公开(公告)号：WO2022211899A1

公开(公告)日：2022-10-06

申请号：PCT/US2022/014994

申请日：2022-02-02

Applicant: VISA INTERNATIONAL SERVICE ASSOCIATION

Inventor： NAGARAJA, Vinjith ,  XU, Minghua ,  TREVINO, Jose Rios ,  WATSON, Gaven ,  MUKHERJEE, Pratyay ,  CHEN, Yilei ,  MASNY, Daniel ,  CHRISTODORESCU, Mihai

IPC: H04L9/08 ,  H04L9/40

Abstract: Embodiments are directed to methods and systems for crypto-agile encryption and decryption. A computer system can possess a protocol file that identifies one or more cryptographic software modules. Using these cryptographic software modules, the computer system can generate a plurality of shared secrets and a session key, then use the session key to encrypt a message. The message can be sent to a server computer that can subsequently decrypt the message. At a later time, the protocol file can be updated to identify a different set of cryptographic software modules, which can be used to encrypt messages. Further, the server computer can transmit additional cryptographic software modules to the computer system, enabling the computer system to use those cryptographic software modules to generate cryptographic keys. As such, the cryptographic protocol file can be changed in response to changes in the cryptographic needs of the computer system.

公开(公告)号：WO2022155110A1

公开(公告)日：2022-07-21

申请号：PCT/US2022/011916

申请日：2022-01-11

Applicant: VISA INTERNATIONAL SERVICE ASSOCIATION

Inventor： NAGARAJA, Vinjith ,  XU, Minghua ,  PATEL, Karankumar, Hiteshbhai

IPC: H04L9/32

Abstract: Provided are systems for conducting private set intersection (PSI) techniques with multiple parties using a data repository that include at least one processor to generate a data repository, receive, from a submission entity system associated with a submission entity, a private set intersection (PSI) data query that includes a match parameter for performing the PSI data query, transmit, to the submission entity system, a data classification encryption key, wherein the data classification encryption key is associated with a data field that corresponds to a match parameter data field of the match parameter, determine whether to authorize the PSI data query on the data repository, transmit, to the submission entity system, a data authorization encryption key based on determining to authorize the PSI data query on the data repository, and perform the PSI data query on the data repository. Methods and computer program products are also provided

公开(公告)号：WO2022076605A1

公开(公告)日：2022-04-14

申请号：PCT/US2021/053840

申请日：2021-10-06

Applicant: VISA INTERNATIONAL SERVICE ASSOCIATION

Inventor： XU, Minghua ,  CHRISTODORESCU, Mihai ,  SUN, Wei ,  RINDAL, Peter ,  KUMARESAN, Ranjit ,  NAGARAJA, Vinjith ,  PATEL, Karankumar Hiteshbhai

IPC: G06F16/25 ,  G06F16/2455 ,  G06F16/28 ,  G06F16/22 ,  G06F21/62 ,  H04L65/40

Abstract: Embodiments of the present disclosure are directed to methods and systems used to determine private set intersections (PSIs) and execute private database joins (PDJs). Some embodiments are characterized by binning techniques that enables PSI and PDJ methods to be performed by worker nodes in a computing cluster in parallel, thus reducing execution time. A first party computing system and a second party computing system can each tokenize their respective datasets, then assign the datasets to bins. The bins can each be padded with dummy tokens. Then the first party computing system and second party computing system can execute several parallel PSI on pairs of corresponding bins. The results can then be combined to produce a tokenized intersection set, which can then be detokenized to produce the set intersection.

公开(公告)号：WO2023009294A1

公开(公告)日：2023-02-02

申请号：PCT/US2022/036528

申请日：2022-07-08

Applicant: VISA INTERNATIONAL SERVICE ASSOCIATION

Inventor： NAGARAJA, Vinjith ,  XU, Minghua ,  PATEL, Karankumar Hiteshbhai ,  GU, Shengfei ,  PATRANABIS, Sikhar ,  BADRINARAYANAN, Saikrishna ,  MUKHERJEE, Pratyay ,  RINDAL, Peter ,  JIN, Shan

IPC: H04L9/08

Abstract: A method performed by a user device is disclosed. The method comprising generating a secret and measuring a biometric template of a user operating the user device. The method then generates a plurality of secret shares of the secret and of the biometric template. The user device then transmits the secret shares of the secret and of the biometric template to a plurality of recovery devices. After, the user device may then initiate a recovery of the secret and measure a biometric measurement of the user. Data of the biometric measurement may be transmitted to the plurality of recovery devices, where the recovery devices perform a partial computation. The user device use the plurality of partial computations to determine a match between the biometric template and the biometric measurement. If the two biometrics match, the user device can reconstruct the secret using shares of the secret from the recovery devices.

公开(公告)号：WO2019164935A1

公开(公告)日：2019-08-29

申请号：PCT/US2019/018756

申请日：2019-02-20

Applicant: VISA INTERNATIONAL SERVICE ASSOCIATION

Inventor： NAGARAJA, Vinjith ,  VIG, Dhruv ,  BRAMMER, Raymond ,  RAMARAPU, Vamshi ,  MYERS, James ,  CAPEZZA, David ,  TAVVALA, Nagaveera Venkata Su ,  MAHAJAN, Swapneel ,  MAYOR, Shalini

IPC: H04L29/06 ,  G06F21/57 ,  G06F21/56

Abstract: Embodiments of the invention are directed to an automated account restoration system. In some embodiments, the system determines a state of an account based on a likelihood that the account has been compromised. If the account is determined to be in a low-risk state, then upon an successful login to that account, a verification cookie may be generated which is unique to a user device used to access the account. If the account is determined to be in a high-risk state, then system may prevent access to the account except by user devices that include a valid verification cookie.