Method and apparatus for a message targeting and filtering database system
First Claim
Patent Images
1. A secure messaging system comprising:
- a personal record comprising a personal profile about a subject and a message filtering policy determined by the subject;
an anonymity service, the anonymity service being an intermediary between the subject and a message sponsor, the message sponsor desiring to send a message to the subject based on the personal record;
a message deposit sent to the anonymity service by the message sponsor wherein the message deposit comprises the message, a message targeting specification, and a message profile;
a database maintained by the anonymity service, the personal record being stored in the database in an encrypted state, the anonymity service having an access to the personal record only in the encrypted state;
a resident application residing on a client device under control of the subject, the resident application managing access to the personal record in an unencrypted state by use of a security element including an encrypted private key;
a quarantine memory, the quarantine memory being a secure area of system memory on the client device; and
a session agent configured to perform a database operation on the personal record in the unencrypted state in the quarantine memory,wherein the resident application, the quarantine memory and the session agent all reside on the client device under control of the subject, andwherein the resident application, the quarantine memory and the session agent collectively secure the personal record and the private key in an unencrypted state against access by the anonymity service.
0 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for a message targeting and filtering database system are provided to deliver bulk messages to demographically selected audiences of willing recipients while preserving each recipient'"'"'s anonymity and control over his private personal data, accomplished by means of a radically distributed database technique in which all operations requiring unencrypted data access are distributed to individual client devices.
27 Citations
19 Claims
-
1. A secure messaging system comprising:
-
a personal record comprising a personal profile about a subject and a message filtering policy determined by the subject; an anonymity service, the anonymity service being an intermediary between the subject and a message sponsor, the message sponsor desiring to send a message to the subject based on the personal record; a message deposit sent to the anonymity service by the message sponsor wherein the message deposit comprises the message, a message targeting specification, and a message profile; a database maintained by the anonymity service, the personal record being stored in the database in an encrypted state, the anonymity service having an access to the personal record only in the encrypted state; a resident application residing on a client device under control of the subject, the resident application managing access to the personal record in an unencrypted state by use of a security element including an encrypted private key; a quarantine memory, the quarantine memory being a secure area of system memory on the client device; and a session agent configured to perform a database operation on the personal record in the unencrypted state in the quarantine memory, wherein the resident application, the quarantine memory and the session agent all reside on the client device under control of the subject, and wherein the resident application, the quarantine memory and the session agent collectively secure the personal record and the private key in an unencrypted state against access by the anonymity service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 19)
-
-
9. A secure messaging method comprising:
-
maintaining a personal record belonging to a subject in a centralized database in an encrypted form, the personal record comprising a personal profile and a message filtering policy; distributing a database operation from the centralized database to a client device, wherein the database operation is performed on the personal record in an unencrypted form in a quarantine memory at the client device by use of a security element including an encrypted private key securely maintained by and accessible only to the subject such that the encrypted private key is inaccessible to the anonymity service, and wherein distributing the database operation from the centralized database to the client device comprises; downloading a session agent by a resident application, the resident application being resident on the client device, the session agent comprising a software update, the personal record, and the security element including the encrypted private key, and performing a database query by the session agent on the personal record in an unencrypted form; and establishing an intermediary between the subject and a message sponsor for the purpose of allowing the message sponsor to send a message to the subject based on the personal profile while maintaining an anonymity of the subject. - View Dependent Claims (10, 11, 12, 13)
-
-
14. Storage media comprising instructions that, when executed by a machine, cause the machine to:
-
maintain a personal record belonging to a subject in a centralized database in an encrypted form, the personal record comprising a personal profile and a message filtering policy; distribute a database operation from the centralized database to a client device, wherein the database operation is performed on the personal record in an unencrypted form in a quarantine memory at the client device by use of a security element including an encrypted private key securely maintained by and accessible only to the subject such that the encrypted private key is inaccessible to all others, and wherein causing the machine to distribute the database operation from the centralized database to the client device comprises causing the machine to; download a session agent by a resident application, the resident application being resident on the client device, the session agent comprising a software update, the personal record, and the security element including the encrypted private key, and perform a database query by the session agent on the personal record in an unencrypted form; and establish an intermediary between the subject and a message sponsor for the purpose of allowing the message sponsor to send a message to the subject based on the personal profile while maintaining an anonymity of the subject. - View Dependent Claims (15, 16, 17, 18)
-
Specification