Patents by Inventor Keng Lim

Keng Lim has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Inspecting Code and Reducing Code Size Associated to a Target
    Publication number: 20160092694
    Abstract: Code is associated to a target based on an inspection of the code. A target may be a device or a user. A number of code components may be inspected at one time and then transferred or otherwise associated to a target based on the target's profile. A code component may be a policy of an information management system.
    Type: Application
    Filed: December 1, 2015
    Publication date: March 31, 2016
    Inventor: Keng Lim
  • Preventing conflicts of interests between two or more groups using applications
    Patent number: 9298895
    Abstract: To prevent conflicts of interest, an information management system is used to make sure two or more groups are kept apart so that information does not circulate freely between these groups. The system has policies to implement an “ethical wall” to separate users or groups of users. The user or groups of user may be organized in any arbitrary way, and may be in the same organization or different organizations. The two groups (or two or more users) will not be able to access information belonging to the other, and users in one group may not be able to pass information to the other group. The system may manage access to documents, e-mail, files, and other forms of information.
    Type: Grant
    Filed: June 24, 2014
    Date of Patent: March 29, 2016
    Assignee: NextLabs, Inc.
    Inventor: Keng Lim
  • Techniques of transforming policies to enforce control in an information management system
    Patent number: 9253216
    Abstract: In an information management system, policies are deployed to targets and targets can evaluate the policies whether they are connected or disconnected to the system. The policies may be transferred to the target, which may be a device or user. Relevant policies may be transferred while not relevant policies are not. The policies may have policy abstractions.
    Type: Grant
    Filed: March 20, 2015
    Date of Patent: February 2, 2016
    Assignee: NextLabs, Inc.
    Inventor: Keng Lim
  • Analyzing Policies of an Information Management System
    Publication number: 20160028776
    Abstract: In an information management system, activity data is collected and analyzed for patterns. The information management system may be policy based. Activity data may be organized as entries including information on user, application, machine, action, object or document, time, and location. When checking for patterns in the activity or historical data, techniques may include inferencing, frequency checking, location and distance checking, and relationship checking, and any combination of these. Analyzing the activity data may include comparing like types or categories of information for two or more entries.
    Type: Application
    Filed: October 6, 2015
    Publication date: January 28, 2016
    Inventor: Keng Lim
  • Inspecting code and reducing code size associated to a target
    Patent number: 9203868
    Abstract: Code is associated to a target based on an inspection of the code. A target may be a device or a user. A number of code components may be inspected at one time and then transferred or otherwise associated to a target based on the target's profile. A code component may be a policy of an information management system.
    Type: Grant
    Filed: December 1, 2014
    Date of Patent: December 1, 2015
    Assignee: Nextlabs, Inc.
    Inventor: Keng Lim
  • Managing Access of Information Using Policies
    Publication number: 20150324602
    Abstract: An information management system approves or denies user requests to access information of the system. The information includes all types of information including documents and e-mail. The information management system is driven using a policy language having policies and policy abstractions. The information management system may approve or deny many different types of requests including opening a document or file, copying a file, printing a file, sending an e-mail, reading an e-mail, cut and paste of a portion of a document, saving a document, executing an application on a file, and many others.
    Type: Application
    Filed: July 13, 2015
    Publication date: November 12, 2015
    Inventor: Keng Lim
  • Protecting Documents Using Policies and Encryption
    Publication number: 20150295941
    Abstract: A system protects documents at rest and in motion using declarative policies and encryption. A document at rest includes documents on a device such as the hard drive of a computer. A document in motion is a document that is passing through a policy enforcement point. The policy enforcement point can be a server (e.g., mail server, instant messenger server, file server, or network connection server).
    Type: Application
    Filed: June 23, 2015
    Publication date: October 15, 2015
    Inventors: Keng Lim, Poon Fung, Andrew Han
  • Analyzing usage information of an information management system
    Patent number: 9152774
    Abstract: In an information management system, activity data is collected and analyzed for patterns. The information management system may be policy based. Activity data may be organized as entries including information on user, application, machine, action, object or document, time, and location. When checking for patterns in the activity or historical data, techniques may include inferencing, frequency checking, location and distance checking, and relationship checking, and any combination of these. Analyzing the activity data may include comparing like types or categories of information for two or more entries.
    Type: Grant
    Filed: April 8, 2014
    Date of Patent: October 6, 2015
    Assignee: Nextlabs, Inc.
    Inventor: Keng Lim
  • Enforcing Policy-based Application and Access Control in an Information Management System
    Publication number: 20150200970
    Abstract: A method and apparatus for controlling document access and application usage using centrally managed rules. The rules are stored and manipulated in a central rule database via a rule server. Policy enforcers are installed on client systems and/or on servers and perform document access and application usage control for both direct user document accesses and application usage, and application program document accesses by evaluating the rules sent to the policy enforcer. The rule server decides which rules are required by each policy enforcer. A policy enforcer can also perform obligation and remediation operations as a part of rule evaluation. Policy enforcers on client systems and servers can operate autonomously, evaluating policies that have been received, when communications have been discontinued with the rule server.
    Type: Application
    Filed: February 17, 2015
    Publication date: July 16, 2015
    Inventor: Keng Lim
  • Techniques and system to manage access of information using policies
    Patent number: 9081981
    Abstract: An information management system approves or denies user requests to access information of the system. The information includes all types of information including documents and e-mail. The information management system is driven using a policy language having policies and policy abstractions. The information management system may approve or deny many different types of requests including opening a document or file, copying a file, printing a file, sending an e-mail, reading an e-mail, cut and paste of a portion of a document, saving a document, executing an application on a file, and many others.
    Type: Grant
    Filed: December 22, 2006
    Date of Patent: July 14, 2015
    Assignee: NextLabs, Inc.
    Inventor: Keng Lim
  • Techniques of Transforming Policies to Enforce Control in an Information Management System
    Publication number: 20150195307
    Abstract: In an information management system, policies are deployed to targets and targets can evaluate the policies whether they are connected or disconnected to the system. The policies may be transferred to the target, which may be a device or user. Relevant policies may be transferred while not relevant policies are not. The policies may have policy abstractions.
    Type: Application
    Filed: March 20, 2015
    Publication date: July 9, 2015
    Inventor: Keng Lim
  • Preventing Conflicts of Interests Between Two or More Groups
    Publication number: 20150178295
    Abstract: To prevent conflicts of interest, an information management system is used to make sure two or more groups are kept apart so that information does not circulate freely between these groups. The system has policies to implement an “ethical wall” to separate users or groups of users. The user or groups of user may be organized in any arbitrary way, and may be in the same organization or different organizations. The two groups (or two or more users) will not be able to access information belonging to the other, and users in one group may not be able to pass information to the other group. The system may manage access to documents, e-mail, files, and other forms of information.
    Type: Application
    Filed: March 3, 2015
    Publication date: June 25, 2015
    Inventor: Keng Lim
  • Protecting documents using policies and encryption
    Patent number: 9064131
    Abstract: A system protects documents at rest and in motion using declarative policies and encryption. A document at rest includes documents on a device such as the hard drive of a computer. A document in motion is a document that is passing through a policy enforcement point. The policy enforcement point can be a server (e.g., mail server, instant messenger server, file server, or network connection server).
    Type: Grant
    Filed: July 28, 2011
    Date of Patent: June 23, 2015
    Assignee: NextLabs, Inc.
    Inventors: Keng Lim, Poon Fung, Andrew Han
  • Inspecting Code and Reducing Code Size Associated to a Target
    Publication number: 20150089584
    Abstract: Code is associated to a target based on an inspection of the code. A target may be a device or a user. A number of code components may be inspected at one time and then transferred or otherwise associated to a target based on the target's profile. A code component may be a policy of an information management system.
    Type: Application
    Filed: December 1, 2014
    Publication date: March 26, 2015
    Inventor: Keng Lim
  • Techniques of transforming policies to enforce control in an information management system
    Patent number: 8990886
    Abstract: In an information management system, policies are deployed to targets and targets can evaluate the policies whether they are connected or disconnected to the system. The policies may be transferred to the target, which may be a device or user. Relevant policies may be transferred while not relevant policies are not. The policies may have policy abstractions.
    Type: Grant
    Filed: September 24, 2013
    Date of Patent: March 24, 2015
    Assignee: NextLabs, Inc.
    Inventor: Keng Lim
  • Preventing conflicts of interests between two or more groups
    Patent number: 8972449
    Abstract: To prevent conflicts of interest, an information management system is used to make sure two or more groups are kept apart so that information does not circulate freely between these groups. The system has policies to implement an “ethical wall” to separate users or groups of users. The user or groups of user may be organized in any arbitrary way, and may be in the same organization or different organizations. The two groups (or two or more users) will not be able to access information belonging to the other, and users in one group may not be able to pass information to the other group. The system may manage access to documents, e-mail, files, and other forms of information.
    Type: Grant
    Filed: December 22, 2006
    Date of Patent: March 3, 2015
    Assignee: NextLabs, Inc.
    Inventor: Keng Lim
  • Deploying Policies and Allowing Off-Line Policy Evaluations
    Publication number: 20150052577
    Abstract: In an information management system, policies are deployed to targets and targets can evaluate the policies whether they are connected or disconnected to the system. The policies may be transferred to the target, which may be a device or user. Relevant policies may be transferred while not relevant policies are not. The policies may have policy abstractions.
    Type: Application
    Filed: October 28, 2014
    Publication date: February 19, 2015
    Inventor: Keng Lim
  • Enforcing policy-based application and access control in an information management system
    Patent number: 8959580
    Abstract: A method and apparatus for controlling document access and application usage using centrally managed rules. The rules are stored and manipulated in a central rule database via a rule server. Policy enforcers are installed on client systems and/or on servers and perform document access and application usage control for both direct user document accesses and application usage, and application program document accesses by evaluating the rules sent to the policy enforcer. The rule server decides which rules are required by each policy enforcer. A policy enforcer can also perform obligation and remediation operations as a part of rule evaluation. Policy enforcers on client systems and servers can operate autonomously, evaluating policies that have been received, when communications have been discontinued with the rule server.
    Type: Grant
    Filed: November 26, 2013
    Date of Patent: February 17, 2015
    Assignee: NextLabs, Inc.
    Inventor: Keng Lim
  • Detecting Behavioral Patterns and Anomalies Using Activity Data
    Publication number: 20150033288
    Abstract: Activity data is analyzed or evaluated to detect behavioral patterns and anomalies. When a particular pattern or anomaly is detected, a system may send a notification or perform a particular task. This activity data may be collected in an information management system, which may be policy based. Notification may be by way e-mail, report, pop-up message, or system message. Some tasks to perform upon detection may include implementing a policy in the information management system, disallowing a user from connecting to the system, and restricting a user from being allowed to perform certain actions. To detect a pattern, activity data may be compared to a previously defined or generated activity profile.
    Type: Application
    Filed: October 14, 2014
    Publication date: January 29, 2015
    Inventor: Keng Lim
  • Analyzing Activity Data of an Information Management System
    Publication number: 20150019762
    Abstract: In an information management system, activity data is collected and analyzed for patterns. The information management system may be policy based. Activity data may be organized as entries including information on user, application, machine, action, object or document, time, and location. When checking for patterns in the activity or historical data, techniques may include inferencing, frequency checking, location and distance checking, and relationship checking, and any combination of these. Analyzing the activity data may include comparing like types or categories of information for two or more entries.
    Type: Application
    Filed: September 30, 2014
    Publication date: January 15, 2015
    Inventor: Keng Lim