METHOD AND SYSTEM FOR PRESERVING PRIVACY AND ACCOUNTABILITY
First Claim
1. A computer implemented method (4000) on a server computer (1001) for preserving privacy and accountability, comprising:
- receiving (4100) from a first client computer (1002) pseudonymous, encrypted data (1101);
storing (4200) the pseudonymous, encrypted data (1101) at the server computer (1001);
receiving (4300) from a second client computer (1003) a data request (1202) for the pseudonymous, encrypted data (1101);
providing (4400) the pseudonymous, encrypted data (1101) to the second client computer (1003) in response (1203) to the data request;
receiving (4500) from the second client computer (1003) a signed key request (1204) for at least one key (1301), wherein the at least one key (1301) to be configured to decrypt the pseudonymous, encrypted data (1101) and wherein the signed key request (1204) comprises a public key (1303-pu) of the second client computer (1003);
receiving (4600) from the first client computer (1002) the at least one key, wherein the at least one key (1301) is encrypted with the public key (1303-pu) of the second client computer (1003); and
providing (4700) the encrypted at least one key to the second client computer (1003) in response to the signed key request.
1 Assignment
0 Petitions
Accused Products
Abstract
A computer implemented method, computer program product, server and clients for preserving privacy and accountability. The server receives from a first client computer pseudonymous, encrypted data and stores the pseudonymous, encrypted data. The -server further receives receiving at from a second client computer a data request for the pseudonymous, encrypted data and provides the pseudonymous, encrypted data to the second client computer in response to the data request. The server receives from the second client computer a signed key request for at least one key, wherein the at least one key is configured to decrypt the pseudonymous, encrypted data and wherein the signed key request comprises a public key of the second client computer. The server receives from the first client computer the at least one key, wherein the at least one key is encrypted with the public key of the second client computer and provides the at least one encrypted key to the second client computer in response to the signed key request.
13 Citations
21 Claims
-
1. A computer implemented method (4000) on a server computer (1001) for preserving privacy and accountability, comprising:
-
receiving (4100) from a first client computer (1002) pseudonymous, encrypted data (1101); storing (4200) the pseudonymous, encrypted data (1101) at the server computer (1001); receiving (4300) from a second client computer (1003) a data request (1202) for the pseudonymous, encrypted data (1101); providing (4400) the pseudonymous, encrypted data (1101) to the second client computer (1003) in response (1203) to the data request; receiving (4500) from the second client computer (1003) a signed key request (1204) for at least one key (1301), wherein the at least one key (1301) to be configured to decrypt the pseudonymous, encrypted data (1101) and wherein the signed key request (1204) comprises a public key (1303-pu) of the second client computer (1003); receiving (4600) from the first client computer (1002) the at least one key, wherein the at least one key (1301) is encrypted with the public key (1303-pu) of the second client computer (1003); and providing (4700) the encrypted at least one key to the second client computer (1003) in response to the signed key request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A server computer (1001) comprising:
-
an interface component (1011) configured; to receive (4100) from a first client computer (1002) pseudonymous, encrypted data (1101) and further; to receive (4300) from a second client computer (1003) a data request (1202) for the pseudonymous, encrypted data (1101); to provide (4400) the pseudonymous, encrypted data (1101) to the second client computer (1003) in response (1203) to the data request (1202); to receive (4500) from the second client computer (1003) a signed key request (1204) for at least one key (1301), wherein the at least one key (1301) is to be configured to decrypt the pseudonymous, encrypted data (1101) and wherein the signed key request (1204) comprises a public key (1303-pu) of the second client computer (1003); to receive (4600) from the first client computer (1002) the at least one key (1301), wherein the at least one key (1301) is encrypted with the public key (1303-pu) of the second client computer (1003); and to provide (4700) the at least one encrypted key (1301) to the second client computer (1003) in response (1206) to the signed key request (1204); and a data storage (1031) component configured to store (4200) the pseudonymous, encrypted data (1101) at the server computer (1001). - View Dependent Claims (16)
-
-
17. A data consumer client computer (1003), comprising:
-
an interface component (1013) configured; to send a data request (1202) for pseudonymous, encrypted data (1101) to a server computer (1001), wherein the pseudonymous, encrypted data (1101) originate from a data producer client computer (1002); to receive in response (1203) to the data request (1202) the pseudonymous, encrypted data (1101) from the server computer (1001); to send a signed key request (1204) for at least one key (1301), wherein the at least one key (1301) is to be configured to decrypt the pseudonymous, encrypted data (1101) and wherein the signed key request (1204) comprises a public key (1303-pu) of the data consumer client computer (1003); to receive in response (1206) to the signed key request (1204) the at least one key (1301) from the server computer, wherein the at least one key is encrypted with the public key (1303-pu) of the data consumer client computer (1003); and a data processing component (1023) configured; to decrypt the at least one encrypted key (1301) by using a private key (1303-pr) which is related to the public key (1303-pu) of the data consumer client computer; and to decrypt the pseudonymous, encrypted data (1101) by using the at least one decrypted key (1301a). - View Dependent Claims (18)
-
-
19. A data producer client computer (1002), comprising:
-
an interface component (1012) configured; to send pseudonymous, encrypted data (1001) to a server computer (1001); to receive from the server computer (1001) a signed key request for at least one key (1301), wherein the at least one key (1301) is to be configured to decrypt the pseudonymous, encrypted data (1101) and wherein the signed key request comprises a public key (1303-pu) of a data consumer client computer (1003); and to send the at least one key (1301) to the server computer (1001), wherein the at least one key (1301) is encrypted with the public key (1303-pu) of the data consumer client computer (1003); and a data processing component (1022) configured; to encrypt the at least one key with the public key (1303-pu) of the data consumer client computer (1003). - View Dependent Claims (20, 21)
-
Specification