SYSTEM AND METHOD FOR AN ANONYMOUS EXCHANGE OF PRIVATE DATA
0 Assignments
0 Petitions
Accused Products
Abstract
Facilitating the purchase and sale of private data between anonymous entities based on the use of encryption and a centralized on-line entity to exchange the private data in a secure environment. The seeker of private data, such as consumer information, transmits an encrypted query to the centralized exchange entity. The query submission includes legal representations stating the legally permissible purpose for seeking the information. The centralized exchange entity compares the encrypted query to an encrypted data index collected from at least one data provider, to determine if the query matches any private data held by a data provider. The comparison is conducted within a secure, search component to ensure the privacy of all data and all parties to the transaction. The exchange entity facilitates the anonymous exchange between the data purchaser and the data provider. A payment invoice can be generated and electronically presented by maintainer. The payment may be electronically debited from the designated account of a data purchaser and remitted to a data provider. In addition, a portion of such funds may be retained by the centralized exchange entity.
40 Citations
23 Claims
-
1. (canceled)
-
2. A method comprising:
-
registering, by a computer, a data provider with an exchange server configured to facilitate an exchange of private data between the data provider and a data buyer, wherein the data provider maintains the private data; responsive to registering the data provider with the exchange server, receiving, by the computer, specifications for generating an index of the private data, the index comprising a metadata associated with the private data; generating, by the computer, the index of the private data for sale based on the received specifications; encrypting, by the computer, the index with an encryption key of the exchange server; transmitting, by the computer, the encrypted index to the exchange server for generation of a searchable index for the data buyer based on the encrypted index; receiving, by the computer, a request for the private data maintained by the data provider and an identifier associated with the private data requested by the data buyer, the request for the private data is received in response to receiving, at the exchange server, a query for the private data from the data buyer and determining that the private data is maintained by the data provider based on searching the searchable index; retrieving, by the computer, the private data based on the identifier; encrypting, by the computer, the private data with the encryption key of the exchange server; transmitting, by the computer, the encrypted private data to the exchange server for arranging the exchange of the private data with the data buyer; and receiving, by the computer, a payment associated with the exchange of the private data with the data buyer by the exchange server. - View Dependent Claims (3, 4, 5, 6, 7)
-
-
8. A method comprising:
-
registering, by a computer, a data buyer with an exchange server configured to facilitate an exchange of private data between a data provider and the data buyer; responsive to registration, generating, by the computer, a query that identifies the data buyer and defines a purchase request for the private data; transmitting, by the computer, the query and a legal representation that the data buyer will use the private data requested in the query in accordance with permissible uses stated in the legal representation; transmitting, by the computer, a decryption key of the data buyer to the exchange server for decrypting a searchable index associated with the data buyer and searching the decrypted searchable index for the requested private data in a secure environment; responsive to finding a match for the requested private data at the exchange server, receiving, by the computer, a response to the query comprising an identifier of the private data that is assigned by the exchange server to preserve an anonymity of the data provider that maintains the private data; transmitting, by the computer, a request to purchase the private data, the request comprising the exchange server assigned identifier of the private data; receiving, by the computer, a payment request for arranging the exchange of the requested private data from the data provider to the data buyer; providing, by the computer, the requested payment for receiving the requested private data; responsive to providing the payment, receiving, by the computer, the requested private data that is encrypted with the encryption key of the data buyer. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer-implemented method for exchanging private data, comprising the steps of:
-
building, by the computer, a searchable index for each data buyer of a plurality of data buyers based on at least one index of private data for sale provided by one or more of a plurality of data providers; for each searchable index of each of the plurality of data buyers, encrypting the searchable index by an encryption key associated with a respective one of the plurality of data buyers; for each searchable index of each of the plurality of data buyers, labeling each data record of each searchable index with an identifier such that the identity of a data provider of the plurality of data providers associated with the respective data record remains anonymous to the plurality of data buyers; receiving a query that identifies a data buyer of the plurality of data buyers and defines a purchase request for the private data; responsive to receiving the query, transmitting, by the computer, the searchable index associated with the data buyer, the decryption key of the data buyer, and the query to another computer configured to determine whether at least one of the data providers maintains the private data requested by the data buyer; receiving, by the computer, a search result which indicates whether at least one of the data providers maintains the private data requested by the data buyer; in response to determining that at least one of the data providers maintains the private data requested, arranging an exchange of the private data requested with the data buyer. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. A computer-implemented method for exchanging private data, comprising the steps of:
-
building, by the computer, an encrypted searchable index for each data buyer of a plurality of data buyers based on at least one index of private data for sale provided by one or more of a plurality of data providers, wherein the searchable index for each data buyer is encrypted with an encryption key associated with the respective data buyer; receiving a query associated with a data buyer of the plurality of data buyers for the private data, the query comprising known parameters associated with the private data; decrypting the encrypted searchable index associated with the data buyer by a decryption key of the data buyer; searching, by the computer, the decrypted searchable index to determine that at least one of the data providers maintains the requested private data; responsive to determining that at least one of the data providers maintains the requested private data, generating another encryption key and another decryption key; transmitting, by the computer, the other encryption key to the respective data provider that maintains the private data and the other decryption key to the data buyer for direct and anonymous exchange of the private data between the data buyer and the respective data provider by use of an anonymous remailer. - View Dependent Claims (22, 23)
-
Specification