US 12,192,205 B2
Utilizing probability data structures to improve access control of documents across geographic regions
Charitha Herath Daskon Herath Mudiyanselage, Oslo (NO); Kaare Koehler Hoevik, Porsgrunn (NO); Åge Andre Kvalnes, Fetsund (NO); Tor Kreutzer, Tromsø (NO); and Mohamed Azmil Macksood, Oslo (NO)
Assigned to Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed by Microsoft Technology Licensing, LLC, Redmond, WA (US)
Filed on Jun. 24, 2022, as Appl. No. 17/848,896.
Prior Publication US 2023/0421559 A1, Dec. 28, 2023
Int. Cl. H04L 9/40 (2022.01); G06N 7/01 (2023.01)
CPC H04L 63/101 (2013.01) [G06N 7/01 (2023.01)] 20 Claims
OG exemplary drawing
 
1. A computer-implemented method of determining user access control information for digital documents comprising:
receiving a user request for a user in a first geographic region to access a digital document stored in a second geographic region;
determining, based on a shallow version of the digital document stored in the first geographic region, that a full version of the digital document is stored in the second geographic region;
determining whether the user has permission to access the full version of the digital document stored in the second geographic region by utilizing an access control probabilistic data structure that is stored in the first geographic region, wherein the access control probabilistic data structure removes user identities; and
granting or denying the user in the first geographic region access to the full version of the digital document stored in the second geographic region based on the determination from the access control probabilistic data structure.