US 12,316,778 B2
Privacy-preserving user certificates
Alessandro Sorniotti, Zurich (CH); Elli Androulaki, Zurich (CH); Ilie Circiumaru, Zurich (CH); Jesus Diaz Vico, Madrid (ES); and Marko Vukolić, Zurich (CH)
Assigned to International Business Machines Corporation, Armonk, NY (US)
Filed by International Business Machines Corporation, Armonk, NY (US)
Filed on Mar. 1, 2022, as Appl. No. 17/653,117.
Prior Publication US 2023/0283484 A1, Sep. 7, 2023
Int. Cl. G06F 21/00 (2013.01); G06F 21/36 (2013.01); G06F 21/62 (2013.01); H04L 9/32 (2006.01); H04L 29/06 (2006.01)
CPC H04L 9/3263 (2013.01) [G06F 21/36 (2013.01); G06F 21/6245 (2013.01); H04L 9/3236 (2013.01); H04L 9/3247 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method, comprising:
issuing a digitally-signed assertion, the issuing comprising:
receiving user data;
separating the user data into a private component and a non-private component, wherein the separating comprises:
determining, based on a size of an area, an amount of the user data that can be encoded in the area; and
selecting, from the user data, data for the private component based on the determined amount and a categorization of the user data;
encoding the private component and a nonce in the area as a barcode;
separately from the barcode, storing the non-private component and a digital signature in a database; and
generating a user certificate comprising the barcode and a pointer to the non-private component in the database.