Method and system for exchanging sensitive information in a wireless communication system
First Claim
Patent Images
1. A computer-implemented method for controlling exchange of private information associated with a client device, wherein the client device is a wireless device, said method comprising:
- (a) receiving a request from the client device;
(b) determining whether a privacy agreement is needed to respond to the request before private information associated with said client device is exchanged;
(c1) determining whether a privacy agreement can be reached before private information associate with said client device is exchanged when said determining (b) determines that said privacy agreement is needed, wherein the private agreement includes a plurality of components and governs the exchange of the private information, and wherein said determining of whether said privacy agreement can be reached comprises;
(c2) determining whether to accept at least one proposed privacy agreement by examining said at least one proposed privacy agreement, wherein said at least one proposed privacy agreement includes a plurality of components that govern the exchange of the private information associated with said client(c3) negotiating at least one component of said at least one proposed privacy agreement when said determining (c2) determines not to accept said proposed privacy agreement;
(c4) generating an accepted privacy agreement as a set of rules that govern the exchange of private information when said determining (c2) determines to accept said privacy agreement; and
(d) thereafter producing a response to the request when said determining (c2) determines to accept said privacy agreement.
5 Assignments
0 Petitions
Accused Products
Abstract
Improved techniques that enable the exchange of sensitive information between client devices and server devices are disclosed. The exchange, as well as the use and nature, of sensitive information released can be governed by one or more privacy agreements established between the principle parties, namely, a client device and a content server. A proxy server can be used to establish privacy agreements with content servers (service providers).
-
Citations
37 Claims
-
1. A computer-implemented method for controlling exchange of private information associated with a client device, wherein the client device is a wireless device, said method comprising:
-
(a) receiving a request from the client device; (b) determining whether a privacy agreement is needed to respond to the request before private information associated with said client device is exchanged; (c1) determining whether a privacy agreement can be reached before private information associate with said client device is exchanged when said determining (b) determines that said privacy agreement is needed, wherein the private agreement includes a plurality of components and governs the exchange of the private information, and wherein said determining of whether said privacy agreement can be reached comprises; (c2) determining whether to accept at least one proposed privacy agreement by examining said at least one proposed privacy agreement, wherein said at least one proposed privacy agreement includes a plurality of components that govern the exchange of the private information associated with said client (c3) negotiating at least one component of said at least one proposed privacy agreement when said determining (c2) determines not to accept said proposed privacy agreement; (c4) generating an accepted privacy agreement as a set of rules that govern the exchange of private information when said determining (c2) determines to accept said privacy agreement; and (d) thereafter producing a response to the request when said determining (c2) determines to accept said privacy agreement. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A computer-implemented method for exchanging private information associated with a client device to a server device via a proxy server, wherein the private information includes location information of the client device, wherein the client device is a wireless device, said method comprising:
-
establishing an authorization agreement that authorizes the proxy server to negotiate privacy agreements with server devices on behalf of the client device, wherein the privacy agreement defines a set of rules that govern the exchange of information between the client device and the server device; receiving a request at the proxy server, wherein the request includes the private information associated with the client device and wherein a response to the request can be made by the server device; receiving a proposed privacy agreement from the server device associated with the request; negotiating the privacy agreement by the proxy server on behalf of the client device when the proposed privacy agreement is not in accord with the authorization agreement; accepting, by the proxy server for the client devices, the proposed privacy agreement as a privacy agreement, when the proposed privacy agreement is in accord with the authorization agreement; and providing the private information to the server device after said accepting of the proposed privacy agreement as the privacy agreement or after said negotiating of the privacy agreement. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
-
21. A computer implemented method for controlling exchange of private information associated with a client device, wherein the client device is a wireless device supported by a network infrastructure, said method comprising:
-
(a) receiving a request from the client device, the request being directed to a server device; (b) determining whether a privacy agreement is needed to respond to the request; (b1) determining whether a privacy agreement can be reached, when said determining (b) determines that said privacy agreement is needed, wherein said private agreement governs the exchange of the private information, and wherein said determining of whether said privacy agreement can be reached comprises; determining whether to accept at least one proposed privacy agreement by examining said at least one proposed privacy agreement, wherein said at least one proposed privacy agreement includes a plurality of components which does a set of rules governing the exchange of private information;
negotiating at least one component of said at least one proposed private agreement when said determining determines that the privacy agreement should not be accepted;generating an accepted privacy agreement when said determining determines to accept a privacy agreement, wherein said accepted privacy agreement includes one or more components that define the accepted privacy agreement; (c) determining, based on said accepted privacy agreement, whether the server device is authorized to receive the private information associated with the client device when said determining (b) determines that a privacy agreement is needed; and (d) providing the private information to the server device associated with the request when said determining (c) determines that the server device is authorized to receive the private information associated with the client device. - View Dependent Claims (22, 23, 24, 25, 26)
-
-
27. A system for controlling information exchange between a wireless client device and server devices, the wireless client device being supported by a wireless network, said system comprising:
a proxy server device operatively connected between the wireless client device and the server device, wherein said proxy server device manages distribution of private information associated with the wireless client device to the server devices, and wherein said proxy server device includes at least; a storage area, said storage area stores information received from at least one of the wireless client device and from the wireless network; a privacy manager, said privacy manager operates to restrict the release of the information received from the wireless client device and the wireless network to the one or more of the server devices unless a suitable privacy agreement governing the use of the information is in place for the one or more server devices; and wherein said privacy manager is further capable of operating to; determine whether said privacy agreement is accepted, wherein said privacy agreement can be accepted by examining at least one proposed privacy agreement that includes a plurality of components which govern the exchange of privacy information associated with said client device; initiate negotiation of at least one component of said at least one proposed privacy agreement when said determining determines that said privacy agreement is not accepted; and generate an accepted privacy agreement as a set of rules that govern the exchange of private information when said determining determines that said privacy agreement is accepted. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35)
-
36. A computer readable medium including at least computer program code for exchanging private information associated with a client device to a server device via a proxy server, wherein the private information includes location information of the client device, wherein the client device is a wireless device, said computer readable medium comprising:
-
computer program code for establishing an authorization agreement that authorizes the proxy server to negotiate privacy agreements with sewer devices on behalf of the client device, wherein the privacy agreement defines a set of rules that govern the exchange of information between the client device and the server device; computer program code for receiving a request at the proxy server, wherein the request includes the private information associated with the client device and wherein a response to the request can be made by the server device; computer program code for receiving a proposed privacy agreement from the server device associated with the request; computer program code for initiating negotiation of the privacy agreement by the proxy server on behalf of the client device when the proposed privacy agreement is not in accord with the authorization agreement; computer program code for accepting, by the proxy server for the client device, the proposed privacy agreement as a privacy agreement, when the proposed privacy agreement is in accord with the authorization agreement; and computer program code for providing the private information to the server device after said accepting of the proposed privacy agreement as the privacy agreement or after said negotiating of the privacy agreement.
-
-
37. A computer readable medium including at least computer program code for controlling exchange of private information associated with a client device, wherein the client device is a wireless device, said computer readable medium comprising:
-
computer program code for receiving a request from the client device; computer program code for determining whether a privacy agreement is needed to respond to the request before private information associated with said client device is exchanged; computer program code for determining whether a privacy agreement can be reached before private information associated with said client device is exchanged when said determining determines that said privacy agreement is needed, wherein the privacy agreement includes a plurality of components and governs the exchange of the private information, and wherein said determining of whether said privacy agreement can be reached comprises; determining whether to accept at least one proposed privacy agreement by examining said at least one proposed privacy agreement, wherein said at least one proposed privacy agreement includes a plurality of components that govern the exchange of the private information associated with said client; initiating negotiation of at least one component of said at least one proposed privacy agreement when said determining determines not to accept said proposed privacy agreement; generating an accepted privacy agreement as a set of rules that govern the exchange of private information when said determining determines to accept said privacy agreement, and computer program code for thereafter producing a response to the request when said determining determines to accept said privacy agreement.
-
Specification