Protecting subscriber information from third parties
First Claim
1. A system, comprising:
- a data warehouse of a network service provider including at least one computing device configured to execute instructions on a processor of the computing device to cause the data warehouse to perform operations comprising;
receiving data records including subscriber-identifiable information associated with a network subscriber to the network service provider and demographic attributes associated with the network subscriber;
extracting the subscriber-identifiable information and the demographic attributes;
generating a user identifier hash value based on the subscriber-identifiable information and a periodically-updated salt value; and
providing a hashed record to a query server, the hashed record including the demographic attributes of the network subscriber and the user identifier hash value;
generating user identifier hash values for a first time period using the periodically-updated salt value;
receiving a second periodically-updated salt value from a key manager for use in generating user identifier hash values associated with a second time period;
generating a second user identifier hash value based on the subscriber-identifiable information and the second periodically-updated salt value; and
providing an updated hashed record to the query server including the demographic attributes of the network subscriber and the second user identifier hash value.
2 Assignments
0 Petitions
Accused Products
Abstract
A data warehouse and method of providing a record that includes both desired demographic information and undiscoverable individual information are described. Data records including subscriber-identifiable information associated with a device of a subscriber to the network service provider and demographic attributes associated with the network subscriber are initially extracted from the record. A hash value based on subscriber-identifiable information associated with the subscriber device is generated and used to generate a user identifier hash value based on the subscriber-identifiable information and a periodically-updated salt value. The record is updated to form a hashed record that includes the demographic attributes of the network subscriber, the hash value, and the user identifier hash value. The hashed record is then supplied in response to a request from a query server.
10 Citations
14 Claims
-
1. A system, comprising:
a data warehouse of a network service provider including at least one computing device configured to execute instructions on a processor of the computing device to cause the data warehouse to perform operations comprising; receiving data records including subscriber-identifiable information associated with a network subscriber to the network service provider and demographic attributes associated with the network subscriber; extracting the subscriber-identifiable information and the demographic attributes; generating a user identifier hash value based on the subscriber-identifiable information and a periodically-updated salt value; and providing a hashed record to a query server, the hashed record including the demographic attributes of the network subscriber and the user identifier hash value; generating user identifier hash values for a first time period using the periodically-updated salt value; receiving a second periodically-updated salt value from a key manager for use in generating user identifier hash values associated with a second time period; generating a second user identifier hash value based on the subscriber-identifiable information and the second periodically-updated salt value; and providing an updated hashed record to the query server including the demographic attributes of the network subscriber and the second user identifier hash value. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
9. A method, comprising:
-
receiving data records including subscriber-identifiable information associated with a network subscriber to a network service provider and demographic attributes associated with the network subscriber; extracting the subscriber-identifiable information and the demographic attributes; generating, by a privacy engine of the network service provider, a user identifier hash value based on the subscriber-identifiable information and a periodically-updated salt value; providing a hashed record by the privacy engine to a query server, the hashed record including the demographic attributes of the network subscriber and the user identifier hash value; generating user identifier hash values for a first time period using the periodically-updated salt value; receiving a second periodically-updated salt value from a key manager for use in generating user identifier hash values associated with a second time period; generating a second user identifier hash value based on the subscriber-identifiable information and the second periodically-updated salt value; and providing an updated hashed record to the query server including the demographic attributes of the network subscriber and the second user identifier hash value. - View Dependent Claims (10, 11)
-
-
12. A non-transitory computer readable medium storing a program, the program being executable by a processor of a computing device to provide operations comprising:
-
receiving data records including subscriber-identifiable information associated with a network subscriber to a network service provider and demographic attributes associated with the network subscriber; extracting the subscriber-identifiable information and the demographic attributes; generating a user identifier hash value based on the subscriber-identifiable information and a periodically-updated salt value; providing a hashed record to a query server, the hashed record including the demographic attributes of the network subscriber and the user identifier hash value; generating user identifier hash values for a first time period using the periodically-updated salt value; receiving a second periodically-updated salt value from a key manager for use in generating user identifier hash values associated with a second time period; generating a second user identifier hash value based on the subscriber-identifiable information and the second periodically-updated salt value; and providing an updated hashed record to the query server including the demographic attributes of the network subscriber and the second user identifier hash value. - View Dependent Claims (13, 14)
-
Specification