Data processing method based on blockchain network and related product
US-2024419537-A1 · Dec 19, 2024 · US
System and method for sensitive data field hashing
US9589152B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9589152-B2 |
| Application number | US-23320608-A |
| Country | US |
| Kind code | B2 |
| Filing date | Sep 18, 2008 |
| Priority date | Sep 19, 2007 |
| Publication date | Mar 7, 2017 |
| Grant date | Mar 7, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Data to be exchanged in a transaction is protected by using a hashing function to transform sensitive data into a scrambled form. The hashing function can use as its inputs data derived entirely or in part from portions of the data to be exchanged. The hashing function can also use as its inputs data derived entirely or in part from other locally available data. The output of the hash function is then transmitted to a destination that attempts to recreate the output of the hash function in order to validate the data transmission.
First claim
Opening claim text (preview).
What is claimed is: 1. A method for securing data using a dynamic hash, the method comprising: creating a first hash input including a first set of data fields selected from a first collection of data, the first set of data fields including a first data field obtained from a consumer input device by a point of data entry device, a second data field obtained from the consumer input device by the point of data entry device and a third data field obtained from the point of data entry device, the first data field including an account identifier obtained from the consumer input device, the second data field including sensitive data obtained from the consumer input device, the third data field including data having a value determined independent of the consumer input device; performing a hash operation on the first hash input to create a first hash output; assembling a second collection of data including (i) at least a portion of said first hash output and (ii) a second set of data fields selected from the first collection of data, the second set of data fields partially incorporating the first set of data fields at least in part by including the first data field obtained from the consumer input device and the third data field obtained from the point of data entry device and being distinct with respect to the first set of data fields at least in part by excluding the second data field obtained from the consumer input device; and securely communicating the sensitive data obtained from the consumer input device to the remote destination at least in part by transmitting the second collection of data over a network to a remote destination; wherein the second collection of data is assembled for each of a plurality of transactions with respect to an account identified by the account identifier and contents of said at least a portion of said first hash output changes for each of the plurality of transactions. 2. The method of claim 1 wherein the second collection of data is in a format compatible with a legacy data structure. 3. The method of claim 2 further comprising: mapping the first hash output to a format compatible with the format of the second collection of data. 4. The method of claim 1 further comprising: receiving the second collection of data at the remote destination; determining, at the remote destination, a fourth data field based at least in part on the first data field in the second collection of data; creating a second hash input from data available at the remote destination including the first data field, the third data field and the fourth data field; performing the hash operation on the second hash input to create a second hash output at the remote destination; comparing said at least a portion of said first hash output in the second collection of data to a corresponding at least a portion of the second hash output created at the remote destination; and determining that the fourth data field matches the second data field obtained from the consumer input device based at least in part on the comparison of said at least a portion of said first hash output in the second collection of data and said corresponding at least a portion of the second hash output created at the remote destination. 5. The method of claim 4 , wherein the second collection of data received at the remote destination authorizes a transaction and validating the authorization of the transaction comprises determining that the fourth data field matches the second data field obtained from the consumer input device. 6. The method of claim 1 , wherein the account identifier is a primary account number (PAN) associated with a credit card and the sensitive data is a card verification value (CVV) associated with the credit card. 7. The method of claim 1 , wherein the first set of data fields and the second set of data fields include a financial value associated with one of the plurality of transactions and obtained from the point of data entry device. 8. The method of claim 1 , wherein the first set of data fields and the second set of data fields include a timestamp associated with one of the plurality of transactions and obtained from the point of data entry device. 9. The method of claim 1 , wherein the first data field and the second data field are obtained from the consumer input device when the consumer input device is in physical proximity to the point of data entry device. 10. The method of claim 1 , wherein the third data field obtained from the consumer input device is a cryptographic nonce that is different for each transaction. 11. The method of claim 1 , wherein the second set of data fields included in the second collection of data is distinct with respect to the first set of data fields further at least in part by including a fifth data field obtained from the consumer input device that is not included in the first set of data fields. 12. The method of claim 1 , wherein the second collection of data includes less than all of said first hash output. 13. The method of claim 12 , wherein the second collection of data includes a modulus of said first hash output. 14. The method of claim 12 , wherein the second collection of data includes a conversion of said first hash output to a format compatible with the second collection of data. 15. A method for securing data using a dynamic hash, the method comprising: creating a first hash input including a first set of data fields selected from a first collection of data, the first set of data fields including a first data field obtained from a consumer input device by a point of data entry device, a second data field obtained from the consumer input device by the point of data entry device and a third data field obtained from the point of data entry device, the first data field including an account identifier obtained from the consumer input device, the second data field including sensitive data obtained from the consumer input device, the third data field including data having a value determined independent of the consumer input device; performing a first hash operation on the first hash input to create a first hash output; assembling a second collection of data including (i) at least a portion of said first hash output and (ii) a second set of data fields selected from the first collection of data, the second set of data fields partially incorporating the first set of data fields at least in part by including the first data field obtained from the consumer input device and the third data field obtained from the point of data entry device and being distinct with respect to the first set of data fields at least in part by excluding the second data field obtained from the consumer input device; transmitting the second collection of data to a destination over a network; determining, at the destination, a fourth data field based at least in part on the first data field in the second collection of data; creating a second hash input from data available at the destination including the first data field, the third data field and the fourth data field; performing a second hash operation on the second hash input to create a second hash output at the destination; comparing said at least a portion of said first hash output in the second collection of data to a corresponding at least a portion of the second hash output; and determining that the fourth data field matches the second data field obtained from the consumer input device based at least in part on the comparison of said at least a portion of said first hash output in the second collection of data and the second hash output; wherein th
Assignees
Inventors
Classifications
Applying verification of the received information (cryptographic mechanisms or cryptographic arrangements for data integrity or data verification H04L9/32) · CPC title
- G06F21/64Primary
Protecting data integrity, e.g. using checksums, certificates or signatures · CPC title
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9589152B2 cover?
- Data to be exchanged in a transaction is protected by using a hashing function to transform sensitive data into a scrambled form. The hashing function can use as its inputs data derived entirely or in part from portions of the data to be exchanged. The hashing function can also use as its inputs data derived entirely or in part from other locally available data. The output of the hash function …
- Who is the assignee on this patent?
- Sheets John, Visa Usa Inc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/64. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Mar 07 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).