	US 11,741,249 B2
	High performance tokenization platform for sensitive data
Rohit Joshi, Glen Allen, VA (US); Marek Bazler, Glen Allen, VA (US); Lan Xie, Chantilly, VA (US); and Hao Cheng, Oakton, VA (US)
Assigned to Capital One Services, LLC, McLean, VA (US)
Filed by Capital One Services, LLC, McLean, VA (US)
Filed on Mar. 5, 2021, as Appl. No. 17/193,572.
Application 17/193,572 is a continuation of application No. 16/773,250, filed on Jan. 27, 2020, granted, now 10,956,591.
Prior Publication US 2021/0286886 A1, Sep. 16, 2021
Int. Cl. G06F 21/62 (2013.01); H04L 9/06 (2006.01)

CPC G06F 21/6209 (2013.01) [G06F 21/6227 (2013.01); H04L 9/0643 (2013.01)]

20 Claims

1. A computer-implemented method for in-memory tokenization by an application server, the method comprising:

transmitting, from the application server to a hardware security module, a request for an encryption key;

receiving, in response to the request and from the hardware security module, the encryption key;

receiving, from a client device, a tokenization request that includes a user object;

determining, by the application server, that the user object or a hash of the user object has not previously been stored in a multi-level cache in the application server, wherein the multi-level cache is an in-memory database in the application server;

generating, based on the determining that the user object or the hash of the user object has not previously been stored in the multi-level cache, a token, wherein the token is not based on information in the user object and wherein the token is generated based on information stored in the multi-level cache and the encryption key;

encrypting, by the application server, the user object using the encryption key to generate an encrypted user object; and

storing the encrypted user object and the token in the multi-level cache.