Jason Jamal Chambers

US Patent:

8458487, Jun 4, 2013

Filed:

Mar 3, 2011

Appl. No.:

13/040133

Inventors:

Gary Palgon - Atlanta GA, US
Jason Chambers - Dunwoody GA, US
Dan Konisky - Atlanta GA, US

Assignee:

Liaison Technologies, Inc. - Alpharetta GA

International Classification:

H04L 29/06

US Classification:

713185, 713174, 713189, 713193, 726 9, 380 28, 380277

Abstract:

Systems and methods for secure access and utilization of sensitive data such as credit card numbers, Social Security Numbers, personal identifying information, etc. A tokenizing strategy component provides for creating, managing, and storing tokenization strategies on behalf of a plurality of users. A data tokenizing component is operative to (a) receive an input data string of sensitive data from a user, (b) apply a selected tokenization strategy to the input data string to generate a tokenized data string, and (c) provide the tokenized data string for storage in association with the input data string. A secure server including a secure database stores the tokenized data string and the input data string in a corresponding mapped relationship. A security component controls access to and retrieval of the tokenized data string and to the input data string in accordance with predetermined security requirements of the users.

US Patent:

20120321078, Dec 20, 2012

Filed:

Jun 20, 2012

Appl. No.:

13/527860

Inventors:

Jason Chambers - Dunwoody GA, US
Theresa Robison - Sandy Springs GA, US
Dameion Dorsner - Atlanta GA, US
Sridhar Manickam - Alpharetta GA, US
Daniel Konisky - Atlanta GA, US

International Classification:

H04L 9/00

US Classification:

380 44

Abstract:

Systems and methods for maintaining data security through encryption key retirement and selective re-encryption are presented. A method of selectively re-encrypting a subset of encrypted values includes storing each encrypted value together with the key profile number for the encryption key that was used to generate that encrypted value. When a key is compromised, its associated key profile number allows the efficient identification of all the encrypted values that were created using the now-compromised key. Once identified, the encrypted values may be decrypted using the compromised key and re-encrypted using a new key, without changing other related data such as the token associated with the encrypted value.

US Patent:

20120324223, Dec 20, 2012

Filed:

Jun 20, 2012

Appl. No.:

13/527837

Inventors:

Jason Chambers - Dunwoody GA, US
Theresa Robison - Sandy Springs GA, US
Dameion Dorsner - Atlanta GA, US
Sridhar Manickam - Alpharetta GA, US
Daniel Konisky - Atlanta GA, US

International Classification:

H04L 9/28

US Classification:

713168

Abstract:

Systems and methods for maintaining data security across multiple active domains are presented. Each domain includes a token generator that can generate tokens associated with sensitive data such as credit card numbers. The primary domain includes a centralized key manager. In one embodiment, each domain includes its own local data vault and a replica of each data vault associated with every remote domain. Any domain can access the data vaults (local and replica) and retrieve a token created by any other domain. The possibility of token collision is eliminated by a token generation algorithm that embeds a domain designator corresponding to the active domain where the token was created. When multiple tokens represent the same sensitive data, the token manager returns a set of all such tokens found in the data vaults.

US Patent:

20120324225, Dec 20, 2012

Filed:

Jun 20, 2012

Appl. No.:

13/527867

Inventors:

Jason Chambers - Dunwoody GA, US
Theresa Robison - Sandy Springs GA, US
Dameion Dorsner - Atlanta GA, US
Sridhar Manickam - Alpharetta GA, US
Daniel Konisky - Atlanta GA, US

International Classification:

H04L 9/28

US Classification:

713169

Abstract:

Systems and methods for maintaining data security using client roles, API keys, and certificate-based mutual authentication are presented. A method of protecting sensitive data includes both client authorization techniques and the mutual exchange and verification of certificates between client and server. In one embodiment, access by a client to a server is further limited by temporal constraints, volume constraints, and an end user identity filter.

US Patent:

20120324555, Dec 20, 2012

Filed:

Jun 20, 2012

Appl. No.:

13/527852

Inventors:

Jason Chambers - Dunwoody GA, US
Theresa Robison - Sandy Springs GA, US
Dameion Dorsner - Atlanta GA, US
Sridhar Manickam - Alpharetta GA, US
Daniel Konisky - Atlanta GA, US

International Classification:

G06F 21/00

US Classification:

726 6

Abstract:

Systems and methods for maintaining data security using Luhn validation in a multiple domain computing environment are presented. Each domain includes a token generator that can generate tokens associated with sensitive data such as credit card numbers. The token generation algorithm includes a Luhn validation routine for producing a tokenized data string that either passes or fails Luhn. The possibility of token collision is eliminated by a token generation algorithm that embeds a domain designator corresponding to the active domain where the token was created. When multiple tokens represent the same sensitive data, the token manager returns a set of all such tokens found.