Method and system for enabling log record consumers to comply with regulations and requirements regarding privacy and the handling of personal data
First Claim
1. A method of enabling a plurality of log record consumers to comply with regulations and requirements regarding privacy and handling of data, wherein a set of one or more applications have access to data and generate raw log records responsive to events that occur in the set of applications, wherein each of the raw log records is of one of a plurality of log record formats, wherein the set of applications are expected to generate a plurality of raw log records that each stores pieces of the data that relate to an event that occurs in the set of applications, wherein each of the plurality of log record formats includes a specific plurality of fields for storing different pieces of the data to which the set of one or more applications have access, the method comprising:
- receiving a raw log record that is of a first of the plurality of log record formats and that stores in the specific plurality of fields raw pieces of the data that relate to an event that occurred in one of the set of applications;
determining, based on the log record format being of a first of a plurality of log record types, that a first field from the raw log record is to be tokenized based on a first tokenization strategy of a plurality of tokenization strategies in the first log record type, wherein each of the plurality of tokenization strategies identifies a tokenization mechanism from a plurality of tokenization mechanisms to be used for generating a token from a raw value to enable compliance with a respective set of regulations and requirements regarding privacy and the handling of data, wherein each of the plurality of log records types specifies which one or more of the plurality of tokenization strategies to apply to one or more of the specific plurality of fields of one of the plurality of record formats;
generating for a first raw value in the first field of the raw log record a first token that is an anonymized representation of the first raw value using a first tokenization mechanism identified by the first tokenization strategy in the log record type; and
outputting a tokenized log record generated based on the raw log record and the first token to be used by one or more of the plurality of log record consumers.
3 Assignments
0 Petitions
Accused Products
Abstract
A method and a system for enabling multiple log record consumers to comply with regulations and requirements regarding privacy and handling of data are described. A determination, based on a log record format being of a first of the log record types, that a first field from a raw log record is to be tokenized based on a first tokenization strategy of multiple tokenization strategies in the first log record type, is performed. Each one of the tokenization strategies identifies a tokenization mechanism from tokenization mechanisms for generating a token from a raw value to enable compliance with a set of regulations and requirements regarding privacy and the handling of data. For a first raw value in the first field a first token is generated that is an anonymized representation of the first raw value using a tokenization mechanism identified by the first tokenization strategy in the log record type.
-
Citations
21 Claims
-
1. A method of enabling a plurality of log record consumers to comply with regulations and requirements regarding privacy and handling of data, wherein a set of one or more applications have access to data and generate raw log records responsive to events that occur in the set of applications, wherein each of the raw log records is of one of a plurality of log record formats, wherein the set of applications are expected to generate a plurality of raw log records that each stores pieces of the data that relate to an event that occurs in the set of applications, wherein each of the plurality of log record formats includes a specific plurality of fields for storing different pieces of the data to which the set of one or more applications have access, the method comprising:
-
receiving a raw log record that is of a first of the plurality of log record formats and that stores in the specific plurality of fields raw pieces of the data that relate to an event that occurred in one of the set of applications; determining, based on the log record format being of a first of a plurality of log record types, that a first field from the raw log record is to be tokenized based on a first tokenization strategy of a plurality of tokenization strategies in the first log record type, wherein each of the plurality of tokenization strategies identifies a tokenization mechanism from a plurality of tokenization mechanisms to be used for generating a token from a raw value to enable compliance with a respective set of regulations and requirements regarding privacy and the handling of data, wherein each of the plurality of log records types specifies which one or more of the plurality of tokenization strategies to apply to one or more of the specific plurality of fields of one of the plurality of record formats; generating for a first raw value in the first field of the raw log record a first token that is an anonymized representation of the first raw value using a first tokenization mechanism identified by the first tokenization strategy in the log record type; and outputting a tokenized log record generated based on the raw log record and the first token to be used by one or more of the plurality of log record consumers. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory machine readable medium that stores instructions that, when executed by one or more processors of electronic devices, cause the electronic devices to enable a plurality of log record consumers to comply with regulations and requirements regarding privacy and handling of data, wherein a set of one or more applications have access to data and generate raw log records responsive to events that occur in the set of applications, wherein each of the raw log records is of one of a plurality of log record formats, wherein the set of applications are expected to generate a plurality of raw log records that each stores pieces of the data that relate to an event that occurs in the set of applications, wherein each of the plurality of log record formats includes a specific plurality of fields for storing different pieces of the data to which the set of one or more applications have access, by performing the following operations:
-
receiving a raw log record that is of a first of the plurality of log record formats and that stores in the specific plurality of fields raw pieces of the data that relate to an event that occurred in one of the set of applications; determining, based on the log record format being of a first of a plurality of log record types, that a first field from the raw log record is to be tokenized based on a first tokenization strategy of a plurality of tokenization strategies in the first log record type, wherein each of the plurality of tokenization strategies identifies a tokenization mechanism from a plurality of tokenization mechanisms to be used for generating a token from a raw value to enable compliance with a respective set of regulations and requirements regarding privacy and the handling of data, wherein each of the plurality of log records types specifies which one or more of the plurality of tokenization strategies to apply to one or more of the specific plurality of fields of one of the plurality of record formats; generating for a first raw value in the first field of the raw log record a first token that is an anonymized representation of the first raw value using a first tokenization mechanism identified by the first tokenization strategy in the log record type; and outputting a tokenized log record generated based on the raw log record and the first token to be used by one or more of the plurality of log record consumers. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A system for enabling a plurality of log record consumers to comply with regulations and requirements regarding privacy and handling of data, wherein a set of one or more applications have access to data and generate raw log records responsive to events that occur in the set of applications, wherein each of the raw log records is of one of a plurality of log record formats, wherein the set of applications are expected to generate a plurality of raw log records that each stores pieces of the data that relate to an event that occurs in the set of applications, wherein each of the plurality of log record formats includes a specific plurality of fields for storing different pieces of the data to which the set of one or more applications have access, the system comprising:
-
one or more processors; and a non-transitory machine-readable storage medium having stored therein instructions that, when executed by the one or more processors, cause the one or more processors to perform operations comprising; receiving a raw log record that is of a first of the plurality of log record formats and that stores in the specific plurality of fields raw pieces of the data that relate to an event that occurred in one of the set of applications; determining, based on the log record format being of a first of a plurality of log record types, that a first field from the raw log record is to be tokenized based on a first tokenization strategy of a plurality of tokenization strategies in the first log record type, wherein each of the plurality of tokenization strategies identifies a tokenization mechanism from a plurality of tokenization mechanisms to be used for generating a token from a raw value to enable compliance with a respective set of regulations and requirements regarding privacy and the handling of data, wherein each of the plurality of log records types specifies which one or more of the plurality of tokenization strategies to apply to one or more of the specific plurality of fields of one of the plurality of record formats; generating for a first raw value in the first field of the raw log record a first token that is an anonymized representation of the first raw value using a first tokenization mechanism identified by the first tokenization strategy in the log record type; and outputting a tokenized log record generated based on the raw log record and the first token to be used by one or more of the plurality of log record consumers. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification