Zero-knowledge environment based networking engine
First Claim
Patent Images
1. A computer-implemented method performed by a network engine comprising:
- receiving, at a first software container related to a user on a user device, first geographic location data indicating a geographic location of the user device, wherein the first software container is an independent server virtualization instance that is configured to operate independently of other processes operating on a same processing resource as the independent server virtualization instance, and operates to store health network data related to the user, and to facilitate encrypted communications between the user device and one or more electronic devices;
accessing, with an application instance installed at the first software container on the user device, second geographic location data indicating one or more geographic locations of one or more healthcare providers;
determining, with the application instance installed at the first software container on the user device, that the geographic location of the user corresponds to a geographic location of a particular healthcare provider, at least in part, by comparing the geographic location of the user device to the one or more geographic locations of the one or more healthcare providers, and determining that the user device is within a threshold distance of the particular healthcare provider;
in response to determining that the geographic location of the user corresponds to the geographic location of the particular healthcare provider, determining, with the application instance installed at the first software container on the user device, at least one of an updated score, a priority, or an outcome probability;
encrypting, at least one of an alert, the health network data related to the user, or a recommendation using a public encryption key that is included in the first software container;
in response to determining the at least one of the updated score, the priority, or the outcome probability, transmitting, from the first software container on the user device to a recipient software container, the encrypted at least one of the alert, the health network data related to the user, or the recommendation, wherein the recipient software container is an independent server virtualization instance that is configured to operate independently of other processes operating on a same processing resource as the independent server virtualization instance;
decrypting the encrypted at least one of the alert, the health network data related to the user, or the recommendation using a private encryption key that is included in the recipient software container; and
transmitting, from the first software container on the user device to the recipient software container, authentication information for the at least one of the alert, the health network data related to the user, or the recommendation, wherein the authentication information permits the recipient software container to confirm authenticity of the at least one of the alert, the health network data related to the user, or the recommendation.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, systems, and apparatus are described providing networking engines. Specifically, a method for implementing software containers implementing network engines that may be configured to act in a zero-knowledge environment is described. All information pertaining to the network engine associated with a user that is stored in the container is solely that of a user unless explicitly shared by the user. The containers may be configured to participate in a publish-and-subscribe network in order to share information. In addition, the containers may be provisioned with controls so that global operators may comply with local privacy rules.
-
Citations
18 Claims
-
1. A computer-implemented method performed by a network engine comprising:
-
receiving, at a first software container related to a user on a user device, first geographic location data indicating a geographic location of the user device, wherein the first software container is an independent server virtualization instance that is configured to operate independently of other processes operating on a same processing resource as the independent server virtualization instance, and operates to store health network data related to the user, and to facilitate encrypted communications between the user device and one or more electronic devices; accessing, with an application instance installed at the first software container on the user device, second geographic location data indicating one or more geographic locations of one or more healthcare providers; determining, with the application instance installed at the first software container on the user device, that the geographic location of the user corresponds to a geographic location of a particular healthcare provider, at least in part, by comparing the geographic location of the user device to the one or more geographic locations of the one or more healthcare providers, and determining that the user device is within a threshold distance of the particular healthcare provider; in response to determining that the geographic location of the user corresponds to the geographic location of the particular healthcare provider, determining, with the application instance installed at the first software container on the user device, at least one of an updated score, a priority, or an outcome probability; encrypting, at least one of an alert, the health network data related to the user, or a recommendation using a public encryption key that is included in the first software container; in response to determining the at least one of the updated score, the priority, or the outcome probability, transmitting, from the first software container on the user device to a recipient software container, the encrypted at least one of the alert, the health network data related to the user, or the recommendation, wherein the recipient software container is an independent server virtualization instance that is configured to operate independently of other processes operating on a same processing resource as the independent server virtualization instance; decrypting the encrypted at least one of the alert, the health network data related to the user, or the recommendation using a private encryption key that is included in the recipient software container; and transmitting, from the first software container on the user device to the recipient software container, authentication information for the at least one of the alert, the health network data related to the user, or the recommendation, wherein the authentication information permits the recipient software container to confirm authenticity of the at least one of the alert, the health network data related to the user, or the recommendation. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system comprising:
one or more computers and one or more storage devices storing instructions that are operable, when executed by the one or more computers, to cause the one or more computers to perform operations comprising; receiving, at a first software container related to a user on a user device, first geographic location data indicating a geographic location of the user device, wherein the first software container is an independent server virtualization instance that is configured to operate independently of other processes operating on a same processing resource as the independent server virtualization instance, and operates to store health network data related to the user, and to facilitate encrypted communications between the user device and one or more electronic devices; accessing, with an application instance installed at the first software container on the user device, second geographic location data indicating one or more geographic locations of one or more healthcare providers; determining, with the application instance installed at the first software container on the user device, that the geographic location of the user corresponds to a geographic location of a particular healthcare provider, at least in part, by comparing the geographic location of the user device to the one or more geographic locations of the one or more healthcare providers, and determining that the user device is within a threshold distance of the particular healthcare provider; in response to determining that the geographic location of the user corresponds to the geographic location of the particular healthcare provider, determining, with the application instance installed at the first software container on the user device, at least one of an updated score, a priority, or an outcome; encrypting at least one of an alert, the health network data related to the user, or a recommendation using a public encryption key that is included in the first software container; in response to determining the at least one of the updated score, the priority, or the outcome probability, transmitting, from the first software container on the user device to a recipient software container, the encrypted at least one of the alert, the health network data related to the user, or the recommendation, wherein the recipient software container is an independent server virtualization instance that is configured to operate independently of other processes operating on a same processing resource as the independent server virtualization instance; decrypting the encrypted at least one of the alert, the health network data related to the user, or the recommendation using a private encryption key that is included in the recipient software container; and transmitting, from the first software container on the user device to the recipient software container, authentication information for the at least one of the alert, the health network data related to the user, or the recommendation, wherein the authentication information permits the recipient software container to confirm authenticity of the at least one of the alert, the health network data related to the user, or the recommendation. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
17. A non-transitory computer-readable storage medium comprising instructions that, when executed by one or more computers, cause the one or more computers to perform operations comprising:
-
receiving, at a first software container related to a user on a user device, first geographic location data indicating a geographic location of the user device, wherein the first software container is an independent server virtualization instance that is configured to operate independently of other processes operating on a same processing resource as the independent server virtualization instance, and operates to store health network data related to the user, and to facilitate encrypted communications between the user device and one or more electronic devices; accessing, with an application instance installed at the first software container on the user device, second geographic location data indicating one or more geographic locations of one or more healthcare providers; determining, with the application instance installed at the first software container on the user device, that the geographic location of the user corresponds to a geographic location of a particular healthcare provider, at least in part, by comparing the geographic location of the user device to the one or more geographic locations of the one or more healthcare providers, and determining that the user device is within a threshold distance of the particular healthcare provider; in response to determining that the geographic location of the user corresponds to the geographic location of the particular healthcare provider, determining, with the application instance installed at the first software container on the user device, at least one of an updated score, a priority, or an outcome; encrypting, at least one of an alert, the health network data related to the user, or a recommendation using a public encryption key that is included in the first software container; in response to determining the at least one of the updated score, the priority, or the outcome probability, transmitting, from the first software container on the user device to a recipient software container, the encrypted at least one of the alert, the health network data related to the user, or the recommendation, wherein the recipient software container is an independent server virtualization instance that is configured to operate independently of other processes operating on a same processing resource as the independent server virtualization instance; decrypting the encrypted at least one of the alert, the health network data related to the user, or the recommendation using a private encryption key that is included in the recipient software container; and transmitting, from the first software container on the user device to the recipient software container, authentication information for the at least one of the alert, the health network data related to the user, or the recommendation, wherein the authentication information permits the recipient software container to confirm authenticity of the at least one of the alert, the health network data related to the user, or the recommendation. - View Dependent Claims (18)
-
Specification