System and method for storing and accessing secure data
First Claim
Patent Images
1. A data manager comprising:
- a computer having a processor, an interface coupled with said processor and a memory coupled with said processor and said interface;
a first logic stored in said memory and executable by said processor to receive first data via said interface from a first entity, said first data comprising a first substantially unique representation and a first score associated with said first substantially unique representation, said first substantially unique representation being representative of a first identification parameter of a first entity, said first substantially unique representation being operative to substantially obscure said first identification parameter and substantially prevent said first identification parameter from being determined from said first substantially unique representation; and
a second logic coupled with said first logic and stored in said memory and executable by said processor to store said first substantially unique representation and said first score in said memory.
1 Assignment
0 Petitions
Accused Products
Abstract
The disclosed embodiments relate to a system and method for storing and accessing secure data where non-secure data needs to be exchanged between entities without exposing underlying or related secure data which is already known to those entities and which must also be communicated to identify or otherwise contextualize the non-secure data. A Hashing Facility is provided that uses a Hash Function to create a unique Hash Value from a secure data value. The Hash Value may then be communicated along with the related non-secure data.
-
Citations
48 Claims
-
1. A data manager comprising:
-
a computer having a processor, an interface coupled with said processor and a memory coupled with said processor and said interface; a first logic stored in said memory and executable by said processor to receive first data via said interface from a first entity, said first data comprising a first substantially unique representation and a first score associated with said first substantially unique representation, said first substantially unique representation being representative of a first identification parameter of a first entity, said first substantially unique representation being operative to substantially obscure said first identification parameter and substantially prevent said first identification parameter from being determined from said first substantially unique representation; and a second logic coupled with said first logic and stored in said memory and executable by said processor to store said first substantially unique representation and said first score in said memory. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method comprising:
-
receiving, by first logic stored in a memory of a computer, said computer further comprising a processor coupled with said memory and an interface coupled with said processor and said memory, said first logic being executable by said processor, first data via said interface from said first entity, said first data comprising a first substantially unique representation and a first score associated with said first substantially unique representation, said first substantially unique representation being representative of a first value of said at least one parameter, said first substantially unique representation being operative to substantially obscure said first value and substantially prevent said first value from being determined from said first substantially unique representation, said first score being indicative of a likelihood that said first value may be associated with a first fraudulent transaction; and storing, by second logic coupled with said first logic and stored in said memory and executable by said processor, said first substantially unique representation and said first score in said memory according to said first substantially unique representation. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A data manager for collecting information from a first entity regarding a second entity and disseminating said information to a third entity, said second entity being characterized by at least one parameter, said data manager further comprising:
-
a computer means having a processing means, an interface means coupled with said processing means and a memory means coupled with said processing means and said interface means; first logic means, stored in said memory means and executable by said processing means, for receiving first data via said interface from said first entity, said first data comprising a first substantially unique representation and a first score associated with said first substantially unique representation, said first substantially unique representation being representative of a first value of said at least one parameter, said first substantially unique representation being operative to substantially obscure said first value and substantially prevent said first value from being determined from said first substantially unique representation, said first score being indicative of a likelihood that said first value may be associated with a first fraudulent transaction; and second logic means coupled with said first logic means and stored in said memory means and executable by said processing means, for storing said first substantially unique representation and said first score in said memory according to said first substantially unique representation; wherein said data manager is unaware of said first value. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34)
-
-
35. A system for collecting information from a first entity regarding a second entity and disseminating said information to a third entity, said second entity being characterized by at least one parameter, said system comprising:
-
a data receiver operative to receive first data from said first entity, said first data comprising a first substantially unique representation and a first score associated with said first substantially unique representation, said first substantially unique representation being representative of a first value of said at least one parameter, said first substantially unique representation being operative to substantially obscure said first value and substantially prevent said first value from being determined from said first substantially unique representation; a data storage coupled with said data receiver and operative to store said first substantially unique representation and said first score according to said first substantially unique representation; wherein said system is unaware of said first value. - View Dependent Claims (36)
-
-
37. A method of collecting information by a collecting entity from a first entity regarding a second entity and disseminating said information to a third entity, said second entity being characterized by at least one parameter, said method comprising:
-
receiving first data from said first entity, said first data comprising a first substantially unique representation and a first score associated with said first substantially unique representation, said first substantially unique representation being representative of a first value of said at least one parameter, said first substantially unique representation being operative to substantially obscure said first value and substantially prevent said first value from being determined from said first substantially unique representation, said first score being indicative of a likelihood that said first value may be associated with a first fraudulent transaction; storing said first substantially unique representation and said first score according to said first substantially unique representation; wherein said collecting entity is unaware of said first value. - View Dependent Claims (38, 39, 40)
-
-
41. A system for collecting information from a first entity regarding a second entity and disseminating said information to a third entity regarding a subsequent transaction between said second entity and said third entity, said second entity being characterized by at least one parameter, said system comprising:
-
data receiving means for receiving first data from said first entity, said first data comprising a first substantially unique representation and a first score associated with said first substantially unique representation, said first substantially unique representation being representative of a first value of said at least one parameter, said first substantially unique representation being operative to substantially obscure said first value and substantially prevent said first value from being determined from said first substantially unique representation, said first score being indicative of a likelihood that said first value may be associated with a first fraudulent transaction; data storage means, coupled with said data receiving means, for storing said first substantially unique representation and said first score according to said first substantially unique representation; wherein said system is unaware of said first value. - View Dependent Claims (42)
-
-
43. A transaction manager for communicating information regarding a first entity, said information being further related to a first transaction involving said first entity, said first entity being characterized by at least one parameter, said system comprising:
-
a computer having a processor, an interface coupled with said processor and a memory coupled with said interface and said processor; first logic stored in said memory and executable by said processor, said first logic being operative to determine whether said first transaction is one of pending and complete; second logic, coupled with said first logic, stored in said memory and executable by said processor, and operative, if said first transaction is pending, to determine a value of said at least one parameter and generate a first substantially unique representation of said value, said first substantially unique representation being operative to substantially obscure said value and substantially prevent said value from being determined from said first substantially unique representation; third logic, coupled with said second logic, stored in said memory and executable by said processor, and operative to transmit said first substantially unique representation via said interface to a transaction processor and receive a subsequent response therefrom; and fourth logic, coupled with said first logic, stored in said memory and executable by said processor, and operative, if said first transaction is complete, to determine whether said first transaction is fraudulent, said fourth logic being further operative, if said first transaction is determined to be fraudulent, to compute a second score, based on said first transaction, indicative of the likelihood that a subsequent transaction with said first entity will be fraudulent and to further determine a value of said at least one parameter and generate a second substantially unique representation of said value, said second substantially unique representation being operative to substantially obscure said value and substantially prevent said value from being determined from said second substantially unique representation, wherein said fourth logic is further operative to communicate said second score and said second substantially unique representation to said transaction processor via said interface. - View Dependent Claims (44, 45)
-
-
46. A method implemented in a computer for communicating information regarding a first entity, said information being further related to a first transaction involving said first entity, said first entity being characterized by at least one parameter, said method comprising:
-
determining, by first logic stored in a memory of a computer, said computer further comprising a processor coupled with said memory and an interface coupled with said processor and said memory, said first logic being executable by said processor, whether said first transaction is one of pending and complete; determining, by second logic, coupled with said first logic, stored in said memory and executable by said processor, if said first transaction is pending, a value of said at least one parameter and generating a first substantially unique representation of said value, said first substantially unique representation being operative to substantially obscure said value and substantially prevent said value from being determined from said first substantially unique representation; transmitting, by third logic, coupled with said second logic, stored in said memory and executable by said processor, said first substantially unique representation via said interface to a transaction processor and receiving a subsequent response therefrom; and determining, by fourth logic, coupled with said first logic, stored in said memory and executable by said processor, if said first transaction is complete, whether said first transaction is fraudulent, and, if said first transaction is determined to be fraudulent, computing a second score, based on said first transaction, indicative of the likelihood that a subsequent transaction with said first entity will be fraudulent, determining a value of said at least one parameter and generating a second substantially unique representation of said value, said second substantially unique representation being operative to substantially obscure said value and substantially prevent said value from being determined from said second substantially unique representation, and communicating said second score and said second substantially unique representation to said transaction processor via said interface.
-
-
47. A method for communicating non-secure data between a first entity and a second entity, said first and second entities each having access to secure data, said method comprising:
-
acquiring said non-secure data, said non-secure data requiring said secure data to contextualize said non-secure data; generating a substantially unique representation of said secure data, said substantially unique representation being operative to substantially obscure said secure data and substantially prevent said secure data from being determined from said substantially unique representation; and transmitting said non-secure data and said substantially unique representation to said second entity.
-
-
48. A method for communicating non-secure data between a first entity and a second entity, said first entity having access to first secure data and said second entity having access to second secure data, said method comprising:
-
receiving said non-secure data from said first entity, said non-secure data requiring said secure data to contextualize said non-secure data; receiving a first substantially unique representation of said first secure data from said first entity, said first substantially unique representation being operative to substantially obscure said first secure data and substantially prevent said first secure data from being determined from said first substantially unique representation; generating a second substantially unique representation of said second secure data, said second substantially unique representation being operative to substantially obscure said second secure data and substantially prevent said second secure data from being determined from said second substantially unique representation; comparing said first and second substantially unique representations; using said second secure data, where said first substantially unique representation is equivalent to said second substantially unique representation, to contextualize said non-secure data.
-
Specification