Prosecution Insights
Last updated: July 17, 2026
Application No. 17/811,534

ON-DEMAND CODE OBFUSCATION OF DATA IN INPUT PATH OF OBJECT STORAGE SERVICE

Final Rejection §103
Filed
Jul 08, 2022
Priority
Sep 27, 2019 — continuation of 11/386,230
Examiner
SHAW, PETER C
Art Unit
2493
Tech Center
2400 — Computer Networks
Assignee
Amazon Technologies Inc.
OA Round
8 (Final)
76%
Grant Probability
Favorable
9-10
OA Rounds
0m
Est. Remaining
99%
With Interview

Examiner Intelligence

Grants 76% — above average
76%
Career Allowance Rate
426 granted / 559 resolved
+18.2% vs TC avg
Strong +36% interview lift
Without
With
+35.6%
Interview Lift
resolved cases with interview
Typical timeline
3y 5m
Avg Prosecution
29 currently pending
Career history
604
Total Applications
across all art units

Statute-Specific Performance

§101
2.5%
-37.5% vs TC avg
§103
69.1%
+29.1% vs TC avg
§102
25.6%
-14.4% vs TC avg
§112
2.4%
-37.6% vs TC avg
Black line = Tech Center average estimate • Based on career data from 559 resolved cases

Office Action

§103
DETAILED ACTION Claims 1-20 are pending in this action. Notice of Pre-AIA or AIA Status The present application, filed on or after March 16, 2013, is being examined under the first inventor to file provisions of the AIA . Claim Rejections - 35 USC § 103 The following is a quotation of 35 U.S.C. 103 which forms the basis for all obviousness rejections set forth in this Office action: A patent for a claimed invention may not be obtained, notwithstanding that the claimed invention is not identically disclosed as set forth in section 102, if the differences between the claimed invention and the prior art are such that the claimed invention as a whole would have been obvious before the effective filing date of the claimed invention to a person having ordinary skill in the art to which the claimed invention pertains. Patentability shall not be negated by the manner in which the invention was made. Claims 1-8, 10-16 and 18-20 are rejected under 35 U.S.C. 103 as being unpatentable over Davis et al. (US 2018/0176193) [hereinafter “Davis”] in view of Thayer et al. (US 2018/0285591) [hereinafter “Thayer”] in further view of Guirguis et al. (US 2012/0030165) [hereinafter “Guirguis”] in further view of Zakour (US PGPUB No. 2020/0110902) in further view of Heckel et al. (US Patent No. 10,169,315) [hereinafter “Heckel”] in further view of Bosch et al. (US PGPUB No. 2019/0303212) [hereinafter “Bosch”]. Regarding claim 1, Davis discloses a system comprising: an object storage service comprising one or more computing devices, wherein the object storage service is configured to store a plurality of data objects within an object data store (Fig. 4 [0038] protection module 312 or [0047] detection module 412 receives request from client, directed to backend servers ); and a code execution service comprising one or more computing devices for on-demand execution of functions in an input/output (I/O) path of the object storage service (Fig. 4 encryption module 414); wherein the object storage service is configured to at least: receive input data and a request to store the input data as a data object within the object data store ([0047]: detection module receives requests from a client, [0048] the data directed to backend services hosted by the service provider); determine that a function to obfuscate a portion of the input data, associated with the request to store the input data, is to be executed prior to storing the input data as the data object ([0038][0046][0047] detects sensitive data from the request, [0041] protect sensitive data prior to forwarding to backend services); and transmit a call to the code execution service to execute the function against the input data ([0042][0047] transmit data to encryption module to be encrypted); and wherein the code execution service is configured to at least: receive, from the object storage service, the call to execute the function, the call including the input data ([0047]: encryption module receives data to be encrypted); and execute the function, wherein executing the function causes the service to: identify, within the input data, one or more instances of private information that is to be obfuscated prior to storing the input data as the data object within the object data store ([0046]: encryption module’s configuration data includes information suitable for identifying sensitive data, [0047] encrypt the sensitive data); generate output data comprising the one or more instances of the private information of the input data in obfuscated form; and return the output data to the object storage service; wherein the object storage service is further configured to store the output data in the object data store as the data object ([0048]: return encrypted sensitive data to detection module, which formats and forwards to the backend server for storage). Although Davis disclose the proxy fleet may transmit encrypted data and the remaining non-sensitive data to the backend service ([0040]), Davis does not explicitly teach the encryption module (interpreted as the code execution service) generates the output data including un-obfuscated data. However, Thayer discloses obfuscating sensitive data including in a document, and substituting the sensitive data by the obfuscated value, redacting the document , meaning non-sensitive data remain untouched ([0013][0024]), teaching generate output data comprising the one or more instances of the private information of the input data in obfuscated form and a remaining portion of the input data in un-obfuscated form. It would have been obvious to a skilled artisan before the instant application was effectively filed, to have the encryption module generates the output data by redacting the input as taught by Thayer because it would provide privacy for the sensitive data while limiting the obfuscation process to the needed sensitive fields, enhancing the process. Davis in view of Thayer does not explicitly teach compare the portion to a criterion and responsive to the comparison determine an obfuscation method to be executed by the function, wherein the obfuscation method is determined directly from comparing the portion of the criterion without an additional comparison. Guirguis teaches compare the portion to a criterion (Abstract, determining type of data) and responsive to the comparison determine an obfuscation method to be executed by the function, wherein the obfuscation method is determined directly from comparing the portion of the criterion without an additional comparison (Abstract, determining an obfuscation method based on the type of data). At the time of filing, it would have been obvious to one of ordinary skill in the art to combine Davis and Thayer with the teachings of Guirguis, compare the portion to a criterion and responsive to the comparison determine an obfuscation method to be executed by the function, wherein the obfuscation method is determined directly from comparing the portion of the criterion without an additional comparison, to use the most appropriate obfuscation method which will address all concerns including efficiency and security. The combination of Davis, Thayer and Guirguis does not explicitly teach wherein the input data is associated with an entity and wherein the obfuscation method is automatically selected from a plurality of obfuscation methods selected by the entity. Zakour teaches wherein the input data is associated with an entity ([0016], source artifacts, images and text, with data and metadata associated with a user via a user interface) and wherein the obfuscation method is automatically selected from a plurality of obfuscation methods selected by the entity ([0016], automatically selecting rules that have been set and modified by a user to redact various files). At the time of filing, it would have been obvious to one of ordinary skill in the art to combine Davis, Thayer and Guirguis with the teachings of Zakour, wherein the input data is associated with an entity and wherein the obfuscation method is automatically selected from a plurality of obfuscation methods selected by the entity, to allow the security and privacy concerns of a user or entity to be fully expressed and implemented in the data system. The combination of Davis, Thayer, Guirguis and Zakour does not explicitly teach wherein the request comprises an indication of an access profile; wherein the request is associated with the I/O path; determine based at least partly on the access profile and the I/O path, that a function to obfuscate a portion of the input data, associated with the request to store the input data is to be executed prior to storing the input data as the data object and determine based on the access profile, to obtain the input data. Heckel teaches wherein the request comprises an indication of an access profile (Col. 4, lines 5-20, the system has an access “profile” that includes confidentiality, regulatory, location, personal and other requirements and policies) see also (Col. 5, lines 1-3, redaction versions can be based on types of user); wherein the request is associated with the I/O path (Col. 3, lines 35-40, a request to redact text is based on the source of the data, i.e. a company or medical facility – a communication from a source to a destination is a I/O path); determine based at least partly on the access profile and the I/O path (Col. 3, lines 35-40, determining a redaction policy based on the source privacy policy), that a function to obfuscate a portion of the input data, associated with the request to store the input data is to be executed prior to storing the input data as the data object (Col. 4, lines 17-18, text is redacted and stored as the redacted text) and determine based on the access profile, to obtain the input data (Col. 5, lines 1-8, access to the document can be obtained based on the type of user). At the time of filing, it would have been obvious to one of ordinary skill in the art to combine Davis, Thayer, Guirguis and Zakour with the teachings of Heckel, wherein the request comprises an indication of an access profile; wherein the request is associated with the I/O path; determine based at least partly on the access profile and the I/O path, that a function to obfuscate a portion of the input data, associated with the request to store the input data is to be executed prior to storing the input data as the data object and determine based on the access profile, to obtain the input data, to obtain the input data, to allow the security and privacy concerns of a user or entity to be fully expressed and implemented in the data system. The combination of Davis, Thayer, Guirguis, Zakour and Heckel does not explicitly teach a serverless function invoking an instance of the code execution service, wherein the code execution service is provided with stream-level access to the input data. Bosch teaches a serverless function invoking an instance of the code execution service ([0034], service can be a server-less function), wherein the code execution service is provided with stream-level access to the input data ([0038], services provided as a serverless function can be any type of service including ones handling streaming data see also [0084] all communications are described as being in stream form at some point). At the time of filing, it would have been obvious to one of ordinary skill in the art to combine Davis, Thayer, Guirguis, Zakour and Heckel with the teachings of Bosch, a serverless function invoking an instance of the code execution service, wherein the code execution service is provided with stream-level access to the input data, to provide modular support for the security and privacy concerns of a user or entity across a cloud network. Regarding claim 2, the combination of Davis, Thayer, Guirguis, Zakour, Heckel and Bosch discloses the system of claim 1, wherein the input data does not remain stored in the object storage service in un-obfuscated form after the object storage service stores the output data (Davis, [0048]: replace sensitive data by encrypted data). Regarding claim 3, the combination of Davis, Thayer, Guirguis, Zakour, Heckel and Bosch discloses the system of claim 1, wherein the code execution service is configured to generate the output data by: determining a unique token for each instance of the private information, wherein each unique token is different from every other unique token (Thayer [0020][0021] obfuscate each sensitive value by generating unique values for each sensitive value); storing the instances of the private information and a mapping of the unique tokens to the instances of the private information (Thayer [0023]: for each sensitive value, map key, obfuscated value and sensitive value, store map in database 112); and replacing each instance of the private information with the corresponding unique token (Thayer [0024][0025]: substitute sensitive values by obfuscated values, store in database). (motivation to combine with Davis with Thayer is for enforcing data privacy). Regarding claim 4, the combination of Davis, Thayer, Guirguis, Zakour, Heckel and Bosch discloses the system of claim 1, wherein the code execution service is configured to generate the obfuscated form of the private information by encrypting the private information (Davis [0026]). Regarding claims 5 and 13, the claims recite substantially the same content as claim 1 and are rejected as in claim 1. Regarding claims 6 and substantially 14, the combination of Davis, Thayer, Guirguis, Zakour, Heckel and Bosch discloses the computer-implemented method of claim 5, wherein determining to obfuscate a first portion of the input data comprises determining that the first portion includes private information (Davis, [0046]). Regarding claims 7 and substantially 15, the combination of Davis, Thayer, Guirguis, Zakour, Heckel and Bosch discloses the computer-implemented method of claim 6, wherein the private information represents one or more of: personally identifiable information, a name, an address, an age, a government-issued identification number, a date of birth, a place of birth, a mother's maiden name, an account number, or a biometric record (Davis [0025]). Regarding claims 8 and substantially 16, the claims recite substantially the same content as claim 3 and are rejected as in claim 3. Regarding claims 10 and substantially 18, the combination of Davis, Thayer, Guirguis, Zakour, Heckel and Bosch discloses the computer-implemented method of claim 5, wherein generating the first obfuscated portion comprises encrypting the first portion of the input data using an encryption key (Davis [0026]). Regarding claims 11 and substantially 19, the combination of Davis, Thayer, Guirguis, Zakour, Heckel and Bosch discloses the computer-implemented method of claim 10, further comprising storing the encryption key and a mapping of the encryption key to the first obfuscated portion (Thayer, Fig. 1 table 114, motivation to combine Davis and Thayer for key management purposes). Regarding claims 12 and substantially 20, the combination of Davis, Thayer, Guirguis, Zakour, Heckel and Bosch discloses the computer-implemented method of claim 5, wherein determining to obfuscate the first portion of the input data is based at least in part upon a portion of the input data (Davis [0046]: determining based on data type, field, format ... associated with sensitive data). Allowable Subject Matter Claims 9 and 17 are objected to as being dependent upon a rejected base claim, but would be allowable if rewritten in independent form including all of the limitations of the base claim and any intervening claims. Response to Arguments Applicant’s arguments with respect the rejection of claims 1-8, 10-16 and 18-20 under 35 U.S.C. 103 have been fully considered and are persuasive. In light of the new amendments a new prior art reference, Bosch, has been introduced and cited to. Conclusion The prior art made of record and not relied upon is considered pertinent to applicant's disclosure: Matichuk et al. (US PGPUB No. 2007/0094594), Gervais et al. (US PGPUB No. 2010/0042583), Grammer et al. (US PGPUB No. 2012/0272329), Manevich et al. ("Redacting Transactions from Execute-Order-Validate Blockchains," 2021 IEEE International Conference on Blockchain and Cryptocurrency (ICBC), Sydney, Australia, 2021, pp. 1-9, doi: 10.1109/ICBC51069.2021.9461093), Pietro et al. ("Track me if you can: Transparent obfuscation for Location based Services," 2013 IEEE 14th International Symposium on "A World of Wireless, Mobile and Multimedia Networks" (WoWMoM), Madrid, Spain, 2013, pp. 1-9, doi: 10.1109/WoWMoM.2013.6583401) and Enireddy et al. ("Data Obfuscation Technique in Cloud Security," 2021 2nd International Conference on Smart Electronics and Communication (ICOSEC), Trichy, India, 2021, pp. 358-362, doi: 10.1109/ICOSEC51865.2021.9591915) all disclose various aspects of the claimed invention including choosing an obfuscation method based on a data type. Applicant's amendment necessitated the new ground(s) of rejection presented in this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 CFR 1.136(a). A shortened statutory period for reply to this final action is set to expire THREE MONTHS from the mailing date of this action. In the event a first reply is filed within TWO MONTHS of the mailing date of this final action and the advisory action is not mailed until after the end of the THREE-MONTH shortened statutory period, then the shortened statutory period will expire on the date the advisory action is mailed, and any nonprovisional extension fee (37 CFR 1.17(a)) pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, however, will the statutory period for reply expire later than SIX MONTHS from the mailing date of this final action. Any inquiry concerning this communication or earlier communications from the examiner should be directed to PETER C SHAW whose telephone number is (571)270-7179. The examiner can normally be reached Max Flex. Examiner interviews are available via telephone, in-person, and video conferencing using a USPTO supplied web-based collaboration tool. To schedule an interview, applicant is encouraged to use the USPTO Automated Interview Request (AIR) at http://www.uspto.gov/interviewpractice. If attempts to reach the examiner by telephone are unsuccessful, the examiner’s supervisor, Carl Colin can be reached on 571-272-3862. The fax phone number for the organization where this application or proceeding is assigned is 571-273-8300. Information regarding the status of published or unpublished applications may be obtained from Patent Center. Unpublished application information in Patent Center is available to registered users. To file and manage patent submissions in Patent Center, visit: https://patentcenter.uspto.gov. Visit https://www.uspto.gov/patents/apply/patent-center for more information about Patent Center and https://www.uspto.gov/patents/docx for information about filing in DOCX format. For additional questions, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a USPTO Customer Service Representative, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. /PETER C SHAW/Primary Examiner, Art Unit 2493 January 26, 2026
Read full office action

Prosecution Timeline

Show 34 earlier events
Jan 28, 2026
Non-Final Rejection mailed — §103
Apr 01, 2026
Interview Requested
Apr 07, 2026
Applicant Interview (Telephonic)
Apr 07, 2026
Examiner Interview Summary
Apr 28, 2026
Response Filed
Jun 05, 2026
Final Rejection mailed — §103
Jul 16, 2026
Examiner Interview Summary
Jul 16, 2026
Applicant Interview (Telephonic)

Precedent Cases

Applications granted by this same examiner with similar technology

Patent 12621158
TWO FACTOR AUTHENTICATION DEVICES WITH ACCESSIBILITY FEATURES
2y 2m to grant Granted May 05, 2026
Patent 12566852
NEFARIOUS CODE DETECTION USING SEMANTIC UNDERSTANDING
2y 10m to grant Granted Mar 03, 2026
Patent 12547696
WIRELESS BATTERY MANAGEMENT SYSTEM SAFETY CHANNEL COMMUNICATION LAYER PROTOCOL
3y 2m to grant Granted Feb 10, 2026
Patent 12536342
SOC ARCHITECTURE WITH SECURE, SELECTIVE PERIPHERAL ENABLING/DISABLING
2y 1m to grant Granted Jan 27, 2026
Patent 12511438
DYNAMIC PROVISION OF SOFTWARE APPLICATION FEATURES
2y 0m to grant Granted Dec 30, 2025
Study what changed to get past this examiner. Based on 5 most recent grants.

Strategy Recommendation AI-generated — please review before filing

Get a prosecution strategy drawn from examiner precedents, rejection analysis, and claim mapping.
Typically takes 5-10 seconds — AI-generated, attorney review required before filing

Prosecution Projections

9-10
Expected OA Rounds
76%
Grant Probability
99%
With Interview (+35.6%)
3y 5m (~0m remaining)
Median Time to Grant
High
PTA Risk
Based on 559 resolved cases by this examiner. Grant probability derived from career allowance rate.

Sign in with your work email

Enter your email to receive a magic link. No password needed.

Personal email addresses (Gmail, Yahoo, etc.) are not accepted.

Free tier: 3 strategy analyses per month