US 12,353,572 B2
Access management apparatus, non-transitory computer readable medium, and access management method
Yosuke Kinoshita, Kanagawa (JP)
Assigned to FUJIFILM Business Innovation Corp., Tokyo (JP)
Filed by FUJIFILM Business Innovation Corp., Tokyo (JP)
Filed on Jan. 20, 2022, as Appl. No. 17/579,592.
Claims priority of application No. 2021-148482 (JP), filed on Sep. 13, 2021.
Prior Publication US 2023/0082547 A1, Mar. 16, 2023
Int. Cl. G06F 21/60 (2013.01); G06F 21/62 (2013.01); G06Q 10/10 (2023.01)
CPC G06F 21/604 (2013.01) [G06F 21/6209 (2013.01); G06Q 10/103 (2013.01); G06F 2221/2141 (2013.01); G06F 2221/2147 (2013.01)] 8 Claims
OG exemplary drawing
 
1. An access management apparatus for managing access to data of a company, the apparatus comprising:
a memory storing a confidentiality score table and a rule,
wherein the confidentiality score table records a plurality of pieces of data of the company and respective confidentiality scores, wherein the respective confidentiality scores are numeric values, and
wherein the rule records a plurality of users and respective reliability scores, wherein the plurality users comprises users who are workers of the company and users who are not workers of the company, and the respective reliability scores are numeric values; and
a processor configured to:
receive a request for an access right transmitted from a first user terminal of a first user to allow a second user terminal of a second user to access first data among the plurality of pieces of data;
determine a confidentiality score of the first data according to the confidentiality score table and determine a reliability score of the second user according to the rule;
subtract the confidentiality score of the first data from the reliability score of the second user to determine whether to grant the access right to the second user;
in response to obtaining a difference of 0 or greater as a result of the subtracting, grant the access right to the second user, by transmitting an access key to the second user terminal, allow the second user terminal to access the first data by using the access key, and notify the first user that the access right has been granted to the second user;
in response to the reliability score of the second user being less than the confidentiality score of the first data by more than a first threshold value, reject the access right to the second user, and notify the first user that the access right has not been granted to the second user, wherein the first threshold value is a positive constant; or
in response to the reliability score of the second user being less than the confidentiality score of the first data by the first threshold value or less, grant the access right to the second user if a special condition is satisfied, wherein the special condition is that the second user and the first user are in a same compartment, that the second user is not a worker of the company, and that the first user is a worker of the company and performs a job together with the second user.