Individual data unit and methods and systems for enhancing the security of user data

US 10,572,683 B2
Filed: 05/10/2019
Issued: 02/25/2020
Est. Priority Date: 05/13/2018
Status: Active Grant

First Claim

Patent Images

1. A computer system for enhancing the security of user data records comprising:

a plurality of individual data units, each data unit being associated with a respective user and storing at least one encrypted data record for the respective user;

at least one computing device for conducting network-based transactions associated with each respective user, said at least one computing device storing an encrypted logical address required to access the respective individual data unit, the encrypted logical address being different for each respective individual data unit; and

a computer configured as a central user data server, said server including a decryption key for each encrypted logical address and a decryption key for each encrypted data record, and being configured to manage the user data records stored in said individual data units, whereinat least said individual data units, said at least one computing device, and said central user data server are computer components included in said computer system and communicate securely over a network, andthe data records of each user, the encrypted logical address for the data records of each user, and the decryption keys for each encrypted logical address and encrypted user data record are stored in separate components of said computer system such thatthe data record of a user is safe against a cyber attack that compromises only one of said components and can be compromised only when at least two of said components are compromised as a result of a cyber attack, andthe data records of N users can be compromised only when at least N+1 of said components are compromised as the result of a cyber attack, where N is the number of users.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An individual data unit for enhancing the security of a user data record is provided that includes a processor and a memory configured to store data. The individual data unit is associated with a network and the memory is in communication with the processor. The memory has instructions stored thereon which, when read and executed by the processor cause the individual data unit to perform basic operations only. The basic operations include communicating securely with computing devices, computer systems, and a central user data server. Moreover, the basic operations include receiving a user data record, storing the user data record, retrieving the user data record, and transmitting the user data record. The individual data unit can be located in a geographic location associated with the user which can be different than the geographic locations of the computer systems and the central user data server.

Citations

21 Claims

1. A computer system for enhancing the security of user data records comprising:
- a plurality of individual data units, each data unit being associated with a respective user and storing at least one encrypted data record for the respective user;
  
  at least one computing device for conducting network-based transactions associated with each respective user, said at least one computing device storing an encrypted logical address required to access the respective individual data unit, the encrypted logical address being different for each respective individual data unit; and
  
  a computer configured as a central user data server, said server including a decryption key for each encrypted logical address and a decryption key for each encrypted data record, and being configured to manage the user data records stored in said individual data units, whereinat least said individual data units, said at least one computing device, and said central user data server are computer components included in said computer system and communicate securely over a network, andthe data records of each user, the encrypted logical address for the data records of each user, and the decryption keys for each encrypted logical address and encrypted user data record are stored in separate components of said computer system such thatthe data record of a user is safe against a cyber attack that compromises only one of said components and can be compromised only when at least two of said components are compromised as a result of a cyber attack, andthe data records of N users can be compromised only when at least N+1 of said components are compromised as the result of a cyber attack, where N is the number of users.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. A computer system for enhancing the security of user data records in accordance with claim 1 wherein at least a plurality of said separate components are located in different geographic locations.
  - 3. A computer system for enhancing the security of user data records in accordance with claim 1 further comprising:
    - locating each of the plurality of data units at a geographic location associated with the respective user; and
      
      operating each of the plurality of data units from the geographic location associated with the respective user.
  - 4. A computer system for enhancing the security of encrypted user data records in accordance with claim 1 further comprising:
    - storing an encrypted access code in said at least one computing device associated with each respective user, the encrypted access code being different for each user; and
      
      including decryption keys for the encrypted access codes in said central user data server.
  - 5. A computer system for enhancing the security of encrypted user data records in accordance with claim 1 further comprising:
    - storing a plurality of encrypted access codes in said at least one computing device associated with each respective user, the encrypted access codes being different for each encrypted user data record associated with a different network service accessed by that user; and
      
      including decryption keys for the encrypted access codes in said central user data server.
  - 6. A computer system for enhancing the security of encrypted user data records in accordance with claim 1 wherein multiple individual data units are hosted on a single physical device and a plurality of said physical devices are hosted by one or more third party services on behalf of the individual users.
  - 7. A computer system for enhancing the security of user data records in accordance with claim 1, further comprising multiple individual data units for at least one user and at least one Point of Service computer system, wherein:
    - the data is distributed amongst said separate components such that the data record of any user using M individual data units is safe against a cyber-attack that successfully compromises only M of the components, where M is the number of individual data units used by the at least one user,the data record of a user can be compromised only when at least M+1 of the components are successfully compromised as the result of a cyber-attack, andthe data records of N users, each user using M individual data units is compromised only when at least (M×
      
      N)+1 of the components are successfully compromised as the result of a cyber-attack, where N is the number of users.

8. A method for enhancing the security of user data records comprising:
- storing data in components of a computer system, the data comprising encrypted data records of users, an encrypted logical address for the encrypted data records of each user, and decryption keys, the decryption keys for a respective encrypted data record and a respective encrypted logical address, wherein the encrypted data records of each user, the encrypted logical address for the data records of each user, and the decryption keys for each encrypted logical address and encrypted data record are stored in separate components of the computer system such that;
  
  the data record of a user is safe against a cyber-attack that compromises only one component of the computer system, and can be compromised only when at least two components of the computer system are compromised as the result of a cyber-attack, andthe data records of N users can be compromised only when at least N+1 components of the computer system are compromised as the result of a cyber-attack, where N is the number of users.
- View Dependent Claims (9, 10, 11)
- - 9. A method for enhancing the security of user data records in accordance with claim 8 wherein the separate components are located in different geographic locations.
  - 10. A method for enhancing the security of user data records in accordance with claim 8 further comprising:
    - storing an encrypted access code in at least one component of the computer system associated with each respective user of the computer system, the encrypted access code being different for each user; and
      
      including decryption keys for the encrypted access codes in a different component.
  - 11. A method for enhancing the security of user data records in accordance with claim 8 further comprising:
    - storing a plurality of encrypted access codes in at least one component of the computer system associated with each respective user of the computer system, the encrypted access codes being different for each encrypted user data record associated with a different network service accessed by that user; and
      
      including decryption keys for the encrypted access codes in a different component.

12. A method for enhancing the security of user data records in a computer system using M individual data units to store the data of a single user only within the computer system, said method comprising:
- storing data in components of a computer system, the data comprising encrypted data records of users, an encrypted logical address for the encrypted data records of each user, and decryption keys, the decryption keys for a respective encrypted data record and a respective encrypted logical address, wherein the encrypted data records of each user, the encrypted logical address for the data records of each user, and the decryption keys for each encrypted logical address and encrypted data record are stored in separate components of the computer system such thatthe data record of a user is safe against a cyber-attack that compromises only M components of the computer system, and can be compromised only when at least M+1 components of the computer system are compromised as the result of a cyber-attack, andthe data records of N users can be compromised only when at least (M×
  
  N)+1 components of the computer system are compromised as the result of a cyber-attack, where N is the number of users and M is the number of individual data units per user in the computer system.
- View Dependent Claims (13, 14, 15)
- - 13. A method for enhancing the security of user data records in accordance with claim 12 wherein the separate components are located in different geographic locations.
  - 14. A method for enhancing the security of user data records in accordance with claim 12 further comprising:
    - storing an encrypted access code in at least one component of the computer system associated with each respective user of the computer system, the encrypted access code being different for each user; and
      
      including decryption keys for the encrypted access codes in a different component.
  - 15. A method for enhancing the security of user data records in accordance with claim 12 further comprising:
    - storing a plurality of encrypted access codes in at least one component of the computer system associated with each respective user of the computer system, the encrypted access codes being different for each encrypted user data record associated with a different network service accessed by that user; and
      
      including decryption keys for the encrypted access codes in a different component.

16. A computer system for enhancing the security of user data records using M individual data units to store the data of a single user only, said computer system comprising computer components, said computer components comprising the individual data units, communicate over a network and store data, the data comprising encrypted data records of users, an encrypted logical address for the encrypted data records of each user, and a decryption key for each different encrypted logical address and each encrypted user data record, wherein the encrypted data records of each user, the encrypted logical address for the encrypted data records of each user, and the decryption keys for each encrypted logical address and each encrypted user data record are stored in separate components of said computer system such that:
- the data record of a user is safe against a cyber-attack that compromises only M of said components and can be compromised only when at least M+1 of said components are compromised as the result of a cyber-attack; and
  
  the data records of N users can be compromised only when at least (M×
  
  N)+1 of said components are compromised as the result of a cyber-attack, where N is the number of users and M is the number of individual data units per user in said computer system.
- View Dependent Claims (17, 18, 19, 20)
- - 17. A computer system for enhancing the security of user data records in accordance with claim 16 wherein said separate components are located in different geographic locations.
  - 18. A computer system for enhancing the security of user data records in accordance with claim 16 further comprising:
    - locating each of the plurality of data units at a geographic location associated with a respective user; and
      
      operating each of the plurality of data units from the geographic location associated with the respective user.
  - 19. A computer system for enhancing the security of encrypted user data records in accordance with claim 16 further comprising:
    - storing an encrypted access code in at least one computing device associated with each respective user, the encrypted access code being different for each user; and
      
      including decryption keys for the encrypted access codes in a central user data server, the at least one computing device and central user data server being computer components included in said computer system.
  - 20. A computer system for enhancing the security of encrypted user data records in accordance with claim 16 further comprising:
    - storing a plurality of encrypted access codes in at least one computing device associated with each respective user, the encrypted access codes being different for each encrypted user data record associated with a different network service accessed by that user; and
      
      including decryption keys for the encrypted access codes in a central user data server, the at least one computing device and central user data server being computer components included in said computer system.

21. A computer system for enhancing the security of user data records comprising computer components, said computer components communicate over a network and store data, the data comprising encrypted data records of users, an encrypted logical address for the encrypted data records of each user, and a decryption key for each different encrypted logical address and each encrypted user data record, wherein the encrypted data records of each user, the encrypted logical address for the encrypted data records of each user, and the decryption keys for each encrypted logical address and each encrypted user data record are stored in separate computer components of said computer system such that:
- the data record of a user is safe against a cyber-attack that compromises only one of said computer components and can be compromised only when at least two of said computer components are compromised as the result of a cyber-attack, andthe data records of N users can be compromised only when at least N+1 of said components are compromised as the result of a cyber-attack, where N is the number of users.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Richard Jay Langley
Original Assignee
Richard Jay Langley
Inventors
Langley, Richard Jay
Primary Examiner(s)
Lewis, Lisa C

Application Number

US16/408,493
Publication Number

US 20190347440A1
Time in Patent Office

291 Days
Field of Search
US Class Current
CPC Class Codes

G06F 11/1443   Transmit or communication e...

G06F 11/1464   for networked environments

G06F 11/1469   Backup restoration techniques

G06F 21/32   using biometric data, e.g. ...

G06F 21/602   Providing cryptographic fac...

G06F 21/6245   Protecting personal data, e...

G06F 2201/805   Real-time

G06F 2221/2107   File encryption

G06F 2221/2111   Location-sensitive, e.g. ge...

H04L 63/0421   Anonymous communication, i....

H04L 63/0428   wherein the data content is...

H04L 63/10   for controlling access to d...

H04L 63/1441   Countermeasures against mal...

H04L 9/0894   Escrow, recovery or storing...

H04L 9/3226   using a predetermined code,...

Individual data unit and methods and systems for enhancing the security of user data

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Individual data unit and methods and systems for enhancing the security of user data

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links