Systems and methods for contextualized data protection

US 9,361,481 B2
Filed: 09/04/2015
Issued: 06/07/2016
Est. Priority Date: 11/01/2013
Status: Active Grant

First Claim

Patent Images

1. A system, comprising:

a communication interface for sending data over a network;

a memory having, stored therein, computer program code;

and one or more processing units operatively coupled to the memory and configured to execute instructions in the computer program code that cause the one or more processing units to;

generate one or more dynamically-changing, temporally unique identifiers;

receive, over the network, a first request from a first data subject for a generated dynamically-changing, temporally unique identifier to be related to an attribute of the first data subject;

associate, in response to the first request, a first generated dynamically-changing, temporally unique identifier with the attribute of the first data subject;

transform the value of the first generated dynamically-changing, temporally unique identifier into a first unintelligible form,wherein a first key may be used to transform the first unintelligible form back into a first view of the first generated dynamically-changing, temporally unique identifier,wherein a second key may be used to transform the first unintelligible form back into a second view of the first generated dynamically-changing, temporally unique identifier,wherein the first key is different from the second key, andwherein the first view is different from the second view;

store, in the memory, the first generated dynamically-changing, temporally unique identifier, the first key, the second key, and the first unintelligible form; and

send the first unintelligible form over the network to the first data subject.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Various systems, computer-readable media, and computer-implemented methods of providing improved data privacy, anonymity, and security by enabling subjects to which data pertains to remain “dynamically anonymous,” i.e., anonymous for as long as is desired—and to the extent that is desired—are disclosed herein. This concept is also referred to herein as Just-In-Time-Identity, or “JITI.” Embodiments include systems that create, access, use, store and/or erase data with increased privacy, anonymity and security—thereby facilitating the availability of more qualified information—via the use of temporally unique, dynamically changing de-identifiers (“DDIDs”). In some embodiments, specialized JITI keys may be used to “unlock” different views of the same DDID (or its underlying value), thereby providing granular control over the level of detail or obfuscation visible to each user based on the context of said user'"'"'s authorized use of data, e.g., authorized purpose(s), place(s), time(s), or other attributes of the use.

72 Citations

View as Search Results

20 Claims

1. A system, comprising:
- a communication interface for sending data over a network;
  
  a memory having, stored therein, computer program code;
  
  and one or more processing units operatively coupled to the memory and configured to execute instructions in the computer program code that cause the one or more processing units to;
  
  generate one or more dynamically-changing, temporally unique identifiers;
  
  receive, over the network, a first request from a first data subject for a generated dynamically-changing, temporally unique identifier to be related to an attribute of the first data subject;
  
  associate, in response to the first request, a first generated dynamically-changing, temporally unique identifier with the attribute of the first data subject;
  
  transform the value of the first generated dynamically-changing, temporally unique identifier into a first unintelligible form,wherein a first key may be used to transform the first unintelligible form back into a first view of the first generated dynamically-changing, temporally unique identifier,wherein a second key may be used to transform the first unintelligible form back into a second view of the first generated dynamically-changing, temporally unique identifier,wherein the first key is different from the second key, andwherein the first view is different from the second view;
  
  store, in the memory, the first generated dynamically-changing, temporally unique identifier, the first key, the second key, and the first unintelligible form; and
  
  send the first unintelligible form over the network to the first data subject.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The system of claim 1, wherein the first view provides more detail than the second view.
  - 3. The system of claim 1, wherein the unintelligible form comprises encrypted text.
  - 4. The system of claim 1, wherein the instructions in the computer program code further comprise instructions that cause the one or more processing units to also associate the first generated dynamically-changing, temporally unique identifier with an attribute of a second data subject.
  - 5. The system of claim 4, wherein the instructions in the computer program code that cause the one or more processing units to also associate the first generated dynamically-changing, temporally unique identifier with an attribute of a second data subject are executed in at least one of the following situations:
    - at a different time than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject;
      
      at a different physical or virtual location than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject; and
      
      for a different purpose than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject.
  - 6. The system of claim 1, wherein the instructions in the computer program code further comprise instructions that cause the one or more processing units to:
    - associate a second generated dynamically-changing, temporally unique identifier with the attribute of the first data subject.
  - 7. The system of claim 6, wherein the instructions in the computer program code that cause the one or more processing units to associate the second generated dynamically-changing, temporally unique identifier with the attribute of the first data subject are executed in at least one of the following situations:
    - at a different time than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject;
      
      at a different physical or virtual location than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject; and
      
      for a different purpose than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject.

8. A non-transitory computer readable medium comprising computer executable instructions stored thereon to cause one or more processing units to:
- generate one or more dynamically-changing, temporally unique identifiers;
  
  receive, over a network, a first request from a first data subject for a generated dynamically-changing, temporally unique identifier to be related to an attribute of the first data subject;
  
  associate, in response to the first request, a first generated dynamically-changing, temporally unique identifier with the attribute of the first data subject;
  
  transform the value of the first generated dynamically-changing, temporally unique identifier into a first unintelligible form,wherein a first key may be used to transform the first unintelligible form back into a first view of the first generated dynamically-changing, temporally unique identifier,wherein a second key may be used to transform the first unintelligible form back into a second view of the first generated dynamically-changing, temporally unique identifier,wherein the first key is different from the second key, andwherein the first view is different from the second view;
  
  store, in a memory, the first generated dynamically-changing, temporally unique identifier, the first key, the second key, and the first unintelligible form; and
  
  send the first unintelligible form over the network to the first data subject.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The non-transitory computer readable medium of claim 8, wherein the first view provides more detail than the second view.
  - 10. The non-transitory computer readable medium of claim 8, wherein the unintelligible form comprises non-encrypted text.
  - 11. The non-transitory computer readable medium of claim 8, wherein the instructions further comprise instructions that cause the one or more processing units to also associate the first generated dynamically-changing, temporally unique identifier with an attribute of a second data subject.
  - 12. The non-transitory computer readable medium of claim 11, wherein the instructions that cause the one or more processing units to also associate the first generated dynamically-changing, temporally unique identifier with an attribute of a second data subject are executed in at least one of the following situations:
    - at a different time than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject;
      
      at a different physical or virtual location than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject; and
      
      for a different purpose than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject.
  - 13. The non-transitory computer readable medium of claim 8, wherein the instructions further comprise instructions that cause the one or more processing units to:
    - associate a second generated dynamically-changing, temporally unique identifier with the attribute of the first data subject.
  - 14. The non-transitory computer readable medium of claim 13, wherein the instructions that cause the one or more processing units to associate the second generated dynamically-changing, temporally unique identifier with the attribute of the first data subject are executed in at least one of the following situations:
    - at a different time than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject;
      
      at a different physical or virtual location than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject; and
      
      for a different purpose than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject.

15. A computer-implemented method comprising:
- generating one or more dynamically-changing, temporally unique identifiers;
  
  receiving, over a network, a first request from a first data subject for a generated dynamically-changing, temporally unique identifier to be related to an attribute of the first data subject;
  
  associating, in response to the first request, a first generated dynamically-changing, temporally unique identifier with the attribute of the first data subject;
  
  transforming the value of the first generated dynamically-changing, temporally unique identifier into a first unintelligible form,wherein a first key may be used to transform the first unintelligible form back into a first view of the first generated dynamically-changing, temporally unique identifier,wherein a second key may be used to transform the first unintelligible form back into a second view of the first generated dynamically-changing, temporally unique identifier,wherein the first key is different from the second key, andwherein the first view is different from the second view;
  
  storing, in a memory, the first generated dynamically-changing,temporally unique identifier, the first key, the second key, and the first unintelligible form; and
  
  sending the first unintelligible form over the network to the first data subject.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The computer-implemented method of claim 15, wherein the first view provides more detail than the second view.
  - 17. The computer-implemented method of claim 15, further comprising also associating the first generated dynamically-changing, temporally unique identifier with an attribute of a second data subject.
  - 18. The computer-implemented method of claim 17, wherein the act of also associating the first generated dynamically-changing, temporally unique identifier with an attribute of a second data subject is performed in at least one of the following situations:
    - at a different time than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject;
      
      at a different physical or virtual location than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject; and
      
      for a different purpose than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject.
  - 19. The computer-implemented method of claim 15, further comprising:
    - associating a second generated dynamically-changing, temporally unique identifier with the attribute of the first data subject.
  - 20. The computer-implemented method of claim 19, wherein act of associating the second generated dynamically-changing, temporally unique identifier with the attribute of the first data subject is performed in at least one of the following situations:
    - at a different time than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject;
      
      at a different physical or virtual location than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject; and
      
      for a different purpose than the first generated dynamically-changing, temporally unique identifier is associated with the attribute of the first data subject.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Anonos IP LLC
Original Assignee
Anonos, Inc.
Inventors
LaFever, Malcolm Gary, Myerson, Ted N., Mason, Steven
Primary Examiner(s)
Jeudy, Josnel

Application Number

US14/846,167
Publication Number

US 20150379303A1
Time in Patent Office

277 Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/6218   to a system of files or obj...

G06F 21/6254   by anonymising data, e.g. d...

G06F 21/6263   during internet communicati...

H04L 63/0281   Proxies

H04L 63/0414   during transmission, i.e. p...

Systems and methods for contextualized data protection

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

72 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for contextualized data protection

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

72 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links