the rights data 108 obtained by the previous connection, and the specific user pairs the file 104. The actions that can be performed are subject to change. When the producer or manager of the file 104 wishes to change the usage rights of each user to the file 104, the above steps are repeated for each user account corresponding to the file identifier 105.
於本發明之另一實施例中,當檔案104之產生者或管理者欲禁止特定之使用者使用檔案104時,則上述檔案產生者或管理者可連線至伺服器110且輸入帳密以登入伺服器110,並利用控制台112刪除資料庫113中該特定使用者之帳號所對應之檔案識別碼105所對應之權限資料,或變更上述權限資料之使用權限層級至最低級,亦即不可對檔案104進行任何動作。如此,當該特定使用者欲利用使用者端設備101使用檔案104時,雖連線至伺服器110但無法下載到檔案識別碼105所對應之權限資料,或下載所得之權限資料為最低級之使用權限,該特定使用者遂無法對檔案104進行任何動作。當檔案104之產生者或管理者欲禁止每一使用者使用檔案104時,則對每一有對應至檔案識別碼105之使用者帳號重複上述步驟。In another embodiment of the present invention, when the producer or manager of the file 104 wants to prohibit a particular user from using the file 104, the file producer or manager can connect to the server 110 and enter the account to Log in to the server 110, and use the console 112 to delete the authority data corresponding to the file identifier 105 corresponding to the account of the specific user in the database 113, or change the permission level of the permission data to the lowest level, that is, Perform any action on file 104. In this way, when the specific user wants to use the file 104 by the user equipment 101, although the server 110 is connected to the server 110, the authority data corresponding to the file identifier 105 cannot be downloaded, or the rights obtained by the download are the lowest level. With the permission, the specific user cannot perform any action on the file 104. When the producer or manager of the file 104 wants to prohibit each user from using the file 104, the above steps are repeated for each user account corresponding to the file identifier 105.
於本發明之另一實施例中,當檔案104之產生者或管理者欲設定檔案104於一預定時間點後或經過一預定時段後任何使用者或特定使用者均無法使用之,或欲設定於一預定時間點後或經過一預定時段後自動變更任何使用者或特定使用者對檔案104之使用權限,則上述檔案產生者或管理者可連線至伺服器110且輸入帳密以登入伺服器110,並利用控制台112來設定預定要刪除每一使用者或特定使用者之帳號於資料庫113中所對應之檔案識別碼105所對應之權限資料之時間排程,或設定預定要變更每一使用者或特定使用者之帳號於資料庫113中所對應之檔案識別碼105所對應之權限資料之時間排程。如此,當上述預定時間點到達或預定時段過去後,任何使用者或特定使用者欲利用使用者端設備使用檔案104時,雖連線至伺服器110但無法下載到檔案識別碼105所對應之權限資料或下載所得之權限資料與先前下載所得之權限資料已不同,故任何使用者或特定使用者於上述預定時間點到達或預定時段過去後遂無法對檔案104進行動作或能進行之動作已受到改變。上述可設定時間排程編輯權限資料之技術則係稱為文件自動回收機制,其優點係為檔案產生者或管理者可彈性管理各層級之機密性檔案之可使用時間點或可使用時間段,亦即使用本檔案使用權限管理系統可彈性控制各機密檔案之流通及使用時間,藉由設定時間排程而自動回收文件檔案之使用權限。In another embodiment of the present invention, when the producer or manager of the file 104 wants to set the file 104 to be unavailable to any user or a specific user after a predetermined time point or after a predetermined period of time, or to set After automatically changing the usage rights of any user or specific user to the file 104 after a predetermined time point or after a predetermined time period, the file producer or manager can connect to the server 110 and enter the account to log in to the server. The controller 110 is configured to set a time schedule for which the permission data corresponding to the file identification code 105 corresponding to the account of each user or a specific user in the database 113 is to be deleted, or the scheduled change is to be changed. The time schedule of the rights data corresponding to the file identifier 105 corresponding to the account number of each user or a specific user in the database 113. In this way, when the predetermined time point arrives or the predetermined time period elapses, when any user or a specific user wants to use the file 104 by the user equipment, although it is connected to the server 110, the file identifier 105 cannot be downloaded. The permission data or the obtained permission data are different from the previously obtained permission data. Therefore, any user or specific user cannot act on the file 104 or can perform the action after the predetermined time point or the predetermined time period has elapsed. Changed. The above-mentioned technology for setting time schedule editing permission data is called automatic file recovery mechanism, and the advantage is that the file producer or manager can flexibly manage the usable time point or the usable time period of the confidentiality files of each level. That is to say, the use of the file use rights management system can flexibly control the circulation and use time of each confidential file, and automatically reclaim the use rights of the file file by setting the time schedule.
如上所述,本發明係提供一種檔案使用權限管理系統,其可機動性管理檔案之使用權限,儘管檔案例如機密性檔案流出,仍能透過本發明之檔案使用權限管理系統防止有心人士使用流出之檔案,亦可隨時變更公司或機構內部人員對機密性檔案之使用權限。此外,因在本檔案使用權限管理系統中欲使用檔案必須先連線至伺服器,是故若無法取得伺服器帳密之認證或無法連線至伺服器則無法下載或更新權限資料,亦即無法使用檔案。因此,本發明之檔案使用權限管理系統可有效防止意外流出之檔案被外部人士使用,杜絕機密資料外洩而被任意使用之風險。再者,如上所述,本發明之檔案使用權限管理系統之伺服器之資料庫中之帳號資料、檔案識別碼及權限資料之對應關係可使不同階級之使用者對同一檔案有不同層級之使用權限,有效管理機密性檔案只能被階級較高之使用者所使用。As described above, the present invention provides a file usage right management system, which can manage the use rights of a file, and can prevent the use of the outgoing person through the file use right management system of the present invention, even if the file, for example, a confidential file flows out. The file can also be used to change the access rights of confidential documents in the company or in the organization. In addition, because the file to be used in this file usage rights management system must be connected to the server first, it is impossible to download or update the permission data if the server account cannot be authenticated or cannot be connected to the server. Unable to use file. Therefore, the file use right management system of the present invention can effectively prevent accidentally outgoing files from being used by outsiders, and prevent the risk of unauthorized use of confidential data. Furthermore, as described above, the correspondence between the account data, the file identification code, and the authority data in the database of the file usage rights management system of the present invention enables users of different classes to use different levels of the same file. Permissions, effective management of confidential files can only be used by users with higher levels.
對熟悉此領域技藝者,本發明雖以較佳實例闡明如上,然其並非用以限定本發明之精神。在不脫離本發明之精神與範圍內所作之修改與類似的配置,均應包含在下述之申請專利範圍內,此範圍應覆蓋所有類似修改與類似結構,且應做最寬廣的詮釋。The present invention has been described above by way of a preferred example, and is not intended to limit the spirit of the invention. Modifications and similar configurations made within the spirit and scope of the invention are intended to be included within the scope of the appended claims.
10...檔案使用權限管理系統10. . . File usage rights management system
101...使用者端設備101. . . User equipment
102...處理單元102. . . Processing unit
103...儲存單元103. . . Storage unit
104...檔案104. . . file
105...檔案識別碼105. . . File identification code
106...檔案使用過濾模組106. . . File filter module
107...資料庫107. . . database
108...權限資料108. . . Permission data
109...網路耦合介面109. . . Network coupling interface
110...伺服器110. . . server
111...處理單元111. . . Processing unit
112...控制台112. . . Console
113...資料庫113. . . database
114...帳號資料114. . . Account information
115...檔案識別碼115. . . File identification code
116...權限資料116. . . Permission data
117...網路耦合介面117. . . Network coupling interface
118...網路118. . . network
214...帳號資料214. . . Account information
215...檔案識別碼215. . . File identification code
216...權限資料216. . . Permission data
上述元件,及本發明之特徵與優點,藉由配合閱讀實施方法及其圖式後將更為明顯,其中:The above elements, and the features and advantages of the present invention, will be more apparent by the accompanying reading method and the drawings thereof, wherein:
第一圖係為根據本發明之較佳實施例之檔案使用權限管理系統之示意圖。The first figure is a schematic diagram of a file usage rights management system in accordance with a preferred embodiment of the present invention.
第二圖係為根據本發明之較佳實施例之檔案使用權限管理系統之伺服器之資料庫中之帳號資料、檔案識別碼及權限資料之對應關係圖。The second figure is a correspondence diagram of account data, file identification code and authority data in the database of the server of the file usage authority management system according to the preferred embodiment of the present invention.
10...檔案使用權限管理系統10. . . File usage rights management system
101...使用者端設備101. . . User equipment
102...處理單元102. . . Processing unit
103...儲存單元103. . . Storage unit
104...檔案104. . . file
105...檔案識別碼105. . . File identification code
106...檔案使用過濾模組106. . . File filter module
107...資料庫107. . . database
108...權限資料108. . . Permission data
109...網路耦合介面109. . . Network coupling interface
110...伺服器110. . . server
111...處理單元111. . . Processing unit
112...控制台112. . . Console
113...資料庫113. . . database
114...帳號資料114. . . Account information
115...檔案識別碼115. . . File identification code
116...權限資料116. . . Permission data
117...網路耦合介面117. . . Network coupling interface
118...網路118. . . network
Claims (13)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| TW98120325A TWI430130B (en) | 2009-06-17 | 2009-06-17 | File usage permission management system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| TW98120325A TWI430130B (en) | 2009-06-17 | 2009-06-17 | File usage permission management system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| TW201101093A TW201101093A (en) | 2011-01-01 |
| TWI430130B true TWI430130B (en) | 2014-03-11 |
Family
ID=44836886
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| TW98120325A TWI430130B (en) | 2009-06-17 | 2009-06-17 | File usage permission management system |
Country Status (1)
| Country | Link |
|---|---|
| TW (1) | TWI430130B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103246833A (en) * | 2012-02-01 | 2013-08-14 | 精品科技股份有限公司 | Method for executing high-authorization software in low-authorization mode |
| TWI637282B (en) * | 2017-04-11 | 2018-10-01 | 精品科技股份有限公司 | System and method of controlling and limiting number of files access |
-
2009
- 2009-06-17 TW TW98120325A patent/TWI430130B/en active
Also Published As
| Publication number | Publication date |
|---|---|
| TW201101093A (en) | 2011-01-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7237119B2 (en) | Method, system and computer program for managing user authorization levels | |
| JP6932175B2 (en) | Personal number management device, personal number management method, and personal number management program | |
| US7080224B2 (en) | Data processing method with restricted data arrangement, storage area management method, and data processing system | |
| CN1585325B (en) | Zoned based security administration for data items | |
| US20070106668A1 (en) | File management system, information processing apparatus, authentication system, and file access authority setting system | |
| CN101677352A (en) | Document management system, document producing apparatus, document use managing apparatus, and computer readable medium | |
| KR100879808B1 (en) | Approching control system to the file server | |
| CN107358122A (en) | The access management method and system of a kind of data storage | |
| CN113067871B (en) | Digital file management method based on blockchain technology | |
| CN107016293A (en) | Scoped resource authorization policies | |
| JPH06175842A (en) | Integrated document processor | |
| JP4122042B1 (en) | Access authority control system | |
| JP2006155535A (en) | Personal information search program, personal information management system and personal information management function-equipped information processor | |
| TWI430130B (en) | File usage permission management system | |
| CN101957893B (en) | File permission management system | |
| US9202069B2 (en) | Role based search | |
| JP2018013875A (en) | Access management system | |
| JP4191239B2 (en) | Access authority control system | |
| CN110472423A (en) | A kind of nuclear power station file permission management method, device and equipment | |
| CN105205403A (en) | Method and system for managing and controlling file data of local area network based on file filtering | |
| JP2009080560A (en) | Access authority control system | |
| KR101304452B1 (en) | A cloud system for document management using location | |
| JP4005120B1 (en) | Access authority control system | |
| JP4723930B2 (en) | Compound access authorization method and apparatus | |
| JP2009118011A (en) | Image forming apparatus and system |