WO2018232021A3 - Systems and methods for secure storage of user information in a user profile - Google Patents

Systems and methods for secure storage of user information in a user profile Download PDF

Info

Publication number
WO2018232021A3
WO2018232021A3 PCT/US2018/037388 US2018037388W WO2018232021A3 WO 2018232021 A3 WO2018232021 A3 WO 2018232021A3 US 2018037388 W US2018037388 W US 2018037388W WO 2018232021 A3 WO2018232021 A3 WO 2018232021A3
Authority
WO
WIPO (PCT)
Prior art keywords
user
data store
data
credentials
retrieve
Prior art date
Application number
PCT/US2018/037388
Other languages
French (fr)
Other versions
WO2018232021A2 (en
Inventor
Anthony F. Iasi
Gary Schneir
Charles Kahle
Linda EIGNER
William EIGNER
Eric Tobias
Original Assignee
FHOOSH, Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US15/621,981 external-priority patent/US20170277773A1/en
Priority claimed from US15/622,033 external-priority patent/US20170277775A1/en
Priority claimed from US15/622,026 external-priority patent/US20170277774A1/en
Application filed by FHOOSH, Inc. filed Critical FHOOSH, Inc.
Publication of WO2018232021A2 publication Critical patent/WO2018232021A2/en
Publication of WO2018232021A3 publication Critical patent/WO2018232021A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/02Banking, e.g. interest calculation or account maintenance
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/08Insurance
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Finance (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Development Economics (AREA)
  • Strategic Management (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Economics (AREA)
  • Signal Processing (AREA)
  • General Engineering & Computer Science (AREA)
  • General Business, Economics & Management (AREA)
  • Marketing (AREA)
  • Computer Hardware Design (AREA)
  • Bioethics (AREA)
  • Technology Law (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Computing Systems (AREA)
  • Software Systems (AREA)
  • Medical Informatics (AREA)
  • Databases & Information Systems (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Game Theory and Decision Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Storage Device Security (AREA)

Abstract

A system for storing and managing credentials and encryption keys, includes: a client device configured to transmit a request to retrieve user data stored in a first data store; a secure key platform configured to: store user credentials and data store credentials in a second data store separate from the user data stored in the first data store; receive the request to retrieve user data stored in the first data store; retrieve, from the second data store, user credentials associated with a user of the client device and data store credentials associated with the first data store in response to the request to retrieve user data; use the user credentials of the user of the client device and data store credentials of the first data store to retrieve user data from the first data store; and provide the user data to the client device.
PCT/US2018/037388 2017-06-13 2018-06-13 Systems and methods for secure storage of user information in a user profile WO2018232021A2 (en)

Applications Claiming Priority (6)

Application Number Priority Date Filing Date Title
US15/622,026 2017-06-13
US15/622,033 2017-06-13
US15/621,981 2017-06-13
US15/621,981 US20170277773A1 (en) 2012-10-30 2017-06-13 Systems and methods for secure storage of user information in a user profile
US15/622,033 US20170277775A1 (en) 2012-10-30 2017-06-13 Systems and methods for secure storage of user information in a user profile
US15/622,026 US20170277774A1 (en) 2012-10-30 2017-06-13 Systems and methods for secure storage of user information in a user profile

Publications (2)

Publication Number Publication Date
WO2018232021A2 WO2018232021A2 (en) 2018-12-20
WO2018232021A3 true WO2018232021A3 (en) 2019-02-21

Family

ID=64659918

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2018/037388 WO2018232021A2 (en) 2017-06-13 2018-06-13 Systems and methods for secure storage of user information in a user profile

Country Status (1)

Country Link
WO (1) WO2018232021A2 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114356231B (en) * 2021-12-27 2023-10-20 阿里巴巴(中国)有限公司 Data processing method, device and computer storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20110139798A (en) * 2010-06-24 2011-12-30 주식회사 월시스 Control Method of Data Management System with Enhanced Security
US20130067243A1 (en) * 2011-09-12 2013-03-14 Microsoft Corporation Secure Data Synchronization
KR20130108679A (en) * 2012-03-23 2013-10-07 주식회사 우리은행 Data sharing system using a tablets apparatus and controlling method therefor
US20140173282A1 (en) * 2012-12-19 2014-06-19 Stmicroelectronics S.R.L. Method to access data in an electronic apparatus
US9672336B1 (en) * 2014-08-29 2017-06-06 ProfileCorrect LLC Security system for verification of user credentials

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20110139798A (en) * 2010-06-24 2011-12-30 주식회사 월시스 Control Method of Data Management System with Enhanced Security
US20130067243A1 (en) * 2011-09-12 2013-03-14 Microsoft Corporation Secure Data Synchronization
KR20130108679A (en) * 2012-03-23 2013-10-07 주식회사 우리은행 Data sharing system using a tablets apparatus and controlling method therefor
US20140173282A1 (en) * 2012-12-19 2014-06-19 Stmicroelectronics S.R.L. Method to access data in an electronic apparatus
US9672336B1 (en) * 2014-08-29 2017-06-06 ProfileCorrect LLC Security system for verification of user credentials

Also Published As

Publication number Publication date
WO2018232021A2 (en) 2018-12-20

Similar Documents

Publication Publication Date Title
WO2019067357A8 (en) Data storage method, data query method and apparatuses
SG10201810910YA (en) Data sharing method based on plurality of blockchains
PH12016501848A1 (en) A device management system
EP4271016A3 (en) Enhanced authentication based on secondary device interactions
WO2015070055A3 (en) Authenticating and managing item ownership and authenticity
GB2579502A (en) Blockchain authentication via hard/soft token verification
WO2017023385A3 (en) Secure searchable and shareable remote storage system and method
WO2009154968A3 (en) Remote storage encryption system
MY186036A (en) Systems and methods for order pairing
GB2553974A (en) Systems and methods for enabling user voice interaction with a host computing device
PH12018502160A1 (en) Systems and methods for secure storage of user information in a user profile
EP3796201A3 (en) Systems and methods for diffracted data retrieval
SG148951A1 (en) A method and devices for providing secure data backup from a mobile communication device to an external computing device
WO2019228558A3 (en) Methods and devices for providing traversable key-value data storage on blockchain
SG157320A1 (en) Information processing device, information processing method, program and communication system
WO2014036540A3 (en) Network service system and method with off-heap caching
WO2016113636A3 (en) Secure distributed backup for personal device and cloud data
WO2014018614A3 (en) System for the unified organization, secure storage and secure retrieval of digital and paper documents
GB2522372A (en) Storage system and method of storing and managing data
WO2009032780A3 (en) Method and system for efficiently storing data files
MX364268B (en) Systems and methods for secure remote data retrieval for key duplication.
GB201307398D0 (en) Systems and methods of caching security information
WO2010057199A3 (en) Storage and retrieval of crytographically-split data blocks to/from multiple storage devices
MX370877B (en) Paperless application.
GB2489292B8 (en) Data transfer device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18818596

Country of ref document: EP

Kind code of ref document: A2

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC , EPO FORM 1205A DATED 18.03.2020.

122 Ep: pct application non-entry in european phase

Ref document number: 18818596

Country of ref document: EP

Kind code of ref document: A2