Secure data transmission and verification with untrusted computing devices
US-9495544-B2 · Nov 15, 2016 · US
Secure collection of sensitive data
US9749302B1 · US · B1
| Field | Value |
|---|---|
| Publication number | US-9749302-B1 |
| Application number | US-201615288307-A |
| Country | US |
| Kind code | B1 |
| Filing date | Oct 7, 2016 |
| Priority date | May 27, 2016 |
| Publication date | Aug 29, 2017 |
| Grant date | Aug 29, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
In a method for securely collecting sensitive information, a first key entry made via a user interface is detected. Moreover, information is received via a secure communication channel from a remote server, where the information includes at least a current value of a first layer identifier. Using the current value of the first layer identifier, a bit string corresponding to the first key entry is determined. Using the bit string, at least a portion of a data string is generated. The data string is caused to be stored in a local memory and/or transmitted to another device via a network.
First claim
Opening claim text (preview).
The invention claimed is: 1. A method comprising: receiving, by one or more processors, first information provided by a remote server, the first information including at least a first current value of a first layer identifier; detecting, by one or more processors, a first key entry made via a user interface of an electronic device, the first key entry being an entry of a first key of a plurality of keys of the user interface; determining, by one or more processors and using the first current value of the first layer identifier, a first obfuscated bit string corresponding to the first key entry, wherein determining the first obfuscated bit string corresponding to the first key entry occurs in real-time as the first key entry is made and includes (i) using the first current value of the first layer identifier to identify a first mapping that maps each of the plurality of keys to a different set of coordinates within a first virtual space, each set of coordinates within the first virtual space corresponding to a different bit string, and (ii) using the first mapping to map the first key to the first obfuscated bit string; generating, by one or more processors and using the first obfuscated bit string, a first obfuscated data string; causing, by one or more processors, the first obfuscated data string to be transmitted to another device via a network; receiving, by one or more processors, second information provided by the remote server, the second information including at least a second current value of the first layer identifier; detecting, by one or more processors, a second key entry made via the user interface of the electronic device, the second key entry being an entry of a second key of the plurality of keys; determining, by one or more processors and using the second current value of the first layer identifier, a second obfuscated bit string corresponding to the second key entry, wherein determining the second obfuscated bit string corresponding to the second key entry occurs in real-time as the second key entry is made and includes (i) using the second current value of the first layer identifier to identify a second mapping that maps each of the plurality of keys to a different set of coordinates within a second virtual space, each set of coordinates within the second virtual space corresponding to a different bit string, and (ii) using the second mapping to map the second key to the second obfuscated bit string; generating, by one or more processors and using the second obfuscated bit string, a second obfuscated data string; and causing, by one or more processors, the second obfuscated data string to be transmitted to another device via a network. 2. The method of claim 1 , wherein the user interface includes a hardware keypad, each key of the plurality of keys is a different key on the hardware keypad, and detecting the first key entry includes detecting which of the plurality of keys was touched or depressed. 3. The method of claim 1 , wherein the user interface includes a virtual keypad presented on a touchscreen display of the electronic device, each key of the plurality of keys is a different key on the virtual keypad, and detecting the first key entry includes detecting which area of the touchscreen display was touched. 4. The method of claim 1 , further comprising requesting the first information from the remote server, wherein receiving the first information is in response to requesting the first information. 5. The method of claim 1 , wherein the first layer identifier is associated with an entity in a registry maintained by the remote server. 6. The method of claim 5 , wherein the entity is one of: the electronic device; an organization associated with the electronic device; or a person associated with a transaction being made via the electronic device. 7. The method of claim 1 , further comprising: receiving data indicating a number of encoding layers to be applied by the electronic device. 8. The method of claim 1 , wherein: the first current value of the first layer identifier is associated with an entity in a registry maintained by the remote server at a first time; and the second current value of the first layer identifier is associated with the entity in the registry at a second time later than the first time. 9. The method of claim 8 , wherein the entity is one of: the electronic device; an organization associated with the electronic device; or a person associated with a transaction being made via the electronic device. 10. The method of claim 1 , wherein: the first information further includes a first current value of a second layer identifier; the second information further includes a second current value of the second layer identifier; generating the first obfuscated data string using the first obfuscated bit string includes encoding, using the first current value of the second layer identifier, at least a portion of the first obfuscated bit string to generate a third obfuscated bit string, and generating the first obfuscated data string using the third obfuscated bit string; and generating the second obfuscated data string using the second obfuscated bit string includes encoding, using the second current value of the second layer identifier, at least a portion of the second obfuscated bit string to generate a fourth obfuscated bit string, and generating the second obfuscated data string using the fourth obfuscated bit string. 11. The method of claim 10 , further comprising: requesting the first information from the remote server; and requesting the second information from the remote server, wherein receiving the first information is in response to requesting the first information, and wherein receiving the second information is in response to requesting the second information. 12. An electronic device comprising: a user interface including a plurality of keys; a communication interface; a memory; and one or more processors configured to receive, via the communication interface, first information provided by a remote server, the first information including at least a first current value of a first layer identifier, detect a first key entry made via the user interface, the first key entry being an entry of a first key of a plurality of keys of the user interface, determine, using the first current value of the first layer identifier, a first obfuscated bit string corresponding to the first key entry, wherein determining the first obfuscated bit string corresponding to the first key entry occurs in real-time as the first key entry is made and includes (i) using the first current value of the first layer identifier to identify a first mapping that maps each of the plurality of keys to a different set of coordinates within a first virtual space, each set of coordinates within the first virtual space corresponding to a different bit string, and (ii) using the first mapping to map the first key to the first obfuscated bit string, generate, using the first obfuscated bit string, a first obfuscated data string, cause the first obfuscated data string to be transmitted to another device via a network, receive, via the communication interface, second information provided by the remote server, the second information including at least a second current value of the first layer identifier, detect a second key entry made via the user interface of the electronic device, the second key entry being an entry of a second key of the plurality of keys, determine, using the second current value of the first layer identifier, a second obfuscated bit string corresponding to the second key entry, where
Assignees
Inventors
Classifications
by securing the transmission between two devices or processes · CPC title
by partitioning the display area of the touch-screen or the surface of the digitising tablet into independently controllable areas, e.g. virtual keyboards or menus · CPC title
Just-in-time application of countermeasures, e.g., on-the-fly decryption, just-in-time obfuscation or de-obfuscation · CPC title
- H04L63/0428Primary
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
using different networks or channels, e.g. using out of band channels (cryptographic mechanisms or cryptographic arrangements for key distribution involving distinctive intermediate devices or communication paths H04L9/0827; cryptographic mechanisms or cryptographic arrangements for authentication using a plurality of channels H04L9/3215) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9749302B1 cover?
- In a method for securely collecting sensitive information, a first key entry made via a user interface is detected. Moreover, information is received via a secure communication channel from a remote server, where the information includes at least a current value of a first layer identifier. Using the current value of the first layer identifier, a bit string corresponding to the first key entry …
- Who is the assignee on this patent?
- Charter Communications Operating Llc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0428. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Aug 29 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).