Outsourcing Document-Transformation Tasks while Protecting Sensitive Information
US-2016063269-A1 · Mar 3, 2016 · US
Secure transmission of sensitive data
US9639714B1 · US · B1
| Field | Value |
|---|---|
| Publication number | US-9639714-B1 |
| Application number | US-201615288297-A |
| Country | US |
| Kind code | B1 |
| Filing date | Oct 7, 2016 |
| Priority date | May 27, 2016 |
| Publication date | May 2, 2017 |
| Grant date | May 2, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
In a method for providing secure communication of a data string along a communication path, a first entity and first identifier, and a second entity and second identifier, are added to a registry database. A current value of the first identifier is provided to a first device to enable a first encoding of the data string, where the first encoding encodes a plurality of bit sequences in the data string as a first plurality of encoded bit sequences. A current value of the second identifier is provided to a second device downstream of the first device to enable a second encoding of the data string, where the second encoding encodes the first plurality of encoded bit sequences as a second plurality of encoded bit sequences. The current values of the first and second identifiers are provided to a third (e.g., destination) device to enable decoding of the data string.
First claim
Opening claim text (preview).
The invention claimed is: 1. A method, implemented in a server that includes one or more processors and a memory storing a registry database, of providing secure communication of a data string along a communication path including a plurality of devices, the method comprising: adding to the registry database a first entity and a first identifier associated with the first entity; adding to the registry database a second entity and a second identifier associated with the second entity; providing to a first device of the plurality of devices, via a first secure communication channel, a first current value of the first identifier to enable a first encoding of the data string, wherein the first device is associated with the first entity, and wherein the first encoding of the data string encodes a plurality of bit sequences in the data string as a first plurality of encoded bit sequences; providing to a second device of the plurality of devices, via a second secure communication channel, a first current value of the second identifier to enable a second encoding of the data string, wherein the second device is associated with the second entity and downstream of the first device in the communication path, and wherein the second encoding of the data string encodes the first plurality of encoded bit sequences as a second plurality of encoded bit sequences; and providing to a third device of the plurality of devices, via a third secure communication channel, the first current value of the first identifier and the first current value of the second identifier to enable decoding of the data string, wherein the third device is downstream of the second device in the communication path. 2. The method of claim 1 , wherein each of the first plurality of encoded bit sequences has a first block size, and each of the second plurality of encoded bit sequences has a second block size different than the first block size. 3. The method of claim 1 , wherein the first entity is one of: the first device; a person; or an organization. 4. The method of claim 1 , wherein the second device is a network device, and the second entity is one of: the network device; or a firewall implemented by the second device. 5. The method of claim 1 , further comprising: providing to the first device, via the first secure communication channel, a second current value of the first identifier to enable a first encoding of a subsequent data string, wherein the first encoding of the subsequent data string encodes a plurality of bit sequences in the subsequent data string as a third plurality of encoded bit sequences; providing to the second device, via the second secure communication channel, a second current value of the second identifier to enable a second encoding of the subsequent data string, wherein the second encoding of the subsequent data string encodes the third plurality of encoded bit sequences as a fourth plurality of encoded bit sequences; and providing to the third device, via the third secure communication channel, the second current value of the first identifier and the second current value of the second identifier to enable decoding of the subsequent data string, wherein one or both of (i) the second current value of the first identifier is different than the first current value of the first identifier, or (ii) the second current value of the second identifier is different than the first current value of the second identifier. 6. The method of claim 1 , wherein one or both of: providing to the first device the first current value of the first identifier is in response to receiving a request from the first device; and providing to the second device the first current value of the second identifier is in response to receiving a request from the second device. 7. A method, implemented in a server that includes one or more processors and a memory storing a registry database, of providing secure communication of a data string, the method comprising: adding to the registry database a first entity and a first identifier associated with the first entity; adding to the registry database a second entity and a second identifier associated with the second entity; providing to a source device associated with the first entity and the second entity, via a first secure communication channel, both a first current value of the first identifier to enable a first encoding of the data string, wherein the first encoding of the data string encodes a plurality of bit sequences in the data string as a first plurality of encoded bit sequences, and a first current value of the second identifier to enable a second encoding of the data string, wherein the second encoding of data string encodes the first plurality of encoded bit sequences as a second plurality of encoded bit sequences; and providing to a destination device, via a second secure communication channel, the first current value of the first identifier and the first current value of the second identifier to enable decoding of the data string. 8. The method of claim 7 , wherein each of the first plurality of encoded bit sequences has a first block size, and each of the second plurality of encoded bit sequences has a second block size different than the first block size. 9. The method of claim 7 , wherein the first entity and the second entity are different ones of: the source device; a person; or an organization. 10. The method of claim 7 , further comprising: providing to the source device, via the first secure communication channel, both a second current value of the first identifier to enable a first encoding of a subsequent data string, wherein the first encoding of the subsequent data string encodes a plurality of bit sequences in the subsequent data string as a third plurality of encoded bit sequences, and a second current value of the second identifier to enable a second encoding of the subsequent data string, wherein the second encoding of the subsequent data string encodes the third plurality of encoded bit sequences as a fourth plurality of encoded bit sequences; and providing to the third device, via the third secure communication channel, the second current value of the first identifier and the second current value of the second identifier to enable decoding of the subsequent data string, wherein one or both of (i) the second current value of the first identifier is different than the first current value of the first identifier, or (ii) the second current value of the second identifier is different than the first current value of the second identifier. 11. The method of claim 7 , wherein providing to the first device one or both of (i) the first current value of the first identifier, and (ii) the first current value of the second identifier, is in response to receiving a request from the first device. 12. A method, implemented in an electronic device having one or more processors, a communication interface, and a memory, the method comprising: obtaining, by the one or more processors, an encoded data string; receiving, by the one or more processors via the communication interface and a secure communication channel, current values of N identifiers from a remote server, wherein each of the N identifiers (i) is associated with a respective one of a plurality of entities, each of the plurality of entities being associated with communication of the encoded data string, and (ii) corresponds to a respective one of N decoding operations, each of the N decoding operations operating on blocks of bits having a respective block size, and N being an integer greater than 1; determining, by the one or more processors, a sequence in which the N d
Assignees
Inventors
Classifications
for separating internal from external traffic, e.g. firewalls · CPC title
- H04L63/0428Primary
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
by partitioning the display area of the touch-screen or the surface of the digitising tablet into independently controllable areas, e.g. virtual keyboards or menus · CPC title
by securing the transmission between two devices or processes · CPC title
using dedicated keyboard keys or combinations thereof · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9639714B1 cover?
- In a method for providing secure communication of a data string along a communication path, a first entity and first identifier, and a second entity and second identifier, are added to a registry database. A current value of the first identifier is provided to a first device to enable a first encoding of the data string, where the first encoding encodes a plurality of bit sequences in the data …
- Who is the assignee on this patent?
- Charter Communications Operating Llc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0428. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue May 02 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).