Method and system for preserving privacy and accountability

摘要

A computer implemented method, computer program product, server and clients for preserving privacy and accountability. The server receives from a first client computer pseudonymous, encrypted data and stores the pseudonymous, encrypted data. The -server further receives receiving at from a second client computer a data request for the pseudonymous, encrypted data and provides the pseudonymous, encrypted data to the second client computer in response to the data request. The server receives from the second client computer a signed key request for at least one key, wherein the at least one key is configured to decrypt the pseudonymous, encrypted data and wherein the signed key request comprises a public key of the second client computer. The server receives from the first client computer the at least one key, wherein the at least one key is encrypted with the public key of the second client computer and provides the at least one encrypted key to the second client computer in response to the signed key request.

主权项

1. A computer implemented method (4000) on a server computer (1001) for preserving privacy and accountability, comprising:
receiving (4100) from a first client computer (1002) pseudonymous, encrypted data (1101); storing (4200) the pseudonymous, encrypted data (1101) at the server computer (1001); receiving (4300) from a second client computer (1003) a data request (1202) for the pseudonymous, encrypted data (1101); providing (4400) the pseudonymous, encrypted data (1101) to the second client computer (1003) in response (1203) to the data request; receiving (4500) from the second client computer (1003) a signed key request (1204) for at least one key (1301), wherein the at least one key (1301) to be configured to decrypt the pseudonymous, encrypted data (1101) and wherein the signed key request (1204) comprises a public key (1303-pu) of the second client computer (1003); receiving (4600) from the first client computer (1002) the at least one key, wherein the at least one key (1301) is encrypted with the public key (1303-pu) of the second client computer (1003); and providing (4700) the encrypted at least one key to the second client computer (1003) in response to the signed key request.