Reversible Redaction and Tokenization Computing System
US-2017147829-A1 · May 25, 2017 · US
Privacy enabled runtime
US10255459B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10255459-B2 |
| Application number | US-201615157885-A |
| Country | US |
| Kind code | B2 |
| Filing date | May 18, 2016 |
| Priority date | May 18, 2016 |
| Publication date | Apr 9, 2019 |
| Grant date | Apr 9, 2019 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Technical solutions are described for preventing unauthorized transmission of data by a communication apparatus. An example computer-implemented method includes monitoring a data transmission request from an application being executed by the communication apparatus. The data transmission request is associated with transmission data. The method further includes securing the transmission data, where the securing includes identifying a content of a predetermined type in the transmission data, and generating secured transmission data. The secured transmission data includes a corresponding modified version of the content of the predetermined type. The computer-implemented method also includes transmitting the secured transmission data in response to the data transmission request.
First claim
Opening claim text (preview).
What is claimed is: 1. A computer-implemented method for preventing unauthorized transmission of data by a communication apparatus, the method comprising: monitoring, by a runtime of the communication apparatus, a data transmission request from an application being executed by the communication apparatus, wherein the data transmission request is associated with transmission data; securing the transmission data, wherein the securing comprises: identifying a first unencrypted content of a predetermined type in the transmission data; determining a cause of the first unencrypted content to be included in the transmission data by analyzing an incoming data to which the transmission data is being sent as a response; based on the determination that the first unencrypted content is not a requested response to the incoming data, blocking the transmission data; based on the determination that the first unencrypted content is a requested response to the incoming data, further analyzing the first unencrypted content for security, the further analysis comprising: displaying a prompt that identifies the first unencrypted content of the predetermined type and a destination of the data transmission request based on a determination that the first unencrypted content is unsecure; receiving a selection indicative of whether to modify the transmission data; modifying the transmission data in response to the selection indicating to modify the transmission data, wherein the modification comprises replacing the first unencrypted content of the predetermined type with a second unencrypted content in the transmission data; and generating secured transmission data by encrypting the modified transmission data comprising the second unencrypted content, wherein the secured transmission data includes encrypted content corresponding to the second unencrypted content; and transmitting the secured transmission data with the encrypted content in response to the data transmission request. 2. The computer-implemented method of claim 1 , wherein the transmission data is secured in response to the data transmission request from the application being in response to a request from a predetermined source. 3. The computer-implemented method of claim 1 , wherein the predetermined type of the content is an identifier and the second unencrypted content includes a dynamically generated trackable identifier. 4. The computer-implemented method of claim 1 , wherein the predetermined type of the content is a first location identifier, and the second unencrypted content is a second location identifier. 5. The computer-implemented method of claim 1 , wherein the predetermined type of the content identifies a time, and the second unencrypted content is a time-range that includes said time. 6. The computer-implemented method of claim 1 , wherein the predetermined type of the content identifies a predetermined group of contextual data. 7. The computer-implemented method of claim 1 , wherein the predetermined type of the content is identified based on a type of programming language constructs used in the data transmission request. 8. The computer-implemented method of claim 1 , wherein securing the transmission data further comprises: continuing to use said transmission data in response to the selection indicating not to modify the transmission data. 9. The computer-implemented method of claim 1 , wherein securing the transmission data further comprises receiving a modified version of the content to use for the generating of the secured transmission data. 10. An apparatus for preventing unauthorized transmission of data by a communication apparatus, the apparatus comprising: a memory; and a processor communicably coupled with the memory, the processor configured to: monitor a data transmission request from an application being executed by the communication apparatus, wherein the data transmission request is associated with transmission data; secure the transmission data, wherein the securing comprises: identifying a first unencrypted content of a predetermined type in the transmission data; determining a cause of the first unencrypted content to be included in the transmission data by analyzing an incoming data to which the transmission data is being sent as a response; based on the determination that the first unencrypted content is not a requested response to the incoming data, blocking the transmission data; based on the determination that the first unencrypted content is a requested response to the incoming data, further analyzing the first unencrypted content for security, the further analysis comprising: displaying a prompt that identifies the first unencrypted content of the predetermined type and a destination of the data transmission request based on a determination that the first unencrypted content is unsecure; receiving a selection indicative of whether to modify the transmission data; modifying the transmission data in response to the selection indicating to modify the transmission data, wherein the modification comprises changing the first unencrypted content of the predetermined type to a second unencrypted content in the transmission data; and generating secured transmission data by encrypting the modified transmission data comprising the second unencrypted content, wherein the secured transmission data includes encrypted content corresponding to the second unencrypted content; and transmit the secured transmission data in response to the data transmission request. 11. The apparatus of claim 10 , wherein the transmission data is secured in response to the data transmission request from the application being in response to a request from a predetermined source. 12. The apparatus of claim 10 , wherein the predetermined type of the content is a first location identifier, and the second unencrypted content is a second location identifier. 13. The apparatus of claim 10 , wherein the predetermined type of the content identifies a time, and the second unencrypted content is a time-range that includes said time. 14. The apparatus of claim 10 , wherein the predetermined type of the content is identified based on a type of programming language constructs used in the data transmission request. 15. A computer program product for preventing unauthorized transmission of data by a communication apparatus, the computer program product comprising a computer readable storage medium, the computer readable storage medium comprising computer executable instructions, wherein the computer readable storage medium comprises instructions to: monitor a data transmission request from an application being executed by the communication apparatus, wherein the data transmission request is associated with transmission data; secure the transmission data, wherein the securing comprises: identifying a first unencrypted content of a predetermined type in the transmission data; determining a cause of the first unencrypted content to be included in the transmission data by analyzing an incoming data to which the transmission data is being sent as a response; based on the determination that the first unencrypted content is not a requested response to the incoming data, blocking the transmission data; based on the determination that the first unencrypted content is a requested response to the incoming data, further analyzing the first unencrypted content for security, the further analysis comprising: displaying a prompt that identifies the first unencrypted content of the predetermined type and a destination of the data transmission request based on a determin
Assignees
Inventors
Classifications
- G06F21/6263Primary
during internet communication, e.g. revealing personal data from cookies · CPC title
wherein the identity of one or more communicating identities is hidden (cryptographic mechanisms or cryptographic arrangements for anonymous credentials or for identity based cryptographic systems H04L9/00) · CPC title
Services making use of location information · CPC title
Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII] · CPC title
Filtering by information in the payload · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10255459B2 cover?
- Technical solutions are described for preventing unauthorized transmission of data by a communication apparatus. An example computer-implemented method includes monitoring a data transmission request from an application being executed by the communication apparatus. The data transmission request is associated with transmission data. The method further includes securing the transmission data, wh…
- Who is the assignee on this patent?
- IBM
- What technology area does this patent fall under?
- Primary CPC classification G06F21/6263. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Apr 09 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 6 related publications on this page (citations in our corpus or others sharing the same primary CPC).