SYSTEM AND METHOD FOR SPECIFICATION AND ENFORCEMENT OF A PRIVACY POLICY IN ONLINE SERVICES

摘要

A method for implementing a privacy policy includes receiving code for an application which includes definitions for a set of classes of records and for each of the record classes in the set, a definition of at least one field. A user selects one or more of the record classes and fields of the application as sensitive. A records manager is generated for identifying an associated minimization service for generating a minimized value of data in the sensitive field. A mapping aspect identifies joins in the application code where the minimization service is to be called. When the records manager and mapping aspect are deployed with the application, the minimization service generates a minimized value of data in the respective sensitive field.

主权项

1. A method for implementing a privacy policy, comprising:
receiving code for an application which includes definitions for a set of classes of records and for each of the record classes, a definition of at least one field; receiving a selection of at least one of the fields of the application that is designated by a user as a sensitive field; with a processor, based on the selection, generating a records manager and a mapping aspect,
the records manager including a private class definition corresponding to each record class that includes at least one of the fields designated as a sensitive field, the private class definition identifying an associated minimization service for generating a minimized value of data in the sensitive field;the mapping aspect including pointcuts for identifying joins at which the records manager is to augment the functioning of the application code by calling the minimization service to generate a minimized value of data in the respective sensitive field, the records manager and mapping aspect being configured to be deployed when the application is run, whereby the minimization service generates a minimized value of data in the respective sensitive field.