ZoRRo: Information Rights Management - overview
In today's enterprise world, information about business entities is often present in both relational databases as well as content repositories. While information about such business entities is generally well protected in databases by well-defined and fine-grained access control, the same is not true for documents. While prohibiting access completely is often impossible, revealing complete documents may cause leakage of sensitive information pertaining to the business entities present in the document. Thus, there is a need to dynamically redact sensitive information of business entities referenced in a document based on access control defined for the entities.
ZoRRo exploits database systems' fine-grained, label based access control (LBAC) mechanism to identify and redact sensitive information from unstructured text, based on the user's access privileges.