| CPC G06F 21/6227 (2013.01) [G06F 16/27 (2019.01); G06F 16/9535 (2019.01); H04L 63/0421 (2013.01); H04L 9/0643 (2013.01)] | 21 Claims |
|
1. A computer implemented method comprising:
generating, by a requester account, requester data of a request for a data set from a secured database of a database system;
generating, by a provider account, shared tables of the data set for use in a clean room query based on the requester data, the shared tables encrypted by the provider account using an encryption function of the requester account with a pass phrase that is private to the requester account, the shared tables being processed in micro-batches, the micro-batches being mixed and re-ordered from an initial sequence;
generating, by the requester account, a clean room request for the data set;
generating, by the provider account, a shared secure user defined table function that accepts the pass phrase as a decryption key parameter, the pass phrase being passed to the shared secure user defined table function by the requester account;
generating, by the request account, results data by passing the pass phrase to the shared secure user defined table function;
decrypting, by the shared secure user defined table function using the pass phrase, the requester data;
matching, by the secure user defined table function, the requester data to user identifiers in the data set that are accessed using metadata references without exposing the user identifiers to the requester; and
displaying the results data based on the matching.
|