Claims:WE CLAIM
1. A method of providing information access in an enterprise network, the method comprising:
creating automatically, by an enterprise network device, an ontology by analyzing at least one document comprising semantic information for roles, responsibilities, authority, and restrictions associated with a plurality of users;
extracting based on the ontology, by the enterprise network device, a plurality of contextual terms associated with at least one of roles, responsibilities, authority, or restrictions;
assigning, by the enterprise network device, a plurality of annotation tags to each sentence in at least one enterprise policy document based on the plurality of contextual terms, wherein each of the plurality of annotation tags corresponding to at least one of roles, responsibilities, authority, and restrictions;
generating, by the enterprise network device, a plurality of information access rules based on the plurality of contextual terms and assigned plurality of annotation tags to each sentence in the at least one enterprise policy document; and
creating, by the enterprise network device, a context similarity tree based on the assigned plurality of annotation tags and the plurality of information access rules.
2. The method of claim 1, wherein a restriction for a role is determined based on at least one of time, geography information, personal information, or a dynamicity associated with the role.
3. The method of claim 1 further comprising determining relationship amongst the plurality of contextual terms.
4. The method of claim 1 further comprising categorizing each of the plurality of contextual terms into a plurality of categories.
5. The method of claim 1 further comprising normalizing each of the plurality of contextual terms.
6. The method of claim 1, wherein assigning comprises matching a lemmatized version of each of the plurality of contextual terms with words in each sentence in the at least one enterprise policy document.
7. The method of claim 1, wherein the at least one enterprise policy document comprises natural language sentences, and wherein the natural language sentences are parsed using natural language processing engine.
8. The method of claim 1, wherein creating the context similarity tree comprises grouping each sentence that is assigned annotation tags, based on the plurality of contextual terms.
9. The method of claim 1 further comprising determining, based on the context similarity tree, whether a user is authorized to access a particular information in the enterprise network.
10. An enterprise network device for providing information access in an enterprise network, the enterprise network device comprising:
a processor; and
a memory communicatively coupled to the processor, wherein the memory stores processor instructions, which, on execution, causes the processor to:
create automatically an ontology by analyzing at least one document comprising semantic information for roles, responsibilities, authority, and restrictions associated with a plurality of users;
extract based on the ontology a plurality of contextual terms associated with at least one of roles, responsibilities, authority, or restrictions;
assign a plurality of annotation tags to each sentence in at least one enterprise policy document based on the plurality of contextual terms, wherein each of the plurality of annotation tags corresponding to at least one of roles, responsibilities, authority, and restrictions;
generate a plurality of information access rules based on the plurality of contextual terms and assigned plurality of annotation tags to each sentence in the at least one enterprise policy document; and
create a context similarity tree based on the assigned plurality of annotation tags and the plurality of information access rules.
11. The enterprise network device of claim 10, wherein a restriction for a role is determined based on at least one of time, geography information, personal information, or a dynamicity associated with the role.
12. The enterprise network device of claim 10, wherein the processor is further configured to determine relationship amongst the plurality of contextual terms.
13. The enterprise network device of claim 10, wherein the processor is further configured to categorize each of the plurality of contextual terms into a plurality of categories.
14. The enterprise network device of claim 10, wherein the processor is further configured to normalize each of the plurality of contextual terms.
15. The enterprise network device of claim 10, wherein the processor is further configured to match a lemmatized version of each of the plurality of contextual terms with words in each sentence in the at least one enterprise policy document.
16. The enterprise network device of claim 10, wherein the at least one enterprise policy document comprises natural language sentences, and wherein the natural language sentences are parsed using natural language processing engine.
17. The enterprise network device of claim 10, wherein the processor is further configured to group each sentence that is assigned annotation tags, based on the plurality of contextual terms.
18. The enterprise network device of claim 10, wherein the processor is further configured to determine based on the context similarity tree, whether a user is authorized to access a particular information in the enterprise network.

Dated this 29th day of December 2016

R Ramya Rao
Of K&S Partners
Agent for the Applicant
, Description:TECHNICAL FIELD
This disclosure relates generally to information access in enterprise networks and more particularly to methods and system for controlling user access to information in enterprise networks.