Secure database management system for confidential records using separately encrypted identifier and access request

Patent 6148342 Issued on November 14, 2000. Estimated Expiration Date:

January 13, 2019. Estimated Expiration Date is calculated based on simple USPTO term provisions. It does not account for terminal disclaimers, term adjustments, failure to pay maintenance fees, or other factors which might affect the term of a patent.

Abstract Claims Description Full Text

Patent References

Method and apparatus for authenticating users of a communication system to each other
Patent #: 5202921
Issued on: 04/13/1993
Inventor: Herzberg, et al.

Security method for private information delivery and filtering in public networks
Patent #: 5245656
Issued on: 09/14/1993
Inventor: Loeb, et al.

Method and system for multimedia access control enablement
Patent #: 5319705
Issued on: 06/07/1994
Inventor: Halter, et al.

Anonymous credit card transactions
Patent #: 5420926
Issued on: 05/30/1995
Inventor: Low, et al.

Method and system for key distribution and authentication in a data communication network
Patent #: 5539824
Issued on: 07/23/1996
Inventor: Bjorklund, et al.

Apparatus and method for storing data
Patent #: 5606610
Issued on: 02/25/1997
Inventor: Johansson

System and method for access field verification
Patent #: 5640454
Issued on: 06/17/1997
Inventor: Lipner, et al.

Creation and distribution of cryptographic envelope
Patent #: 5673316
Issued on: 09/30/1997
Inventor: Auerbach, et al.

System for generation of user profiles for a system for customized electronic identification of desirable objects
Patent #: 5754939
Issued on: 05/19/1998
Inventor: Herz, et al.

System and method for ensuring user privacy in network communications
Patent #: 5768391
Issued on: 06/16/1998
Inventor: Ichikawa

More ...

Inventor

Ho, Andrew P.

Application

No. 229694 filed on 01/13/1999

US Classes:

709/225, Computer network access regulating709/223COMPUTER NETWORK MANAGING

Examiners

Primary: Vu, Viet D.

Attorney, Agent or Firm

Blakely, Sokoloff, Taylor & Zafman

International Class

G06F 013/00

Abstract

A system for managing sensitive data is described. The system prevents a system administrator from accessing sensitive data by storing data and identifier information on different computer systems. Each query is encrypted using two codes, the first code readable only by an identifier database and a second code readable only by a data access database. By routing the data path from a source terminal to the identifier database which substitutes an internal ID, then to the data access database and back to the source terminal, data security is significantly improved.

Other References

Halamka, M.D., et al., A WWW Implementation of National Recommendations for Protecting Electronic Health Information, JAMIA, 1997; 4:458-464
Biskup, et al., Crytographic Protection of Health Information: Cost and Benefit, International Journal of Bio-Medical Computing 43 (1966) 61-67
Kilsdonk, et al., The Nucleus Integrated Electronic Patient Dossier Breakthrough & Concepts of an Open Solution, Int'l. Journal of Bio-Medical Computing 42 (1996) 79-89
R.L. Rivest, Chaffing & Winnowing: Confidentiality Without Encryption, MIT Lab for Computer Science Mar. 18, 1998, (rev. Apr. 24, 1998)
J.J. Cimino, M.D., Beyond the Superhighway: Exploiting the Internet with Medical Informatics, 1996 AMIA Annual Fall Symposium, Oct. 26-30, 1996
K. Pommerening, Pseudonyms for Cancer Registries, Meth. Inform. Med. 1996; 35: 112-21
C.Quantin, et al., Irreversible Encryption Method by Generation of Polynomials, Med. Inform. (1996), vol. 21, No. 2, 113-121
The Seismed Consortium, Data Security for Health Care, vol. II: Technical Guidelines, Studies in Health Technology and Informatics, 1996
Swamy, Database Security: An Introduction, Mar. 199