315 results about "Access structure" patented technology

A lancet depth adjustment assembly structured to be used use with a lancet device of the type including a lancet disposed movably within a housing so as to pass into a piercing orientation wherein a piercing tip of the lancet protrudes from a piercing aperture defined in the housing. The lancet depth adjustment assembly includes a depth adjustment element movably secured in overlying relation to the piercing aperture of the housing and having a piercing access structured to permit passage of the piercing tip of the lancet therethrough. The depth adjustment element is structured to be interposed between a finger of a patient and the piercing aperture so as to define a spacing therebetween, and accordingly define a depth to which the piercing tip, which protrudes a defined amount from the housing, penetrates the body part. Furthermore, the depth adjustment element is constructed of a varying thickness so as to vary the spacing between the body part and the piercing aperture in accordance with a thickness of a portion of the depth adjustment element disposed in overlying relation to the piercing aperture at a time of operation of the lancet device.

In one embodiment, the present invention is a method and apparatus for encrypting data for fine-grained access control. One embodiment of a method for encrypting data includes encrypting the data as a ciphertext, labeling the ciphertext with a set of one or more descriptive attributes, generating a decryption key for decrypting the ciphertext, associating an access structure with the decryption key, such that the data is recoverable from the ciphertext using the decryption key only if the set of one or more descriptive attributes satisfies the access structure, and outputting the ciphertext and the decryption key.

A method and a system for accessing data in a computer-based data processing system is described. The method comprises the steps of initiating and maintaining data access nodes in a variable access structure. Each access node is provided with references to other access nodes and/or to data items representing an object, each data item carrying only the amount of information which is relevant for its purpose. The data items or the references are provided with a time parameter thus enabling version control and the possibility to handle static or slowly changing data and frequently changed and updated data in a corresponding manner. The access nodes comprise access control parameters for access control from a safety point of view as well as for enabling different views of the access structure and underlying data and objects.

An improved method and system for providing path-level access control to a structured document in a collection stored in a database, where the structured document includes a plurality of nodes is disclosed. The method includes the steps of providing an access control policy for the collection, where the access control policy comprises a plurality of access control rules, generating a path for each node of the plurality of nodes in the document, and generating for each path associated with a node a corresponding value expression based on at least one access control rule of the plurality of access control rules. According to the method and system of the present invention, the corresponding value expression is utilized during access control evaluation to determine whether a user is allowed to access a node in the structured document.

A system and related techniques generate and maintain a unified product index, to perform searching and browsing in an online product, service, content or information catalog. A user investigating, for example, a set of retail offerings of digital cameras may for instance browse through a Web site layout or taxonomy to locate products of interest, such as cameras having resolution in the range of 3-4 megapixels or in the price range of $200-300. Alternatively, the user may input search terms in a search dialogue box to locate those or other features. Unlike conventional e-commerce platforms in which search may be performed against structured databases while browsing may access unstructured HTML or other descriptive material, according to the invention navigation and searching may be integrated and both access a structured index derived from product descriptions as well as traditional SQL or other structured data. A user may thus transparently move between browsing the Web site and searching the Web site, refining their search or browsing activity in a seamless fashion. The HTML or other unstructured data may in one regard be processed by an index engine to identify product attributes such as type (electronics), size, price, weight or other specifications as well as attribute values, which may be sorted or stored in a separate table. A set of results generated by conducting an initial search may thus be continued or refine by further browsing down to a particular product or other level of detail. Conversely a user who has browsed to a given level of detail, such as digital camcorders priced less than $700, may initiate a search through products at that level of the hierarchy without resetting search terms or position in the taxonomy. Greater ease of use, more efficient location of products or services and less dead-end pathways are thus achieved.

A gaming machine includes a gaming machine cabinet defining an upper cabinet volume and a cabinet front opening to the upper cabinet volume. A gaming machine panel is mounted on the gaming machine cabinet in a panel operating position in which the gaming machine panel registers with and covers at least a base area of the cabinet front opening. The gaming machine further includes a translation structure connected between the gaming machine panel and the gaming machine cabinet. The translation structure is operable enable the gaming machine panel to be moved from the panel operating position upwardly to a cabinet open position. In this cabinet open position the gaming machine panel remains supported by the gaming machine cabinet and is removed from a base area of the cabinet front opening.

The invention discloses a key encryption method based on file attribution. The key encryption method comprises the following steps of: receiving a user file, generating an attribution aggregate, an access structure tree, a main key and a public key according to the user file, randomly generating symmetric keys, encrypting the user file by using the symmetric keys and a symmetric encryption algorithm to obtain data cipher text, encrypting the symmetric keys by utilizing the public key and the access structure tree to generate a key cipher text, generating a private key associated with the attribution aggregate by utilizing the main key and the attribution aggregate, transmitting the key cipher text and the data cipher text to a server to store, obtaining the key cipher text and the data cipher text from the server by a user, decrypting the key cipher text by using the private key by the user to judge whether the attribution aggregate associated with the private key meets the access structure tree or not, and if meeting the access structure tree, decrypting the symmetric key and decrypting the data cipher text by utilizing the symmetric key through the user to obtain plaintext data. According to the key encryption method based on the file attribution, disclosed by the invention, data is encrypted by the symmetric encryption algorithm, the safety of the symmetric key is protected based on attribution encryption, and the high-efficiency safe access of encrypted data is realized.

A method and apparatus system for generating a configurator. According to one embodiment of the invention, a customizable product class is created. The customizable product class includes a set of one or more attributes to define the customizable product class. A component product class is added to the customizable product class, where the component product class is a subclass of the customizable product. A customizable UI is mapped to the customizable product class, where the customizable UI provides access structure to the configurator.

A configurator using structure and rules to provide a user interface. According to one embodiment of the invention, a customizable product class is created. The customizable product class includes a set of one or more attributes to define the customizable product class. A component product class is added to the customizable product class, where the component product class is a subclass of the customizable product. A customizable class rule is associated to the customizable product class, the customizable class rule including expressions which provide conditions on component products added to the customizable product. A customizable UI is mapped to the customizable product class, where the customizable UI provides access structure to the configurator.

A communication system with an improved network access structure for inter-cell cooperation is provided. The communication system includes a central unit and at least one radio access unit. The at least one radio access unit may form at least one virtual cell by merging or separating cells of radio access units according to a distribution of terminals, statuses of channels, an amount of traffic, and the like.

The embodiment of the application provides a mobile terminal and an access control method and system based on a trusted security environment. The access control method based on the trusted security environment comprises the following steps: encrypting a private file with a storage key in advance in the trusted security environment, and encrypting the storage key with CPABE and the access structureof the private file; verifying the identity of a client when receiving a trusted security environment access request initiated by the client in an ordinary execution environment; generating the CPABEprivate key of the client according to the client attribute set carried by a file access request when receiving the file access request initiated by the client after passing the identity verification; obtaining the corresponding private file according to the CPABE private key when the client attribute set satisfies the access structure of the corresponding file ciphertext; and returning the private file to the client. The embodiment of the application can improve the information security of the mobile terminal.

The invention discloses an attribute-based multi-keyword ciphertext retrieval method under the background of multiple data owners and mainly solves a problem that the existing technology only supports single-keyword ciphertext retrieval. A technical scheme of the method comprises the following steps that a searchable encryption technology and an encryption strategy based on the ciphertext attribute are combined, and a keyword set index is established under the scene of multiple data owners according to access structures of the data owners and a keyword set of the ciphertext; a data user generates a trap door according to a query keyword set; and the data user utilizes the trap door to realize multi-keyword query of the ciphertext. According to the method, the load of local data storage and management of the data owners is relieved, and the method supports the data user to carry out multi-keyword precise query on the ciphertext and can be used for realizing fine-grained access control and safe and efficient retrieval of the ciphertext data under the cloud storage background.

The invention discloses a ciphertext access control method based on CP-ABE (Ciphertext-Policy Attribute-Based Encryption), which belongs to the field of information security. The method comprises the following steps: preparation and maintenance work which comprises initialization of CP-ABE (Ciphertext-Policy Attribute-Based Encryption), user registration and auditing, generation of an asymmetric key pair for signature and encryption by the system and the user, generation of a CP-ABE attribute key SK for the user and key and attribute certificate management is carried out; 2, and file sharing requires a file provider, an extensible access control markup language (XACML) access control system and a sharing user to work cooperatively. The attribute certificate in a PMI system is used as an expression document for a CP-ABE attribute set and the access structure, the XACML expresses the CP-ABE policy, and security of the attribute set and the access control structure description is ensured. A hierarchical structure with an inheritance relationship is introduced, features such as distribution, authorization and calculability are supported, the attribute authorization ability needs to comply with constraints, and the method is applicable to a distributed and open network application environment.

Described herein are optimizations and execution strategies for spreadsheet extensions to SQL. The partitioning of data, as specified in a spreadsheet clause, provides a way to parallelize the computation of spreadsheet and to provide and improve scalability. Even if the partitioning is not explicitly specified in the spreadsheet clause, the database optimizer can automatically infer the partitioning in some cases. Efficient hash based access structures on relations can be used for symbolic array addressing, enabling fast computation of formulas. When rewriting SQL statements, formulas whose results are not referenced in outer blocks can be removed from the spreadsheet clause, thus removing unnecessary computations. The predicates from other query blocks can be moved inside query blocks with spreadsheets clauses, thus considerably reducing the amount of data to be processed. Conditions for validity of this transformation are given.

The current invention describes methods of transesophageal access to the neck and thorax to perform surgical interventions on structures outside the esophagus in both the cervical and the thoracic cavity. It describes a liner device made of a complete or partial tubular structure, or a flat plate, the liner having means to facilitate creation of a side opening, which may include a valve. The liner with its side opening form a port structure inside the esophageal lumen. The port structure allows elongated surgical devices to pass through a perforation across the full thickness of the esophageal wall to outside location, in a controlled way. The elongated surgical devices can be diagnostic scopes, therapeutic scopes, manual elongated surgical devices, robotic arms or the like. After being deployed outside the esophagus, the surgical devices can access structures outside the esophagus, in the neck and thorax in 360 degrees of freedom around the esophageal circumference. These structures can be bony, cartilaginous, spinal, vascular, soft tissue, deep tissues, lymph nodal, cardiac, pulmonary, tracheal, nervous, muscular or diaphragmatic, skin and subcutaneous tissues of the neck, skin and subcutaneous tissues of the anterior chest wall, skin and subcutaneous tissues of the skin of the back, and skin and layers of the breast.