×

System and method to anonymize data transmitted to a destination computing device

  • US 9,413,526 B1
  • Filed: 03/15/2013
  • Issued: 08/09/2016
  • Est. Priority Date: 03/08/2011
  • Status: Active Grant
First Claim
Patent Images

1. A method for anonymizing data to be transmitted to a destination computing device, comprising:

  • providing a data encryption key;

    encrypting the data encryption key with a key encryption key to derive an encrypted data encryption key;

    encrypting the key encryption key using a KEK key to generate an encrypted key encryption key;

    hashing the KEK key with a hash function to generate a hash of the KEK key;

    storing the hash of the KEK key and encrypted key encryption key in a data store;

    receiving data to be stored in a destination computing device, from a user computer, the data including a plurality of characters;

    receiving a custodian password;

    generating a hash of the custodian password using the hash function;

    comparing the generated hash of the custodian password with the stored hash of the KEK key and when there is a match between the generated hash of the custodian password with the stored hash of the KEK key, decrypting the encrypted key encryption key using the custodian password to derive the key encryption key;

    decrypting the encrypted data encryption key using the derived key encryption key to derive the data encryption key;

    anonymizing the data to be stored using an anonymization module executed on a computing device to derive an anonymized data, based on a stored anonymization strategy, using the derived data encryption key; and

    transmitting anonymized data to the destination computing device over a network, for storage in the destination computing device.

View all claims
  • 8 Assignments
Timeline View
Assignment View
    ×
    ×