System for protecting sensitive data with distributed tokenization
US8595850B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Feb 1, 2012 |
| Grant date | Nov 26, 2013 |
| Priority date | — |
| Expiry date | Feb 1, 2032 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/0897
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A token generating organization may include distributed tokenization systems for generating tokens corresponding to sensitive information. Sensitive information may include sensitive numbers such as social security numbers, credit card numbers or other private numbers. A tokenization system may include multiple physically distinct hardware platforms each having a tokenization server and a database. A tokenization server may run portions of a sensitive number through a predetermined number of rounds of a Feistel network. Each round of the Feistel network may include tokenizing portions of the sensitive number using a fractional token table stored an associated database and modifying the tokenized portions by reversibly adding portions of the sensitive number to the tokenized portions. The fractional token table may include partial sensitive numbers and corresponding partial tokens. A sensitive-information-recovery request including the token may be directed to the token generating organization from the token requestor to recover sensitive information.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.