Patent attributes
Devices and processes perform federation of tokenization services. A tokenization federation service establishes trust relationships between tokenization services that substitute tokens for sensitive data and acts as a mechanism for token portability among distinct tokenization domains. The tokenization federation service receives a request from a tokenization service to establish a tokenization federation group, and receives membership policy information, token rules and token access policy information from the tokenization service for federation that are all associated with the federation and stored. The tokenization federation service receives another request from another tokenization service to join the federation, and if the membership policy allows, is made a member of the federation group. Access by the members to tokens is regulated in accordance with the access policy. The tokenization federation service may register tokens, field requests for tokens and sensitive data from members, and may provide an integration point to other services.
