Patent · US Active

Publicly readable blockchain registry of personally identifiable information breaches

US10084762B2 · kind B2 · utility

47Cited by

1References

19Claims

0Family size

Assignee

CA, Inc. · US

Inventors

Steven Cornelis Versteeg · Ivanhoe, AU
Nathan Allin Hastings · Melbourne, AU
Xien Yao · Melbourne, AU
John Sinclair Bird · London, GB

Key dates

Filing date	Sep 1, 2016
Grant date	Sep 25, 2018
Priority date	—
Expiry date	Mar 17, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L9/50
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A registry is utilized to identify personally identifiable information (PII) that has been breached. The registry is a distributed database shared by multiple organizations to track which PII has been breached in other organizations. A first service provider initially receives PII and corresponding signed descriptor from a user. The PII is used to verify an identity of the user and the signed descriptor describes the type of PII that is received. The first service provider queries the registry to determine if the signed descriptor of the user has been written to the registry by a second service provider, indicating that it has been breached at a service provided by the second service provider. If the first service provider uses the breached PII, the breached PII is invalidated by the first service provider.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.