Office Action Predictor
Last updated: April 15, 2026
Application No. 18/370,039

UNAUTHORIZED ACCESS DETECTION SYSTEM AND UNAUTHORIZED ACCESS DETECTION METHOD

Final Rejection §102
Filed
Sep 19, 2023
Examiner
KIM, TAE K
Art Unit
2496
Tech Center
2400 — Computer Networks
Assignee
Hitachi, LTD.
OA Round
2 (Final)
74%
Grant Probability
Favorable
3-4
OA Rounds
3y 6m
To Grant
76%
With Interview

Examiner Intelligence

Grants 74% — above average
74%
Career Allow Rate
486 granted / 653 resolved
+16.4% vs TC avg
Minimal +1% lift
Without
With
+1.2%
Interview Lift
resolved cases with interview
Typical timeline
3y 6m
Avg Prosecution
29 currently pending
Career history
682
Total Applications
across all art units

Statute-Specific Performance

§101
11.6%
-28.4% vs TC avg
§103
39.7%
-0.3% vs TC avg
§102
26.2%
-13.8% vs TC avg
§112
15.8%
-24.2% vs TC avg
Black line = Tech Center average estimate • Based on career data from 653 resolved cases

Office Action

§102
DETAILED ACTION This is in response to the application filed on September 19, 2023 where Claims 1 – 6, of which Claims 1 and 6 are in independent form, are presented for examination. Notice of Pre-AIA or AIA Status The present application, filed on or after March 16, 2013, is being examined under the first inventor to file provisions of the AIA . Priority Receipt is acknowledged of certified copies of papers required by 37 CFR 1.55. Information Disclosure Statement The information disclosure statements (IDSs) submitted on September 19, 2023 and April 12, 2024 were filed before the mailing date of the current action. The submission is in compliance with the provisions of 37 CFR 1.97. Accordingly, the information disclosure statement is being considered by the examiner. 101 Analysis Claims 1 and 6 are directed to using access control rules to determine if an access request for a particular file requires additional authentication form the user, which may include biometric authentication. The claims do not recite an abstract idea, law of nature, or natural phenomenon. Therefore, the claims satisfy Step 2A, Prong One of the 2019 Revised 101 Patent Eligibility Guidelines as patent eligible subject matter. Claim Rejections - 35 USC § 102 The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the basis for the rejections under this section made in this Office action: A person shall be entitled to a patent unless – (a)(1) the claimed invention was patented, described in a printed publication, or in public use, on sale, or otherwise available to the public before the effective filing date of the claimed invention. Claim(s) 1 – 6 are rejected under 35 U.S.C. 102(a)(1) as being anticipated by PGPub. 2018/0336336 (hereinafter “Elovici”). 1. Regarding Claims 1 and 6, Elovici discloses of an unauthorized access detection system [Figs. 1 and 2; Para. 0065-68] comprising: a storage apparatus configured to store data indicating an access destination of an unauthorized access to be detected [Figs. 2 and 3; Para. 0032, 0038, 0065-66; policy state]; and a control apparatus configured to execute access request detection processing to detect an access request [Figs. 1 and 2; Para. 0031-33, 0065-68; PED], access suspension processing to determine whether an access source indicated by the access request matches an access source stored in advance and also whether an access destination indicated by the access request matches the data stored in the storage apparatus [Figs 3 and 4; Para. 0032-39, 0041, 0059-61; determine if policy allows execution context to make the requested I/O operation; permits of the execution object are retrieved] and suspend access to the access destination requested by the access request if it is determined that the access source indicated by the access request matches data on the access source stored in advance and also that the access destination indicated by the access request matches the data stored in the storage apparatus [Figs 3 and 4; Para. 0032-39, 0059-61; policy requires a user challenge for the current execution context and requested I/O operation; permits of the execution object are retrieved], authentication processing to receive an input of biometric information from a user [Fig. 4; Para. 0036, 0049, 0059-61], and access control processing to perform authentication based on the biometric information inputted and control the suspended access according to a result of the authentication [Fig. 5B; Para. 0036, 0042-44, 0059-61]. 2. Regarding Claim 2, Elovici discloses the limitations of Claim 1. Elovici further discloses that in the access control processing, the control apparatus permits the access to the access destination requested by the detected access request if the authentication is successful [Fig. 5B; Para. 0036, 0059-61] and prohibits the access to the access destination requested by the detected access request if the authentication is unsuccessful [Fig. 5B; Para. 0036, 0059-61]. 3. Regarding Claim 3, Elovici discloses the limitations of Claim 1. Elovici further discloses that the storage apparatus stores information on a file or folder which is the access destination as the data indicating an access destination of an unauthorized access to be detected [Fig. 3; Para. 0039-41], and in the access suspension processing, the control apparatus determines whether a process requesting the detected access request matches a process being the access source stored in advance [Figs 3 and 4; Para. 0032-39, 0059-61] and also whether the file or folder being the access destination indicated by the detected access request matches the file or folder related to the data stored in the storage apparatus [Figs 3 and 4; Para. 0032-39, 0059-61], and suspends the access to the file or folder requested by the detected access request if it is determined that the process requesting the detected access request matches the process being the access source stored in advance and also that the file or folder as the access destination indicated by the detected access request matches the file or folder related to the data stored in the storage apparatus [Figs 3 and 4; Para. 0032-39, 0059-61]. 4. Regarding Claim 4, Elovici discloses the limitations of Claim 3. Elovici further discloses that as the data indicating an access destination of an unauthorized access to be detected, information indicating that the file or folder is the access destination of an unauthorized access to be detected is set and attached to the file or folder being the access destination of an unauthorized access to be detected [Figs 3 and 4; Para. 0032-39, 0059-61], and in the access suspension processing, the control apparatus determines whether a process requesting the detected access request matches the process being the access source stored in advance and also whether the file or folder as the access destination indicated by the detected access request matches the file or folder to which the information indicating that the file or folder is the access destination of an unauthorized access to be detected is set [Figs 3 and 4; Para. 0032-39, 0059-61], and suspends the access to the file or folder requested by the detected access request if it is determined that the process requesting the detected access request matches the process being the access source stored in advance and also that the file or folder as the access destination indicated by the detected access request matches the file or folder to which the information indicating that the file or folder is the access destination of an unauthorized access to be detected is set [Figs 3 and 4; Para. 0032-39, 0059-61]. 5. Regarding Claim 5, Elovici discloses the limitations of Claim 2. Elovici further discloses that if the authentication is successful, in the access suspension processing, upon detection of a new access request to a same access destination as the access destination related to the detected access request, the control apparatus permits access requested by the new access request [Figs 3 and 4; Para. 0032-39, 0059-61; if execution object has permit that allows the new request, it is allowed], and if the authentication is unsuccessful, in the access suspension processing, upon detection of a new access request to a same access destination as the access destination related to the detected access request, the control apparatus prohibits access requested by the new access request [Figs 3 and 4; Para. 0032-39, 0059-61; deny]. Conclusion The prior art made of record and not relied upon is considered pertinent to applicant's disclosure. PGPub. 2014/0033271. Contacts Any inquiry concerning this communication or earlier communications from the examiner should be directed to Tae K. Kim, whose telephone number is (571) 270-1979. The examiner can normally be reached on Monday - Friday (10:00 AM - 6:30 PM EST). If attempts to reach the examiner by telephone are unsuccessful, the examiner's supervisor, Jorge Ortiz-Criado, can be reached on (571) 272-7624. The fax phone number for submitting all Official communications is (703) 872-9306. The fax phone number for submitting informal communications such as drafts, proposed amendments, etc., may be faxed directly to the examiner at (571) 270-2979. Information regarding the status of an application may be obtained from the Patent Application Information Retrieval (PAIR) system. Status information for published applications may be obtained from either Private PAIR or Public PAIR. Status information for unpublished applications is available through Private PAIR only. For more information about the PAIR system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR system, contact the Electronic Business Center (EBC) at (866) 217-9197 (toll-free). /TAE K KIM/Primary Examiner, Art Unit 2496
Read full office action

Prosecution Timeline

Sep 19, 2023
Application Filed
Apr 16, 2025
Non-Final Rejection — §102
Jun 06, 2025
Response Filed
Sep 26, 2025
Final Rejection — §102
Apr 03, 2026
Response after Non-Final Action

Precedent Cases

Applications granted by this same examiner with similar technology

Patent 12598064
ESTABLISHING TRUST BY A COMMUNITY OF VEHICLES
2y 5m to grant Granted Apr 07, 2026
Patent 12591655
SYSTEMS AND METHODS OF PROTECTING SECRETS IN USE WITH CONTAINERIZED APPLICATIONS
2y 5m to grant Granted Mar 31, 2026
Patent 12574241
TECHNIQUES FOR MANUAL VERIFICATION
2y 5m to grant Granted Mar 10, 2026
Patent 12561470
DATA PROTECTION VIA ATTRIBUTES-BASED AGGREGATION
2y 5m to grant Granted Feb 24, 2026
Patent 12562898
NATIVE APPLICATION INTEGRATION IN DATA SYSTEM
2y 5m to grant Granted Feb 24, 2026
Study what changed to get past this examiner. Based on 5 most recent grants.

AI Strategy Recommendation

Get an AI-powered prosecution strategy using examiner precedents, rejection analysis, and claim mapping.
Powered by AI — typically takes 5-10 seconds

Prosecution Projections

3-4
Expected OA Rounds
74%
Grant Probability
76%
With Interview (+1.2%)
3y 6m
Median Time to Grant
Moderate
PTA Risk
Based on 653 resolved cases by this examiner. Grant probability derived from career allow rate.

Sign in for Full Analysis

Enter your email to receive a magic link. No password needed.

Free tier: 3 strategy analyses per month