Who is the assignee on this patent?

Alipay Hangzhou Inf Tech Co Ltd

What technology area does this patent fall under?

Primary CPC classification G06F21/64. Mapped technology areas include Physics.

When was this patent published?

Publication date Tue Jun 07 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 6 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Data authorization information acquisition methods, apparatuses, and devices

US11354447B2 · US · B2

Patent metadata
Field	Value
Publication number	US-11354447-B2
Application number	US-202117349764-A
Country	US
Kind code	B2
Filing date	Jun 16, 2021
Priority date	Aug 28, 2020
Publication date	Jun 7, 2022
Grant date	Jun 7, 2022

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

Embodiments of the present specification disclose data authorization information acquisition methods, apparatuses, and devices. One method comprises: receiving, from a data requestor and for data, a data use permission application; determining, based on the data use permission application, an approver, wherein the approver is an owner of the data; sending the data use permission application to the approver; receiving acknowledgement information of the approver for receiving the data use permission application; generating data authorization information based on the acknowledgement information; and sending the data authorization information to the data requestor.

First claim

Opening claim text (preview).

What is claimed is: 1. A computer-implemented method, comprising: receiving, from a data requestor, a data use permission application for using data; determining, based on the data use permission application, an approver, wherein the approver is an owner of the data; sending the data use permission application to the approver; receiving acknowledgement information of the approver for receiving the data use permission application; sending the acknowledgement information to a second approver of the data use permission application; storing the acknowledgement information on a local device; in response to receiving a query from the data requestor, obtaining a status of the data use permission application on the local device, wherein the query comprises the data use permission application; sending the acknowledgement information to the data requestor; generating data authorization information based on the acknowledgement information; and sending the data authorization information to the data requestor. 2. The computer-implemented method according to claim 1 , wherein determining the approver comprises: determining a data type of the data based on the data use permission application; determining a smart contract based on the data and the data type, wherein the smart contract comprises an approval process of the data use permission application; and determining the approver of the data based on the smart contract. 3. The computer-implemented method according to claim 1 , wherein generating the data authorization information comprises: determining the data as authorized data, the data requestor as an authorized user, and a validity period based on the acknowledgement information; and generating the data authorization information based on the authorized data, the authorized user, and the validity period, wherein the data authorization information comprises the data and information of the data requestor. 4. The computer-implemented method according to claim 1 , further comprising: storing the data authorization information on a blockchain; and after sending the data use permission application to the approver, receiving a first status query from the data requestor for the data use permission application, wherein the first status query comprises the data use permission application; querying the data use permission application on the blockchain based on the first status query to obtain a query result; and sending the query result to the data requestor. 5. The computer-implemented method according to claim 1 , further comprising: receiving a data acquisition application from the data requestor for the data, wherein the data acquisition application comprises the data authorization information; sending the data authorization information to a blockchain network for validity verification; and in response to the validity verification being successful, sending the data to the data requestor. 6. The computer-implemented method according to claim 5 , wherein the method further comprises: in response to the validity verification being successful, identifying authorized data, an authorized user, and a validity period in the data authorization information; and sending the data to the data requestor further in response to determining that the authorized data is the data, the authorized user is the data requestor, and a current moment is in the validity period. 7. The computer-implemented method according to claim 5 , further comprising: determining a data provider of the data; and receiving the data from the data provider. 8. The computer-implemented method according to claim 7 , wherein receiving the data from the data provider comprises: receiving the data from a trusted execution environment (TEE) of the data provider through an interface predefined by codes in the TEE, wherein the TEE is isolated from an operating system. 9. The computer-implemented method according to claim 1 , further comprising: receiving a use permission revocation application for the data, wherein the use permission revocation application comprises the data authorization information; sending the data authorization information to a blockchain network for validity verification; receiving a validity verification result from the blockchain network; in response to the validity verification result indicating a successful validity verification, storing revocation information of the data authorization information on a blockchain associated with the blockchain network; and sending the revocation information to the data requestor. 10. The computer-implemented method according to claim 9 , further comprising: in response to the validity verification result indicating a successful validity verification, determining an authorized user in the data authorization information; determining an applicant of the use permission revocation application for the data; and storing the revocation information on the blockchain further in response to determining that the applicant is the authorized user. 11. A non-transitory, computer-readable medium storing one or more instructions executable by a computer system to perform operations comprising: receiving, from a data requestor, a data use permission application for using data; determining, based on the data use permission application, an approver, wherein the approver is an owner of the data; sending the data use permission application to the approver; receiving acknowledgement information of the approver for receiving the data use permission application; sending the acknowledgement information to a second approver of the data use permission application; storing the acknowledgement information on a local device; in response to receiving a query from the data requestor, obtaining a status of the data use permission application on the local device, wherein the query comprises the data use permission application; sending the acknowledgement information to the data requestor; generating data authorization information based on the acknowledgement information; and sending the data authorization information to the data requestor. 12. The non-transitory, computer-readable medium according to claim 11 , wherein determining the approver comprises: determining a data type of the data based on the data use permission application; determining a smart contract based on the data and the data type, wherein the smart contract comprises an approval process of the data use permission application; and determining the approver of the data based on the smart contract. 13. The non-transitory, computer-readable medium according to claim 11 , wherein generating the data authorization information comprises: determining the data as authorized data, the data requestor as an authorized user, and a validity period based on the acknowledgement information; and generating the data authorization information based on the authorized data, the authorized user, and the validity period, wherein the data authorization information comprises the data and information of the data requestor. 14. The non-transitory, computer-readable medium according to claim 11 , further comprising: storing the data authorization information on a blockchain; and after sending the data use permission application to the approver, receiving a first status query from the data requestor for the data use permission application, wherein the first status query comprises the data use permission application; querying the data use permission application on the blockchain based on the first status query to obtain a query result; and sending the quer

Assignees

Alipay Hangzhou Inf Tech Co Ltd

Inventors

Classifications

G06F21/78
to assure secure storage of data (address-based protection against unauthorised use of memory G06F12/14; record carriers for use with machines and with at least a part designed to carry digital markings G06K19/00) · CPC title
G06F21/602
Providing cryptographic facilities or services · CPC title
G06F21/64Primary
Protecting data integrity, e.g. using checksums, certificates or signatures · CPC title
G06F21/604Primary
Tools and structures for managing or administering access control systems · CPC title
G06F21/6245Primary
Protecting personal data, e.g. for financial or medical purposes · CPC title

Patent family

Related publications grouped by family.

View patent family 72860676

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US11354447B2 cover?: Embodiments of the present specification disclose data authorization information acquisition methods, apparatuses, and devices. One method comprises: receiving, from a data requestor and for data, a data use permission application; determining, based on the data use permission application, an approver, wherein the approver is an owner of the data; sending the data use permission application to …
Who is the assignee on this patent?: Alipay Hangzhou Inf Tech Co Ltd
What technology area does this patent fall under?: Primary CPC classification G06F21/64. Mapped technology areas include Physics.
When was this patent published?: Publication date Tue Jun 07 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 6 related publications on this page (citations in our corpus or others sharing the same primary CPC).

How to read this patent

Abstract

First claim

Assignees

Inventors

Classifications

Patent family

External sources

Related patents

Providing data authorization based on blockchain

Cryptographically provable data certification and provenance

Method and system for managing access to personal data by means of a smart contract

Client apparatus, server apparatus and access control system for authorized access

Method and system for providing messaging gateway services

Access management in a data storage system

Frequently asked questions