| 发明名称 | Enforcement of data privacy to maintain obfuscation of certain data | ||
| 摘要 | A computer-readable medium is disclosed that tangibly embodies a program of machine-readable instructions executable by a digital processing apparatus to perform operations including determining whether data to be released from a database is associated with one or more confidential mappings between sets of data in the database. The operations also include, in response to the data being associated with the one or more confidential mappings, determining whether release of the data meets one or more predetermined anonymity requirements of an anonymity policy. Methods and apparatus are also disclosed. | ||
| 申请公布号 | US9129119(B2) | 申请公布日期 | 2015.09.08 |
| 申请号 | US201313968478 | 申请日期 | 2013.08.16 |
| 申请人 | International Business Machines Corporation | 发明人 | Burke Michael George;Peshansky Igor;Pistoia Marco;Tripp Omer |
| 分类号 | G06F21/00;G06F21/60;G06F21/62;G06F19/00 | 主分类号 | G06F21/00 |
| 代理机构 | Harrington & Smith | 代理人 | Harrington & Smith ;Percello Louis J. |
| 主权项 | 1. A method, comprising: determining, by a microprocessor, whether data to be released from a database maps to at least one confidential mapping between sets of data in the database; and in response to the data mapping to the at least one confidential mapping, determining whether release of the data meets at least one predetermined anonymity requirement of an anonymity policy, wherein determining whether release of the data meets at least one predetermined anonymity requirement of an anonymity policy further comprises performing static enforcement of the anonymity policy by analyzing program code without executing the program code, wherein the program code performs release of the data at one or more release points when the program code is executed, and wherein determining whether release of the data meets at least one predetermined anonymity requirement of an anonymity policy and performing static enforcement of the anonymity policy further comprises: determining, during the static enforcement whether an invocation of an obfuscation function is performed in the program code on at least one path from a query to at least one of the one or more release points at which the data would be released by the program code when the program code is executed; andin response to an invocation of the obfuscation function not being performed in the program code on the at least the path from the query to the at least one release point at which the data would be released by the program code, performing during the static enforcement at least one action. | ||
| 地址 | Armonk NY US | ||