Privacy preserving data querying
First Claim
Patent Images
1. A computer-implemented method for preserving privacy of a query of a data set comprising:
- receiving, at a computer, a client computer request for information from a data set of a tokenized data holder, wherein the request includes a tokenized query term, wherein the tokenized query term was tokenized by a first tokenizing authority computer different from the client computer and from a computer of an owner of the tokenized data holder, and operatively coupled to the client computer and to the tokenized data holder through a network, whereby a requestor does not have access to an entirety of the data set of the tokenized data holder; and
determining, via the computer, whether the tokenized query term is contained in the data set, wherein the data set comprises a store of tokenized terms, wherein the tokenized query term corresponds to a tokenized input associated with a query term, whereby the owner of the tokenized data holder does not learn the query term;
wherein the tokenized terms have each been tokenized by a second tokenizing authority computer based on a tokenizing function equivalent to a tokenizing function of the first tokenizing authority, wherein the second tokenizing authority computer is different from the client computer and from a computer of an owner of the tokenized data holder.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, system, and computer-readable memory containing instructions include employing a tokenizing authority to obtain a tokenized query term that represents a query term, using the tokenized query term to perform a lookup against a tokenized term database, determining whether the tokenized query term exists in the database. The method, system, and computer-readable memory may further include returning an encryption or decryption key corresponding to an encrypted record of information associated with the query term and corresponding to the tokenized query term.
78 Citations
23 Claims
-
1. A computer-implemented method for preserving privacy of a query of a data set comprising:
-
receiving, at a computer, a client computer request for information from a data set of a tokenized data holder, wherein the request includes a tokenized query term, wherein the tokenized query term was tokenized by a first tokenizing authority computer different from the client computer and from a computer of an owner of the tokenized data holder, and operatively coupled to the client computer and to the tokenized data holder through a network, whereby a requestor does not have access to an entirety of the data set of the tokenized data holder; and determining, via the computer, whether the tokenized query term is contained in the data set, wherein the data set comprises a store of tokenized terms, wherein the tokenized query term corresponds to a tokenized input associated with a query term, whereby the owner of the tokenized data holder does not learn the query term; wherein the tokenized terms have each been tokenized by a second tokenizing authority computer based on a tokenizing function equivalent to a tokenizing function of the first tokenizing authority, wherein the second tokenizing authority computer is different from the client computer and from a computer of an owner of the tokenized data holder. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer-implemented method for preserving privacy of a query of a data set comprising:
-
receiving, at a first tokenizing authority computer different from a client computer and from a tokenized data holder, and operatively coupled to the client computer and to the tokenized data holder through a network, a client computer request to tokenize a first input corresponding to a first query term; tokenizing the first input; transmitting the tokenized first input; receiving, at a second tokenizing authority computer, a request to tokenize a set of inputs corresponding to a set of query terms, wherein the second tokenizing authority computer is different from the client computer and from a computer of an owner of the tokenized data holder; and tokenizing the set of inputs to produce a set of tokenized inputs, wherein a set of tokenized terms corresponding to the set of tokenized inputs is stored in the tokenized data holder, whereby a requestor does not have access to an entirety of the data set of the tokenized data holder, and wherein the tokenized data holder is configured to; receive a tokenized first query term corresponding to the tokenized first input, whereby the owner of the tokenized data holder does not learn the first query term; and determine whether the tokenized first query term is contained in the set of tokenized terms. - View Dependent Claims (11, 12, 13, 14)
-
-
15. A system for preserving privacy of a query of a data set comprising:
-
a tokenized data holder server containing a store of tokenized terms, whereby a requestor does not have access to an entirety of the data set of the tokenized data holder; and a first tokenizing authority server, wherein the first tokenizing authority server is configured to; receive a client computer input corresponding to a query term, wherein the first tokenizing authority server is different from the client computer and from a computer of an owner of the tokenized data holder server, and operatively coupled to the client computer and to the tokenized data holder server through a network; perform a tokenizing function on the input; and transmit the tokenized input; and wherein the tokenized data holder server is configured to; receive a tokenized query term corresponding to the tokenized input, wherein the tokenized terms have each been tokenized by a second tokenizing authority server based on a tokenizing function equivalent to that of the first tokenizing authority server, wherein the second tokenizing authority computer is different from the client computer and from a computer of an owner of the tokenized data holder, whereby the owner of the tokenized data holder server does not learn the query term; and determine if the tokenized query term is contained in the store of tokenized terms. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
-
22. A computer-readable medium containing instructions, which, when executed by a processor, perform a method for preserving privacy of a query of a data set, the method comprising:
-
receiving, at a computer, a client computer request for information from a data set of a tokenized data holder, wherein the request includes at least one tokenized query term that was tokenized by a first tokenizing authority computer different from the client computer and from a computer of an owner of the tokenized data holder, and operatively coupled to the client computer and to the tokenized data holder through a network, wherein the tokenized query term comprises a tokenized input associated with a query term, whereby the owner of the tokenized data holder server does not learn the query term; determining, via the computer, whether the at least one tokenized query term is contained in the data set, wherein the data set comprises a store of tokenized terms, and wherein the tokenized terms have each been tokenized by a second tokenizing authority computer based on a tokenizing function equivalent to that of the first tokenizing authority computer, wherein the second tokenizing authority computer is different from the client computer and from a computer of an owner of the tokenized data holder, whereby a requestor does not have access to an entirety of the data set of the tokenized data holder.
-
-
23. A computer-readable medium containing instructions, which, when executed by a processor, perform a method for preserving privacy of a query of a data set, the method comprising:
-
receiving, at a first tokenizing authority computer, a client computer request to tokenize a first input corresponding to a first query term, wherein the first tokenizing authority computer is different from the client computer and from a computer of an owner of a tokenized data holder, and operatively coupled to the client computer and to the tokenized data holder through a network; tokenizing the first input; transmitting the tokenized first input; receiving, at a second tokenizing authority computer, a request to tokenize a set of inputs corresponding to a set of query terms, wherein the second tokenizing authority is different from the client computer and from a computer of an owner of the tokenized data holder; tokenizing the set of inputs to produce a set of tokenized inputs, wherein a set of tokenized terms corresponding to the set of tokenized inputs is stored in the tokenized data holder, wherein the tokenized data holder is configured to; receive a tokenized first query term corresponding to the tokenized first input, whereby an owner of the tokenized data holder does not learn the first query term; and determine whether the tokenized first query term is contained in the set of tokenized terms, whereby a requestor does not have access to an entirety of the data set of the tokenized data holder.
-
Specification