Patent · US Active

Publicly readable blockchain registry of personally identifiable information breaches

US10284533B2 · kind B2 · utility

0Cited by

2References

20Claims

0Family size

Assignee

CA, Inc. · US

Inventors

Steven Cornelis Versteeg · Ivanhoe, AU
Nathan Allin Hastings · Melbourne, AU
Xien Yao · Melbourne, AU
John Sinclair Bird · London, GB

Key dates

Filing date	Mar 14, 2018
Grant date	May 7, 2019
Priority date	—
Expiry date	Mar 14, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L9/50
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A registry is utilized to identify personally identifiable information (PII) that has been breached. The registry is a distributed database shared by multiple organizations to track which PII has been breached in other organizations. A first service provider initially receives PII and corresponding signed descriptor from a user. The PII is used to verify an identity of the user and the signed descriptor describes the type of PII that is received. The first service provider queries the registry to determine if the signed descriptor of the user has been written to the registry by a second service provider, indicating that it has been breached at a service provided by the second service provider. If the first service provider uses the breached PII, the breached PII is invalidated by the first service provider.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.