Please download the dossier by clicking on the dossier button x
×

System for and method of controllably disclosing sensitive data

  • US 10,210,346 B2
  • Filed: 07/14/2017
  • Issued: 02/19/2019
  • Est. Priority Date: 09/08/2014
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method of ensuring selective disclosure of sensitive data, comprising the steps performed by one or more processors of:

  • receiving at least one policy comprised of policy variables indicating what data items are sensitive, what data items are disclosable, validity conditions for a candidate disclosure dataset to be believable by a recipient, and sufficiency conditions specifying an extent of variability necessary among data objects in a candidate disclosure dataset to protect the sensitive data, and optionally one or more sets of truth data items;

    if one or more sets of truth data items were received, auditing the one or more sets of truth data items for compliance with the at least one policy, and if the one or more sets of truth data items fails to comply with the at least one policy, or if no sets of truth data items were received, producing a collection of synthetic dataset disclosure possibilities meeting the validity conditions;

    if any synthetic dataset disclosure possibilities are produced, producing one or more associations among the policy variables and each of the one or more sets of truth data items, if any received, and each of the synthetic dataset disclosure possibilities meeting the validity conditions;

    if one or more sets of truth data items were received and any synthetic dataset disclosure possibilities produced, generating at least one candidate disclosure dataset comprising at least one of the sets of truth data items and at least one of the synthetic datasets disclosure possibilities; and

    repeating the producing steps and the generating step until the at least one candidate disclosure dataset whose associations meet the validity conditions, meets the sufficiency conditions or until a determination is made that the sufficiency conditions cannot be met;

    storing or transmitting on a tangible medium data associated with the at least one candidate disclosure dataset resulting from the repeated producing and generating steps; and

    at least one of generating an output indicating a compliance status with respect to the at least one policy, generating a certificate indicating that the at least one candidate disclosure dataset complies with the at least one policy, or providing the at least one compliant candidate disclosure dataset to a recipient, or requesting approval from a holder of the sensitive data to disclose the at least one compliant candidate disclosure dataset, or if the at least one candidate disclosure dataset is determined not to comply with the at least one policy, attempting to modifying the at least one candidate disclosure dataset to be compliant with the at least one policy.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×