Browse Prior Art Database

A method and system for anonymizing and de-anonymizing data in a hybrid cloud solution

IP.com Disclosure Number: IPCOM000238512D
Publication Date: 2014-Sep-01
Document File: 2 page(s) / 674K

Publishing Venue

The IP.com Prior Art Database

Abstract

This article describes a system and a method to anonymize PII information residing in an on-premise datasource (e.g. a relational database instance) in the moment it must be transmitted outside the on-premise data center for being used by a software application. The application can work on the anonymized data and it can send the results of the elaboration (e.g. Reports) back on-premise. The application can reference in these results original anonymized PII information. The system takes care of storing the results of the elaboration on-premise, providing them to its users when requested. The users of the system are configured with a role: the system de-anonymizes PII information eventually contained in the reports based on the role of the user who requested the report. Some roles have limited access to the reports, in anonymized form; some others have full access to the reports, with original PII information.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 84% of the total text.

Page 01 of 2

A method and system for anonymizing and de -anonymizing data in a hybrid cloud solution

    Enabling an application running in a public cloud to consume data containing PII (Personal Identifiable Information) residing in on-premises data center. These data usually cannot leave the data center because of regulatory compliance rules and other privacy issues.

A typical example of such a type of application (called hybrid applications) is in the domain of analytics: a person can lease computing power from a public cloud provider to analyze his/her data in order to discover insights (e.g. predict the behavior of a customer based on his profile). However, this person may hesitate sending datastored in his/her MDM (master data management) into the cloud because he/she would not trust it. But perhaps the person would accept sending data if the cloud provider offers services to anonymize data before they leave the MDM and to de-anonymize the results of the elaboration once transferred to the on-premise datastores.

    This article discloses one example of system and a method to guarantee that the data residing in an on-premise datasource (e.g. a relational database instance) are automatically anonymized before being transferred to the public cloud for usage by a hybrid cloud application. The system also takes care of maintaining the results of the elaboration (e.g. Reports) in an anonymous form, de-anonymizing them when needed by the end users: the ones who need to see the resul...