METHOD AND SYSTEM OF SECURING DATA OVER NETWORKS

US 20120102143A1
Filed: 12/06/2010
Published: 04/26/2012
Est. Priority Date: 10/22/2010
Status: Active Grant

First Claim

Patent Images

1. A method for securing data in an application layer of a network architecture, the method comprising:

receiving, in the application layer on a transmitter computing device, a information package in the form a human-readable report;

parsing, in the application layer on the transmitter computing device, the information package into a plurality of discrete components, Wherein at least one of the components can be grouped with another component, the components sharing a common contextual relationship;

replacing, in the application layer on the transmitter computing device, a first parsed group of components from the information package with random strings, wherein the components are replaced by the random strings in a pre-determined order;

creating, in the application layer on the transmitter computing device, multiple derived packets, wherein the random strings forms one derived packet, the replaced first parsed group of components forms another derived packet and the combination of the inserted random strings and the remaining unaltered strings forms a third derived packet;

View all claims

9 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and systems described herein can secure and deliver data over a network. A recipient computer requests a human-readable report from a transmitter computer that initiates a software application to generate a report using data from a backend database. In the application layer, the combination of the report and data is parsed and certain components are replaced to form multiple derived packets of the random strings, the replaced strings, and the combined unaltered string with random strings. The replacement is performed in a pre-determined order that can be a mathematical or logical function. The derived packets are encrypted at the application layer. Further, the receiving computer, in the application layer, decrypts the packets, then finds and replaces the random strings in the combined derived packet, thereby recreating the human-readable report.

Citations

23 Claims

1. A method for securing data in an application layer of a network architecture, the method comprising:
- receiving, in the application layer on a transmitter computing device, a information package in the form a human-readable report;
  
  parsing, in the application layer on the transmitter computing device, the information package into a plurality of discrete components, Wherein at least one of the components can be grouped with another component, the components sharing a common contextual relationship;
  
  replacing, in the application layer on the transmitter computing device, a first parsed group of components from the information package with random strings, wherein the components are replaced by the random strings in a pre-determined order;
  
  creating, in the application layer on the transmitter computing device, multiple derived packets, wherein the random strings forms one derived packet, the replaced first parsed group of components forms another derived packet and the combination of the inserted random strings and the remaining unaltered strings forms a third derived packet;
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method according to claim 1, wherein the pre-determined order of the replaced component group is an order defined by a logical or mathematical function.
  - 3. The method according to claim 1, wherein the pre-determined order of the replaced component group is a logical relationship or mathematical formula shared between the transmitter and recipient computing devices.
  - 4. The method according to claim 1, wherein the human-readable report is selected from the group consisting of a web-based template with data, a document, a spreadsheet, a presentation, an e-mail, and a text file.
  - 5. The method according to claim 1, wherein the method for securing data in the application layer on the transmitter computing device is a function of a software application resident on the transmitter computing device.
  - 6. The method according to claim 1, wherein the common contextual relationship used in the parsing function is chosen based on the content of the information package to be parsed.
  - 7. The method according to claim 1, wherein the common contextual relationship used in the parsing function is chosen based on the grammar of the language used in the information package components.
  - 8. The method according to claim 1, further comprising:
    - encrypting, in the application layer on the transmitter computing device, each of the derived packets; and
      
      transmitting the encrypted derived packets from the transmitter computing device over a network to a recipient computing device.

9. A method for rendering secured data in an application layer of a network architecture, the method comprising:
- receiving, in the application layer on a recipient computing device, encrypted derived packets from the network;
  
  decrypting, in the application layer on the recipient computing device, the derived packets;
  
  searching, in the application layer on the recipient computing device, through the decrypted derived packets to identify a random derived packet containing random strings, an original derived packet containing original data strings is a pre-determined order and a combination derived packet containing the combined random strings and remaining unaltered strings;
  
  parsing, in the application layer on the recipient computing device, the combination derived packet to find the random strings listed in the random derived packet; and
  
  replacing, in the application layer on the recipient computing device, the random strings with the original data strings from the original derived packet after resolving the pre-determined order of replacement, thereby creating a human-readable report.
- View Dependent Claims (10, 11, 12, 13)
- - 10. The method according to claim 9, wherein the pre-determined order of replacement from the original derived packet to the combination derived packet is an order defined by a logical or mathematical function.
  - 11. The method according to claim 9, wherein the pre-determined order of replacement from the original derived packet to the combination derived packet is a logical relationship or mathematical formula shared between the recipient computing device and a transmitter computing device.
  - 12. The method according to claim 9, wherein the human-readable report includes web-based templates with data, documents, spreadsheets, presentations, e-mails and any text file
  - 13. The method according to claim 9, wherein the method for rendering secured data in the application layer on the transmitter computing device is a function of a software application resident on the recipient computing device.

14. A method for securing data in an application layer of a network architecture, the method comprising:
- receiving, in the application layer on a transmitter computing device, a information package in the form a human-readable report;
  
  parsing, in the application layer on the transmitter computing device, the information package into a plurality of discrete components, wherein at least one of the components can be grouped with another component, the components sharing a common contextual relationship;
  
  replacing, in the application layer on the transmitter computing device, a first parsed group of components from the information package with random strings, wherein the components are replaced by the random strings in a pre-determined order;
  
  creating, in the application layer on the transmitter computing device, multiple derived packets, wherein the random strings forms one derived packet, the replaced first parsed group of components forms another derived packet and the combination of the inserted random strings and the remaining unaltered strings forms a third derived packet;
  
  transmitting each derived packet from the transmitter computing device over a network to a recipient computing device;
  
  receiving, in the application layer the recipient computing device, derived packets from the network;
  
  searching, in the application layer on the recipient computing device, through the decrypted derived packets to identify a random derived packet containing the random strings, an original derived packet containing the replaced first parsed group of components is a pre-determined order and a combination derived packet containing the combined random strings and remaining unaltered strings;
  
  parsing, in the application layer on the recipient computing device, the combination derived packet to find the random strings listed in the random derived packet; and
  
  replacing, in the application layer on the recipient computing device, the random strings with the original data strings from the original derived packet after resolving the pre-determined order of replacement, thereby re-creating the human-readable report.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 15. The method according to claim 14, wherein the pre-determined order is an order defined by a logical or mathematical function.
  - 16. The method according to claim 14, wherein the pre-determined order is a logical relationship or mathematical formula shared between the recipient computing device and the transmitter computing device.
  - 17. The method according to claim 14, wherein the human-readable report is selected from the group consisting of a web-based template with data, a document, a spreadsheet, a presentation, an e-mail, and a text file.
  - 18. The method according to claim 14, wherein the method for securing data in the application layer on the transmitter computing device and the recipient computing device is a function of a software application resident on each of the computing devices.
  - 19. The method according to claim 14, wherein the common contextual relationship used in the parsing function is chosen based on the content of the information package to be parsed.
  - 20. The method according to claim 14, wherein the common contextual relationship used in the parsing function is chosen based on the grammar of the language used in the information package components.
  - 21. The method according to claim 14, wherein the common contextual relationship used in the parsing function is chosen based on the input parameters that establish the contextual relationships
  - 22. The method according to claim 14, wherein the random string generation is based on the input parameters from the external world.
  - 23. The method according to claim 14, further comprising:
    - encrypting, in the application layer on a transmitter computing device, each of the derived packets;
      
      decrypting, in the application layer on the recipient computing device, the derived packets;

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Unisys Corporation
Original Assignee
Unisys Corporation
Inventors
Mandre, Sateesh

Granted Patent

US 8,386,595 B2
Time in Patent Office

Days
Field of Search
US Class Current

709/217
CPC Class Codes

H04L 63/0478 applying multiple layers of...

H04L 63/168 above the transport layer

METHOD AND SYSTEM OF SECURING DATA OVER NETWORKS

First Claim

9 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND SYSTEM OF SECURING DATA OVER NETWORKS

First Claim

9 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links