Google llc (20240111895). VERIFIABLE CONSENT FOR PRIVACY PROTECTION simplified abstract
Contents
- 1 VERIFIABLE CONSENT FOR PRIVACY PROTECTION
- 1.1 Organization Name
- 1.2 Inventor(s)
- 1.3 VERIFIABLE CONSENT FOR PRIVACY PROTECTION - A simplified explanation of the abstract
- 1.4 Simplified Explanation
- 1.5 Potential Applications
- 1.6 Problems Solved
- 1.7 Benefits
- 1.8 Potential Commercial Applications
- 1.9 Possible Prior Art
- 1.10 Original Abstract Submitted
VERIFIABLE CONSENT FOR PRIVACY PROTECTION
Organization Name
Inventor(s)
Gang Wang of Jersey City NJ (US)
Marcel M. Moti Yung of New York NY (US)
VERIFIABLE CONSENT FOR PRIVACY PROTECTION - A simplified explanation of the abstract
This abstract first appeared for US patent application 20240111895 titled 'VERIFIABLE CONSENT FOR PRIVACY PROTECTION
Simplified Explanation
The patent application describes a method for updating user consent in a verifiable manner, involving receiving a request from a client device with an attestation token containing user identifier, token creation time, user consent data, and a digital signature.
- User consent can be updated in a verifiable manner using an attestation token.
- The attestation token includes user identifier, token creation time, user consent data, and a digital signature.
- The integrity of the request is verified using the attestation token.
Potential Applications
This technology could be applied in data privacy and security systems, ensuring that user consent is accurately recorded and verified.
Problems Solved
This technology addresses the issue of ensuring that user consent for data usage is properly documented and verifiable.
Benefits
The benefits of this technology include enhanced data privacy for users, increased transparency in data usage, and improved security in handling user consent.
Potential Commercial Applications
A potential commercial application of this technology could be in compliance software for businesses to manage user consent in a secure and verifiable manner.
Possible Prior Art
One possible prior art for this technology could be systems for managing user consent in data processing applications, but the specific method of using an attestation token for verifiable consent updates may be novel.
Unanswered Questions
How does the method handle revoked user consent?
The patent application does not specify how revoked user consent is managed and updated in the system. This aspect would be important to understand the full scope of the technology.
What measures are in place to prevent unauthorized access to user consent data?
The patent application does not detail the security measures in place to protect user consent data from unauthorized access. Understanding the security protocols would be crucial for assessing the overall effectiveness of the technology.
Original Abstract Submitted
methods, systems, and apparatus, including a method for updating user consent in a verifiable manner. in some aspects, a method includes receiving, from a client device, a request including an attestation token. the attestation token includes a set of data that includes at least a user identifier that uniquely identifies a user of the client device, a token creation time that indicates a time at which the attestation token was created, user consent data specifying whether one or more entities that receive the attestation token are eligible to use data of the user, an action to be performed in response to the request. the attestation token also includes a digital signature of at least a portion of the set of data, including at least the user identifier and the token creation time. an integrity of the request is verified using the attestation token.
