×

Storing tokenized information in untrusted environments

  • US 9,081,978 B1
  • Filed: 05/30/2013
  • Issued: 07/14/2015
  • Est. Priority Date: 05/30/2013
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method, comprising:

  • in a trusted computing environment, parsing a file to determine a plurality of words included in the file, based on whitespace characters that separate the words in the file, the file comprising one or more sensitive words corresponding to financial account data;

    for individual words that are unique in the plurality of words, determining a corresponding token that corresponds to the word, such that the word is not derivable from the token;

    generating a tokenized file that includes corresponding tokens in place of the plurality of words;

    storing the tokenized file in an untrusted computing environment;

    in the trusted computing environment, storing a mapping of the plurality of words to the corresponding tokens; and

    in the untrusted computing environment;

    storing a whitelist mapping of a subset of the plurality of words to the corresponding tokens, the subset including non-sensitive words other than the one or more sensitive words;

    receiving a search request including one or more search terms;

    for the one or more search terms that are included in the whitelist, retrieving the corresponding token;

    for the one or more search terms that are not included in the whitelist, sending a request that the trusted computing environment retrieve the corresponding token;

    based at least in part on one or more tokens corresponding to the one or more search terms, perform a search of the tokenized file stored in the untrusted computing environment;

    identifying one or more tokens in the tokenized file that are included in the whitelist;

    replacing the identified one or more tokens with one or more corresponding words from the whitelist, to generate partly detokenized information; and

    providing the partly detokenized information in response to the search request.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×