System and method for distributed tokenization using several substitution steps
First Claim
1. A method for distributed tokenization of sensitive strings of characters in a local server, said method comprising the steps:
- receiving from a central server at least one static token lookup table;
receiving a sensitive string of characters;
substituting a first substring of characters with a corresponding first token from said at least one token lookup table to form a first tokenized string of characters, said first substring of characters being a substring of said sensitive string of characters; and
substituting a second substring of characters with a corresponding second token from said at least one token lookup table to form a second tokenized string of characters, said second substring of characters being a substring of said first tokenized string of characters.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for distributed tokenization of sensitive strings of characters, such as social security numbers, credit card numbers and the like, in a local server is disclosed. The method comprises the steps of receiving from a central server at least one, and preferably at least two, static token lookup tables, and receiving a sensitive string of characters. In a first tokenization step, a first substring of characters is substituted with a corresponding first token from the token lookup table(s) to form a first tokenized string of characters, wherein the first substring of characters is a substring of the sensitive string of characters. Thereafter, in a second step of tokenization, a second substring of characters is substituted with a corresponding second token from the token lookup table(s) to form a second tokenized string of characters, wherein the second substring of characters is a substring of the first tokenized string of characters. Optionally, one or more additional tokenization steps is/are used.
126 Citations
18 Claims
-
1. A method for distributed tokenization of sensitive strings of characters in a local server, said method comprising the steps:
-
receiving from a central server at least one static token lookup table; receiving a sensitive string of characters; substituting a first substring of characters with a corresponding first token from said at least one token lookup table to form a first tokenized string of characters, said first substring of characters being a substring of said sensitive string of characters; and substituting a second substring of characters with a corresponding second token from said at least one token lookup table to form a second tokenized string of characters, said second substring of characters being a substring of said first tokenized string of characters. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A local server for distributed tokenization of sensitive strings of characters comprising:
-
means for receiving from a central server at least one static token lookup table; means for receiving a sensitive string of characters; means for substituting a first substring of characters with a corresponding first token from said at least one token lookup table to form a first tokenized string of characters, said first substring of characters being a substring of said sensitive string of characters; and means for substituting a second substring of characters with a corresponding second token from said at least one token lookup table to form a second tokenized string of characters, said second substring of characters being a substring of said first tokenized string of characters.
-
-
18. A system for distributed tokenization of sensitive strings of characters comprising:
-
a central server capable of generating static token lookup table; and at least one local server; wherein the at least one local server comprises; means for receiving from the central server at least one static token lookup table; means for receiving a sensitive string of characters; means for substituting a first substring of characters with a corresponding first token from said at least one token lookup table to form a first tokenized string of characters, said first substring of characters being a substring of said sensitive string of characters; and means for substituting a second substring of characters with a corresponding second token from said at least one token lookup table to form a second tokenized string of characters, said second substring of characters being a substring of said first tokenized string of characters.
-
Specification