Methods and apparatus for providing privacy-preserving global customization

US 7,107,269 B2
Filed: 06/12/2001
Issued: 09/12/2006
Est. Priority Date: 06/13/2000
Status: Expired due to Term

First Claim

Patent Images

1. A method for use in a distributed data network wherein a user may request and receive content from one or more entities in the distributed data network, the method comprising the steps of:

providing one or more mechanisms for enabling at least one of the user and one or more of the entities to control which entities in the distributed data network have access to information generated in association with the user'"'"'s activity on the distributed data network, wherein the user specifies at least one role and, based on the created role, at least one profile for the user is maintained by one or more of the entities in the form of information inserted into the profile by one or more of the entities, the information representing the user'"'"'s activity on the distributed data network with respect to the one or more entities that inserted the information, such that profile maintenance is substantially transparent to the user; and

customizing content to be received by the user in accordance with at least a portion of the information in the user profile;

wherein the step of providing the one or more control mechanisms for the user comprises the step of enabling the user to specify two or more roles within which the user may perform activities on the distributed data network, wherein the two or more roles have two or more profiles respectively associated therewith, and wherein the two or more profiles are substantially unlinkable.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques and infrastructure are provided for supporting global customization. The invention enables persona profiles of user information to be maintained, and such persona profiles to be accessed by merchants. Via the persona abstraction, users control what information is grouped into a persona profile, and can selectively enable a merchant to read one of these profiles. The infrastructure of the invention employs a persona server that assists users in managing their personae. The infrastructure of the invention separates this from the profile databases at which persona profile information is stored, to eliminate any single point at which different persona profiles can be tied to the same user. Since merchants also have privacy concerns, the infrastructure of the invention provides a data protection model based on tainting, by which merchants can limit how the information they contribute can be exposed.

Citations

16 Claims

1. A method for use in a distributed data network wherein a user may request and receive content from one or more entities in the distributed data network, the method comprising the steps of:
- providing one or more mechanisms for enabling at least one of the user and one or more of the entities to control which entities in the distributed data network have access to information generated in association with the user'"'"'s activity on the distributed data network, wherein the user specifies at least one role and, based on the created role, at least one profile for the user is maintained by one or more of the entities in the form of information inserted into the profile by one or more of the entities, the information representing the user'"'"'s activity on the distributed data network with respect to the one or more entities that inserted the information, such that profile maintenance is substantially transparent to the user; and
  
  customizing content to be received by the user in accordance with at least a portion of the information in the user profile;
  
  wherein the step of providing the one or more control mechanisms for the user comprises the step of enabling the user to specify two or more roles within which the user may perform activities on the distributed data network, wherein the two or more roles have two or more profiles respectively associated therewith, and wherein the two or more profiles are substantially unlinkable.
- View Dependent Claims (2, 3, 4, 9)
- - 2. The method of claim 1, wherein the substantial unlinkability of the profiles substantially prevents an entity from learning about the user'"'"'s activity at another entity, when the user conducts activities at the different entities in the different roles.
  - 3. The method of claim 1, wherein the roles are specified in accordance with at least one dedicated server located in the distributed data network.
  - 4. The method of claim 1, wherein at least one of the one or more entities are merchants operating on the distributed data network.
  - 9. The method of claim 1, wherein the one or more entities access the information in accordance with one or more dedicated databases located in the distributed data network.

5. A method for use in a distributed data network wherein a user may request and receive content from one or more entities in the distributed data network, the method comprising the steps of:
- providing one or more mechanisms for enabling at least one of the user and one or more of the entities to control which entities in the distributed data network have access to information generated in association with the user'"'"'s activity on the distributed data network, wherein the user specifies at least one role and, based on the created role, at least one profile for the user is maintained by one or more of the entities in the form of information inserted into the profile by one or more of the entities, the information representing the user'"'"'s activity on the distributed data network with respect to the one or more entities that inserted the information, such that profile maintenance is substantially transparent to the user; and
  
  customizing content to be received by the user in accordance with at least a portion of the information in the user profile;
  
  wherein the step of providing the one or more control mechanisms for the one or more entities comprises the step of enabling the one or more entities to specify which other entities are able to access information that the one or more entities learned in association with the user conducting activities with the one or more entities.
- View Dependent Claims (6, 7, 8, 10, 11, 12, 13, 14, 15, 16)
- - 6. The method of claim 5, further wherein the one or more entities are enabled to specify which other entities are able to access information derived from original information that the one or more entities learned in association with the user conducting activities with the one or more entities.
  - 7. The method of claim 6, wherein the one or more entities are enabled to specify a degree of information derivation in accordance with which other entities may be able to access the information.
  - 8. The method of claim 7, wherein the one or more entities are enabled to group the other entities into one or more classes wherein each class has a degree of information derivation associated therewith.
  - 10. The method of claim 8, wherein the information that the one or more entities learn in association with the user conducting activities with the one or more entities comprises at least one of original information and information derived from the original information.
  - 11. The method of claim 8, wherein the enabling step further comprises enabling the one or more entities to specify one or more taint classes for portions of the stored information.
  - 12. The method of claim 11, wherein a given taint class corresponds to an affinity an entity has to collaborate with entities in the given taint class.
  - 13. The method of claim 11, wherein at least portions of the information are respectively stored as records, wherein each record has stored in association therewith a data structure comprising at least one of an accumulated taint strength, a set of taint classes, and pointers to one or more original records from which this record was derived.
  - 14. The method of claim 13, wherein an entity is not permitted to read a record derived from an original record if the entity is not a member of a specified taint class and there is a path of a given length or less from the derived record to the original record.
  - 15. The method of claim 8, further comprising the step of applying a scoring function to portions of the stored information to which a given entity has access.
  - 16. The method of claim 15, wherein results of the scoring function indicate the relevance of the portions of the stored information to one or more content customization decisions to be made by the given entity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nokia of America Corporation (Nokia Corporation)
Original Assignee
Lucent Technologies, Inc. (Nokia Corporation)
Inventors
Jakobsson, Bjorn Markus, Jai, Ben, Reiter, Michael Kendrick, Arlein, Robert M., Monrose, Fabian
Primary Examiner(s)
Wong, Leslie

Application Number

US10/031,773
Publication Number

US 20020133500A1
Time in Patent Office

1,918 Days
Field of Search

707/9, 707/10, 707/102, 707/104.1, 709/203, 709/219, 709/215, 709/225, 705/26, 713/171
US Class Current

1/1
CPC Class Codes

G06F 21/6254   by anonymising data, e.g. d...

G06F 21/6263   during internet communicati...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2137   Time limited access, e.g. t...

G06F 2221/2141   Access rights, e.g. capabil...

G06Q 30/02   Marketing; Price estimation...

G06Q 30/06   Buying, selling or leasing ...

G06Q 30/0621   Item configuration or custo...

H04L 63/0428   wherein the data content is...

H04L 63/102   Entity profiles

H04L 67/02   based on web technology, e....

H04L 67/306   User profiles

H04L 67/53   using third party service p...

H04L 67/535   Tracking the activity of th...

H04L 69/329   in the application layer [O...

H04L 9/40   Network security protocols

Y10S 707/99939   Privileged access

Methods and apparatus for providing privacy-preserving global customization

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and apparatus for providing privacy-preserving global customization

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links