Encryption and tokenization architectures
First Claim
1. A method for using a unique token in an online transaction on a website to control access to sensitive information, the method comprising:
- in response to receipt of the sensitive information from a merchant device, generating, by a server entity, a unique token for use in lieu of the sensitive information in online transactions, wherein the sensitive information comprises a character string stored as encrypted data;
directly associating, by the server entity, a unique token with a sub-string of a character string, wherein (a) a direct association does not exist between the unique token and the character string, (b) the character string comprises the sensitive information and (c) the sub-string is configured to identify the character string without revealing the sensitive information;
saving, by the server entity, a record for the online transaction comprising information for the online transaction and the unique token, wherein any steps performed after saving the record and prior to retrieving the character string utilize the unique token in lieu of the sensitive information;
retrieving, by the server entity, the character string stored as encrypted data from a storage memory using the unique token to complete the online transaction using the saved record and the sensitive information after transmission of a request for the sensitive information from a registered entity associated with a subscription level associated with a privilege to receive the requested sensitive information.
2 Assignments
0 Petitions
Accused Products
Abstract
Various embodiments of the present invention are directed to methods, systems and computer program products for conducting an online transaction on a website involving sensitive information. Such embodiments provide methods, systems and computer program products to: (a) register at least one entity with a gate keeper module, the registering comprising associating the entity with a subscription level; (b) associate a sub-string of a character string with a unique token so that a direct link does not exist between the unique token and the character string; and (c) during processing of the online transaction: (i) using the unique token for intermediate steps during the processing of the online transaction; and (ii) only accessing the character string in storage memory to complete the online transaction after receiving a request from at least one registered entity associated with a subscription level associated with a privilege to receive the requested sensitive information.
-
Citations
24 Claims
-
1. A method for using a unique token in an online transaction on a website to control access to sensitive information, the method comprising:
-
in response to receipt of the sensitive information from a merchant device, generating, by a server entity, a unique token for use in lieu of the sensitive information in online transactions, wherein the sensitive information comprises a character string stored as encrypted data; directly associating, by the server entity, a unique token with a sub-string of a character string, wherein (a) a direct association does not exist between the unique token and the character string, (b) the character string comprises the sensitive information and (c) the sub-string is configured to identify the character string without revealing the sensitive information; saving, by the server entity, a record for the online transaction comprising information for the online transaction and the unique token, wherein any steps performed after saving the record and prior to retrieving the character string utilize the unique token in lieu of the sensitive information; retrieving, by the server entity, the character string stored as encrypted data from a storage memory using the unique token to complete the online transaction using the saved record and the sensitive information after transmission of a request for the sensitive information from a registered entity associated with a subscription level associated with a privilege to receive the requested sensitive information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A data processing system for using a unique token in an online transaction on a website to control access to sensitive information, the data processing system comprising a processor and one or more storage devices embodying computer-readable program instructions that, when executed by the processor, cause the data processing system to:
-
in response to receipt of the sensitive information from a merchant device, generate a unique token for use in lieu of the sensitive information in online transactions, wherein the sensitive information comprises a character string stored as encrypted data; directly associate a unique token with a sub-string of a character string, wherein (a) a direct association does not exist between the unique token and the character string, (b) the character string comprising the sensitive information, and (c) the sub-string being configured to identify the character string without revealing the sensitive information; save a record for the online transaction comprising information for the online transaction and the unique token, wherein any steps performed after saving the record and prior to retrieving the character string utilize the unique token in lieu of the sensitive information; retrieve the character string stored as encrypted data from a storage memory using the unique token to complete the online transaction using the saved record and the sensitive information after transmission of a request for the sensitive information from a registered entity associated with a subscription level associated with a privilege to receive the requested sensitive information. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer program product for using a unique token in an online transaction on a website to control access to sensitive information, the computer program product comprising a computer-readable storage embodying computer-readable program instructions that, when executed, cause a processor to:
-
in response to receipt of the sensitive information from a merchant device, generate a unique token for use in lieu of the sensitive information in online transactions, wherein the sensitive information comprises a character string stored as encrypted data; directly associate a unique token with a sub-string of a character string, wherein (a) a direct association does not exist between the unique token and the character string, (b) the character string comprising the sensitive information, and (c) the sub-string being configured to identify the character string without revealing the sensitive information; save a record for the online transaction comprising information for the online transaction and the unique token, wherein any steps performed after saving the record and prior to retrieving the character string utilize the unique token in lieu of the sensitive information; retrieve the character string stored as encrypted data from a storage memory using the unique token to complete the online transaction using the saved record and the sensitive information after transmission of a request for the sensitive information from a registered entity associated with a subscription level associated with a privilege to receive the requested sensitive information. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
Specification