Derived unique key per raindrop (dukpr)
US-2023275746-A1 · Aug 31, 2023 · US
System and method facilitating encryption preserving format as a distributed processing library
US12505232B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12505232-B2 |
| Application number | US-202218246406-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jul 27, 2022 |
| Priority date | Jul 27, 2021 |
| Publication date | Dec 23, 2025 |
| Grant date | Dec 23, 2025 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
The present invention provides a robust and effective solution to an organization by enabling them to implement a system ( 110 ) for facilitating format preserving encryption capability such that the encrypted data will not be available with its original value in a big data system and render sensitive field data as non-sensitive. Thus, sensitive data may be hidden from data-stores/warehouses without worrying about downstream access to the data. The system ( 110 ) proposed may also preserve the data type and format of datasets but not limited to the like. The system encrypts a dataset with a unique key ( 404 ) and then allows a privileged user ( 902 ) to decrypt the encrypted dataset with the unique key ( 404 ) and view the decrypted values without getting access to the sensitive original dataset.
First claim
Opening claim text (preview).
We claim: 1 . A system for facilitating encryption preservation format as a distributed processing library, the system comprising: a processor; and a memory coupled to the processor, wherein the memory comprises processor-executable instructions, which on execution, causes the processor to: receive a set of data packets comprising decimal numbers, multi-lingual alphabets, and alphanumeric values from a database; extract an original dataset from the received set of data packets for encryption of the original dataset in the database; encrypt the extracted original dataset by using a Format Preserving Encryption (FPE) technique to generate an encrypted dataset of a same format and a same length associated with the original dataset in the database and in a database of fast accessibility; and provide an interface to a user to access the encrypted dataset for a regeneration of the original dataset from the encrypted dataset. 2 . The system of claim 1 , wherein the original dataset comprises sensitive information. 3 . The system of claim 1 , wherein the original dataset is encrypted by using a unique key generated by a Key Management Service (KMS). 4 . The system of claim 3 , wherein the unique key is a cipher key of at least 128 kB, 256 kB, or 612 kB. 5 . The system of claim 3 , wherein the unique key is generated through SHAI Hash via distributed storage libraries. 6 . The system of claim 1 , wherein the encrypted dataset comprises one or more generated encrypted values obtained from the original dataset by using a FPE user defined function (UDF). 7 . The system of claim 1 , wherein the original dataset is encrypted during runtime in a lazy evaluation approach of the FPE technique based on a request for encryption of the original dataset received by the processor from the user via the interface provided to the user, wherein the lazy evaluation approach comprises encrypting the original dataset as it flows into a big data analytical system. 8 . The system of claim 1 , wherein the original dataset is encrypted based on a request for encryption of the original dataset received from the user by the processor via the interface provided to the user and one or more encrypted values of the encrypted dataset and a key value mapping are stored in the database of fast accessibility in an eager evaluation approach of the FPE technique, wherein the eager evaluation approach comprises encrypting the original dataset beforehand for predefined/finite datasets. 9 . The system of claim 8 , wherein the processor refers to the key value mapping in the database of fast accessibility for regeneration of the original dataset. 10 . The system of claim 1 , wherein the processor receives, via the interface provided to the user, an authentication information from the user for authentication of the user. 11 . The system of claim 1 , wherein the processor receives, via the interface provided to the user, a request for a unique key for decrypting the encrypted dataset from an authenticated user. 12 . The system of claim 1 , wherein the processor shares, via the interface provided to the user, a unique key for decrypting the encrypted dataset for an authenticated user. 13 . A method for facilitating encryption preservation format as a distributed processing library, the method comprising: receiving, by a processor, a set of data packets comprising decimal numbers, multi lingual alphabets, and alphanumeric values from a database; extracting, by the processor, an original dataset from the received set of data packets for encryption of the original dataset in the database; encrypting, by the processor, the extracted original dataset by using a Format Preserving Encryption (FPE) technique to generate an encrypted dataset of a same format and a same length associated with the original dataset in the database and in a database of fast accessibility; and providing, by the processor, an interface to a user to access the encrypted dataset for a regeneration of the original dataset from the encrypted dataset. 14 . The method of claim 13 , wherein the original dataset comprises sensitive information. 15 . The method of claim 13 , comprising encrypting the original dataset by using a unique key generated by a Key Management Service (KMS). 16 . The method of claim 15 , wherein the unique key is a cipher key of at least 128 kB, 256 kB, or 612 kB. 17 . The method of claim 15 , comprising generating the unique key through SHAI Hash via distributed storage libraries. 18 . The method of claim 13 , wherein the encrypted dataset comprises one or more generated encrypted values obtained from the original dataset by using a FPE user defined function (UDF). 19 . The method of claim 13 , comprising encrypting the original dataset during runtime in a lazy evaluation approach of the FPE technique based on a request for encryption of the original dataset received from the user by the processor via the interface provided to the user, wherein the lazy evaluation approach comprises encrypting the original dataset as it flows into a big data analytical system. 20 . The method of claim 13 , comprising encrypting the original dataset based on a request for encryption of the original dataset received from the user by the processor via the interface provided to the user and one or more encrypted values of the encrypted dataset and a key value mapping are stored in the database of fast accessibility in an eager evaluation approach of the FPE technique, wherein the eager evaluation approach comprises encrypting the original dataset beforehand for predefined/finite datasets. 21 . The method of claim 20 , wherein the processor refers to the key value mapping in the database of fast accessibility for regeneration of the original dataset. 22 . The method of claim 13 , comprising receiving by the processor, via the interface provided to the user, an authentication information from the user for authentication of the user. 23 . The method of claim 13 , comprising receiving by the processor, via the interface provided to the user, a request for a unique key for decrypting the encrypted dataset from an authenticated user. 24 . The method of claim 13 , comprising sharing, by the processor, via the interface provided to the user, a unique key for decrypting the encrypted dataset for an authenticated user.
Assignees
Inventors
Classifications
User authentication · CPC title
where protection concerns the structure of data, e.g. records, types, queries · CPC title
with splitting of the data block into left and right halves, e.g. Feistel based algorithms, DES, FEAL, IDEA or KASUMI · CPC title
Manipulating the length of blocks of bits, e.g. padding or block truncation · CPC title
- G06F21/602Primary
Providing cryptographic facilities or services · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12505232B2 cover?
- The present invention provides a robust and effective solution to an organization by enabling them to implement a system ( 110 ) for facilitating format preserving encryption capability such that the encrypted data will not be available with its original value in a big data system and render sensitive field data as non-sensitive. Thus, sensitive data may be hidden from data-stores/warehouses wi…
- Who is the assignee on this patent?
- Jio Platforms Ltd
- What technology area does this patent fall under?
- Primary CPC classification G06F21/602. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Dec 23 2025 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 5 related publications on this page (citations in our corpus or others sharing the same primary CPC).