System and method to anonymize data transmitted to a destination computing device
First Claim
1. A method for anonymizing data to be transmitted to a destination computing device, comprising:
- receiving data to be transmitted from a user computing device to the destination computing device over a network for storage, the data received by a computing device, the data including a plurality of characters;
providing a plurality of seed values, each of the seed values having a corresponding seed value identifier;
selecting one of the plurality of seed values;
generating an initialization vector using the selected seed value, using an initialization vector generator executed on the computing device;
anonymizing the received data using an anonymization module executed on the computing device to derive an anonymized data, using the generated initialization vector; and
transmitting anonymized received data and the seed value identifier of the selected seed value to the destination computing device for storage, over a network,wherein, upon receipt of a search request with a search term from the user computing device to search received data stored in the destination computing device,generating a plurality of anonymized search terms that correspond to the received search term, using the plurality of initialization vectors generated using the plurality of seed values; and
transmitting a modified search request with the generated plurality of anonymized search terms for processing by the destination computing device.
8 Assignments
0 Petitions
Accused Products
Abstract
A method and system for anonymizing data to be transmitted to a destination computing device is disclosed. Anonymization strategy for data anonymization is provided. Data to be transmitted is received from a user computer. Selective anonymization of the data is performed, based on the anonymization strategy, using an anonymization module. The data includes a plurality of characters. An initialization vector is generated using a seed value, the seed value having a corresponding seed value identifier. The data is anonymized using an anonymization module, to derive an anonymized data, using the generated initialization vector. The anonymized data and the seed value identifier is transmitted to the destination computer over a network.
-
Citations
24 Claims
-
1. A method for anonymizing data to be transmitted to a destination computing device, comprising:
-
receiving data to be transmitted from a user computing device to the destination computing device over a network for storage, the data received by a computing device, the data including a plurality of characters; providing a plurality of seed values, each of the seed values having a corresponding seed value identifier; selecting one of the plurality of seed values; generating an initialization vector using the selected seed value, using an initialization vector generator executed on the computing device; anonymizing the received data using an anonymization module executed on the computing device to derive an anonymized data, using the generated initialization vector; and transmitting anonymized received data and the seed value identifier of the selected seed value to the destination computing device for storage, over a network, wherein, upon receipt of a search request with a search term from the user computing device to search received data stored in the destination computing device, generating a plurality of anonymized search terms that correspond to the received search term, using the plurality of initialization vectors generated using the plurality of seed values; and transmitting a modified search request with the generated plurality of anonymized search terms for processing by the destination computing device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for anonymizing data to be stored in a destination computing device, comprising:
-
receiving data to be transmitted from a user computing device to the destination computing device over a network for storage, the data received by a computing device, the data including a plurality of characters; providing a plurality of seed values, each of the seed values having a corresponding seed value identifier; selecting one of the plurality of seed values; generating an initialization vector using the selected, using an initialization vector generator executed on the computing device; anonymizing the received data using an anonymization module executed on the computing device to derive an anonymized data, using the generated initialization vector; transmitting anonymized received data and the seed value identifier of the selected seed value to the destination computing device for storage, over a network; receiving a request from the user computing device to search the anonymized data stored at the destination computing device, using a search term; intercepting the request by the computing device; generating a plurality of anonymized search terms that correspond to the received search search term, using a plurality of initialization vectors generated using the plurality of seed values; sending a plurality of search requests to the destination computing device using the generated plurality of anonymized search terms; receiving results for the plurality of search requests; deanonymizing the received result using the plurality of initialization vectors; and selecting the deanonymized received result matching the received search term. - View Dependent Claims (9, 10, 11, 12)
-
-
13. An anonymization system to anonymize data to be stored a destination computing device, comprising:
-
an anonymization strategy module executed on a computing device to store anonymization strategy for data anonymization in a data store; a logic executed on the computing device to receive data to be stored in the destination computing device, from a user computer; a seed value generator executed on the computing device to generate a plurality of seed values, each of the seed values having a corresponding seed value identifier; an initialization vector generator executed on the computing device to generate an initialization vector using a selected one of the seed values; and an anonymization module executed on the computing device to anonymize the received data based on a selected anonymization strategy, using the generated initialization vector; and transmit the anonymized data and the seed value identifier that corresponds to the selected seed value to the destination computing device for storage, over a network, wherein, upon receipt of a search request with a search term from the user computing device to search received data stored in the destination computing device, a plurality of anonymized search terms that corresponds to the received search term is generated using the plurality of initialization vectors generated using the plurality of seed values, and a modified search request is transmitted with the generated plurality of anonymized search terms for processing by the destination computing device. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. An anonymization system to anonymize data to be stored in a destination computing device, comprising:
-
an anonymization strategy module executed on a computing device to store anonymization strategy for data anonymization in a data store; a logic executed on the computing device to receive data to be stored in the destination computing device, from a user computer; a seed value generator executed on the computing device to generate a plurality of seed values, each of the seed values having a corresponding seed value identifier; an initialization vector generator executed on the computing device to generate an initialization vector using a selected one of the seed values; an anonymization module executed on the computing device to anonymize the received data based on a selected anonymization strategy, using the generated initialization vector; and transmit the anonymized data and the seed value identifier that corresponds to the selected seed value to the destination computing device for storage, over a network; a request to search the anonymized data stored at the destination computing device, using a search term is received from the user computing device and intercepted by the computing device; a plurality of anonymized search terms that corresponds to the received search term are generated using a plurality of initialization vectors generated using the plurality of seed values; a plurality of search requests are sent to the destination computing device using the generated plurality of anonymized search terms; results for the plurality of search requests are received; the received result are de-anonymized using the plurality of initialization vectors; and the deanonymized received result that matches the search term is selected. - View Dependent Claims (21, 22, 23, 24)
-
Specification