Management and security of personal information

US 8,806,218 B2
Filed: 03/18/2005
Issued: 08/12/2014
Est. Priority Date: 03/18/2005
Status: Expired due to Fees

First Claim

Patent Images

1. A method of managing personal information in a distributed computing environment, the method comprising:

storing personal information at a personal information store, further comprising embedding a leak marker in the personal information for tracking subsequent transfer of the stored personal information, wherein the leak marker is associated with at least one portion of the personal information and identifiable to a personal information owner;

generating, by a computer, an access code for providing access to the personal information, wherein generating the access code to the requester of personal information from the personal information store comprises generating an access code valid for an authorized period of time;

providing the access code to a requester of personal information from the personal information store;

receiving at the personal information store a request for a portion of the personal information along with a requester access code;

when the requester access code matches the access code provided to the requester of the personal information, providing the requested portion of the personal information from the personal information store, wherein providing the requested portion of the personal information from the personal information store comprises providing the requested portion of the personal information to a transfer site, the transfer site being configured to provide the requester with a service corresponding to the requested personal information without revealing the personal information; and

when the request for the portion of the personal information is a request for financial information for a provider of the personal information, providing an encrypted key for allowing the requester of personal information to process a transaction using the encrypted key without receiving the financial information for the provider of the personal information.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods, systems, and computer readable media are provided for managing and securing personal information. Personal information is stored in a central repository (personal information store) for a given personal information owner. As personal information is changed, the owner of the personal information may access the personal information store to update information stored therein. Access codes may be established for all personal information, and the use of the codes may be restricted by application of one or more rules or permissions applied to the information requesters. Alternatively, special access codes may be established for one or more pieces or combination of pieces of personal information data contained in the personal information store. Upon request or requirement for personal information, information requesters may be provided one or more access codes to allow the information requester to receive only that personal information for which they are authorized. Encrypted keys may be provided from the personal information store to information requesters instead of financial information or address information for a given personal information owner. Use of the encrypted address keys allows an information requester process a transaction or to contact a personal information owner without receiving actual financial information or contact information for the personal information owner.

Citations

19 Claims

1. A method of managing personal information in a distributed computing environment, the method comprising:
- storing personal information at a personal information store, further comprising embedding a leak marker in the personal information for tracking subsequent transfer of the stored personal information, wherein the leak marker is associated with at least one portion of the personal information and identifiable to a personal information owner;
  
  generating, by a computer, an access code for providing access to the personal information, wherein generating the access code to the requester of personal information from the personal information store comprises generating an access code valid for an authorized period of time;
  
  providing the access code to a requester of personal information from the personal information store;
  
  receiving at the personal information store a request for a portion of the personal information along with a requester access code;
  
  when the requester access code matches the access code provided to the requester of the personal information, providing the requested portion of the personal information from the personal information store, wherein providing the requested portion of the personal information from the personal information store comprises providing the requested portion of the personal information to a transfer site, the transfer site being configured to provide the requester with a service corresponding to the requested personal information without revealing the personal information; and
  
  when the request for the portion of the personal information is a request for financial information for a provider of the personal information, providing an encrypted key for allowing the requester of personal information to process a transaction using the encrypted key without receiving the financial information for the provider of the personal information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method of claim 1, wherein generating the access code for providing access to the personal information includes generating a special access code for each portion of the personal information and for each combination of portions of the personal information.
  - 3. The method of claim 2, wherein providing the access code to the requester of personal information from the personal information store includes providing the special access code associated with one of the following:
    - one of the portions of personal information and a combination of portions of the personal information for providing the requester of personal information access to one of;
      
      an authorized portion and a combination of authorized portions of the personal information.
  - 4. The method of claim 3, wherein receiving at the personal information store the request for the portion of the personal information along with the requester access code further comprises receiving at the personal information store the request for the portion of the personal information along with a requester special access code, and further comprising providing the requested portion of the personal information from the personal information store when the requester special access code matches the special access code provided for accessing the requested portion of the personal information.
  - 5. The method of claim 1, further comprising generating at least one access rule associated with the access code for providing access to an authorized portion of the personal information.
  - 6. The method of claim 5, wherein providing the access code to the requester of personal information from the personal information store further comprises applying the at least one access rule to the provided access code for restricting access by the requester of personal information to the authorized portion of the personal information.
  - 7. The method of claim 6, further comprising applying the at least one access rule to the provided access code for restricting access by the requester of personal information to the authorized portion of the personal information for an authorized number of uses.
  - 8. The method of claim 1, prior to providing the requested portion of the personal information from the personal information store, determining whether the access code received at the personal information store is valid for the requested portion of the personal information.
  - 9. The method of claim 1, wherein storing personal information at the personal information store further comprises updating at least one portion of the personal information stored in the personal information store.
  - 10. The method of claim 9, further comprising when a valid request is subsequently received for the at least one portion of the personal information that has been updated, providing the at least one updated portion of the personal information in response to the valid request.
  - 11. The method of claim 1, further comprising when the request for the portion of the personal information is a request for contact information for a provider of the personal information, providing the contact information for routing a transmission from the requester of the contact information to the provider of the personal information via the contact transfer site such that the requester of the contact information is prevented from directly contacting the provider of the personal information.
  - 12. The method of claim 1, wherein storing personal information at the personal information store, further comprising after providing the requested portion of the personal information from the personal information store, determining whether an unauthorized party has possession of the requested portion of the personal information by checking the portion of personal information in possession of the unauthorized party for the leak marker.

13. A method of managing personal information in a distributed computing environment, the method comprising:
- generating, by a computer, an access code for providing access to stored personal, further comprising embedding a leak marker in the personal information for tracking subsequent transfer of the stored personal information, wherein the leak marker is associated with at least one portion of the personal information and identifiable to a personal information owner;
  
  generating at least one access rule associated with the access code for providing access to at least one portion of the personal information;
  
  applying the at least one access rule to the access code for restricting access to the at least one portion of the personal information, wherein applying the at least one access rule to the access code for restricting access to the at least one portion of personal information comprises restricting access to the at least one portion of personal information for an authorized period of time;
  
  providing the access code to a requester of personal information;
  
  receiving at the personal information store a request for the at least one portion of the personal information along with a requester access code;
  
  when the requested portion of the personal information complies with the at least one applied access rule associated with the requester access code, providing, by a computing device, information corresponding to a transfer site, the transfer site being configured to provide the requester with a service associated with the requested at least one portion of the personal information without revealing the personal information to the requester; and
  
  when the request for the portion of the personal information is a request for financial information for a provider of the personal information, providing an encrypted key for allowing the requester of personal information to process a transaction using the encrypted key without receiving the financial information for the provider of the personal information.
- View Dependent Claims (14, 15)
- - 14. The method of claim 13, wherein applying the at least one to the access code for restricting access by the requester of personal information to the at least one portion of the personal information comprises restricting access to the at least one portion of the personal information for an authorized number of uses.
  - 15. The method of claim 13, further comprising prior to providing the requested at least one portion of the personal information, determining whether the requester access code received at the personal information store is valid for the requested at least one portion of the personal information.

16. A computer-readable storage device on which is stored computer-executable instructions which when executed by a computer perform a method of managing personal information in a distributed computing environment, the method executed by the computer-executable instructions comprising:
- generating an access code for providing access to stored personal information, the stored personal information having embedded a leak marker for tracing unauthorized transfers of the stored personal information, wherein the leak marker is associated with at least one portion of the personal information and identifiable to a personal information owner;
  
  generating at least one access rule associated with the access code for providing access to the at least one portion of the personal information;
  
  applying the at least one access rule to the access code for restricting access to the at least one portion of the personal information;
  
  providing the access code to a requester of personal information;
  
  receiving at the personal information store a request for the at least one portion of the personal information along with a requester access code, the portion comprising a first email address; and
  
  when the requested portion of the personal information complies with the at least one applied access rule associated with the requester access code, providing the requester with a second email address, the second email address corresponding to a transfer site configured to provide a forwarding service to the requester; and
  
  when the request for the portion of the personal information is a request for financial information for a provider of the personal information, providing an encrypted key for allowing the requester of personal information to process a transaction using the encrypted key without receiving the financial information for the provider of the personal information.
- View Dependent Claims (17, 18, 19)
- - 17. The computer-readable storage device of claim 16, wherein applying the at least one to the access code for restricting access by the requester of personal information to the at least one portion of the personal information comprises restricting access to the at least one portion of the personal information for an authorized number of uses.
  - 18. The computer-readable storage device of claim 16, further comprising prior to providing the requested at least one portion of the personal information, determining whether the requester access code received at the personal information store is valid for the requested at least one portion of the personal information.
  - 19. The computer-readable storage device of claim 16, further comprising:
    - receiving an updating of the at least one portion of the stored personal information; and
      
      when a valid request is subsequently received for the at least one portion of the stored personal information that has been updated, providing the updated at least one portion of the personal information in response to the valid request.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Hatakeda, Darrin Nobuharu
Primary Examiner(s)
Homayounmehr, Farid
Assistant Examiner(s)
Debnath, Suman

Application Number

US11/083,526
Publication Number

US 20060212713A1
Time in Patent Office

3,434 Days
Field of Search

713182-185
US Class Current

713/182
CPC Class Codes

G06F 21/6245 Protecting personal data, e...

H04L 63/10 for controlling access to d...

Management and security of personal information

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Management and security of personal information

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links