Identifying and tracking sensitive data

US 9,940,479 B2
Filed: 10/20/2015
Issued: 04/10/2018
Est. Priority Date: 10/20/2015
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method of classifying privacy relevance of an application programming interface (API), the computer implemented method comprising:

in response to receiving a set of input applications, analyzing, by a processor of a computer system, the set of input applications to identify a plurality of custom APIs, via one or more abstract syntax trees (ASTs),wherein representative code of the set of input applications is stored in the one or more ASTs;

generating, by the processor of the computer system, a respective taint specification for each identified custom API, each respective taint specification relating one or more sources of data to one or more data sinks;

generating, by the processor of the computer system, one or more taint flows based on the each respective taint specification, the one or more taint flows being a data path and associated data values between a source of data and a data sink, via data recorded from instrumenting the set of input applications based on the each respective taint specification;

matching, by the processor of the computer system, one or more features and associated feature values from the one or more taint flows to a set of feature templates, via a representative code of each application of the set of input applications,wherein the representative code is searched to find one or more occurrences of each identified custom API;

correlating, by the processor of the computer system, the matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs to identify a set of privacy relevant features;

clustering, by the processor of the computer system, the custom APIs from the set of input applications into separate groups based on similarity between the matched one or more features and associated feature values of each identified custom API,wherein the clustering is unsupervised;

detecting, by the processor of the computer system, a candidate API;

extracting, by the processor of the computer system, one or more features from the candidate API;

comparing, by the processor of the computer system, the one or more features extracted from the candidate API to the set of privacy relevant features;

assigning, by the processor of the computer system, a label to the candidate API indicating privacy relevance of the candidate API; and

outputting an indication of the privacy relevancy of the candidate API via a user output device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of classifying privacy relevance of an application programming interface (API) comprises analyzing a set of input applications to identify a plurality of custom APIs and generating a respective taint specification for each identified custom API. The method further comprises generating taint flows based on each taint specification and matching features and associated feature values from the taint flows to a set of feature templates. The method also comprises correlating the matched features and associated feature values with respective privacy relevance of the plurality of custom APIs to identify a set of privacy relevant features. The method further comprises detecting a candidate API, extracting features from the candidate API and comparing the extracted features to the set of privacy relevant features. Based on the comparison, a label is assigned to the candidate API indicating privacy relevance of the candidate API.

Citations

19 Claims

1. A computer-implemented method of classifying privacy relevance of an application programming interface (API), the computer implemented method comprising:
- in response to receiving a set of input applications, analyzing, by a processor of a computer system, the set of input applications to identify a plurality of custom APIs, via one or more abstract syntax trees (ASTs),wherein representative code of the set of input applications is stored in the one or more ASTs;
  
  generating, by the processor of the computer system, a respective taint specification for each identified custom API, each respective taint specification relating one or more sources of data to one or more data sinks;
  
  generating, by the processor of the computer system, one or more taint flows based on the each respective taint specification, the one or more taint flows being a data path and associated data values between a source of data and a data sink, via data recorded from instrumenting the set of input applications based on the each respective taint specification;
  
  matching, by the processor of the computer system, one or more features and associated feature values from the one or more taint flows to a set of feature templates, via a representative code of each application of the set of input applications,wherein the representative code is searched to find one or more occurrences of each identified custom API;
  
  correlating, by the processor of the computer system, the matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs to identify a set of privacy relevant features;
  
  clustering, by the processor of the computer system, the custom APIs from the set of input applications into separate groups based on similarity between the matched one or more features and associated feature values of each identified custom API,wherein the clustering is unsupervised;
  
  detecting, by the processor of the computer system, a candidate API;
  
  extracting, by the processor of the computer system, one or more features from the candidate API;
  
  comparing, by the processor of the computer system, the one or more features extracted from the candidate API to the set of privacy relevant features;
  
  assigning, by the processor of the computer system, a label to the candidate API indicating privacy relevance of the candidate API; and
  
  outputting an indication of the privacy relevancy of the candidate API via a user output device.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein analyzing the set of input applications to identify a plurality of custom APIs comprises searching respective abstract syntax trees, each representative of one of the set of input applications, to identify the plurality of custom APIs.
  - 3. The method of claim 1, wherein the set of feature templates includes a plurality of keywords.
  - 4. The method of claim 1, wherein the set of feature templates includes a plurality of channel properties.
  - 5. The method of claim 1, wherein the set of feature templates includes a plurality of proximate transformations.
  - 6. The method of claim 1, wherein correlating the matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs comprises:
    - grouping the matched one or more features based on similarity of features and associated feature values; and
      
      annotating each group as privacy relevant or privacy irrelevant.
  - 7. The method of claim 1, wherein correlating the matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs comprises:
    - annotating each instance of each identified custom API as privacy relevant or privacy irrelevant; and
      
      identifying features and associated feature values of privacy relevant instances of the plurality of custom APIs as the set of privacy relevant features.

8. A program product comprising a non-transitory processor-readable storage medium having program instructions embodied thereon, wherein the program instructions are configured, when executed by at least one programmable processor, to cause the at least one programmable processor to:
- in response to receiving a set of input applications analyze, by a processor of a computer system, the set of input applications to identify a plurality of custom application programming interfaces (APIs), via one or more abstract syntax trees (ASTs),wherein representative code of the set of input applications is stored in the one or more ASTs;
  
  generate, by the processor of the computer system, a respective taint specification for each identified custom API, each respective taint specification relating one or more sources of data to one or more data sinks;
  
  generate, by the processor of the computer system, one or more taint flows based on the each respective taint specification, the one or more taint flows being a data path and associated data values between a source of data and a data sink, via data recorded from instrumenting the set of input applications based on the each respective taint specification;
  
  match, by the processor of the computer system, one or more features and associated feature values from the one or more taint flows to a set of feature templates, via a representative code of each application of the set of input applications,wherein the representative code is searched to find one or more occurrences of each identified custom API;
  
  correlate, by the processor of the computer system, the matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs to identify a set of privacy relevant features;
  
  cluster, by the processor of the computer system, the plurality of custom APIs from the set of input applications into separate groups based on similarity between the matched one or more features and associated feature values of each identified custom API,wherein the clustering is unsupervised;
  
  detect, by the processor of the computer system, a candidate API;
  
  extract, by the processor of the computer system, one or more features from the candidate API;
  
  compare the one or more features extracted from the candidate API to the set of privacy relevant features;
  
  assign a label to the candidate API indicating privacy relevance of the candidate API; and
  
  output an indication of the privacy relevancy of the candidate API via a user output device.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The program product of claim 8, wherein the program instructions are further configured to cause the at least one programmable processor to analyze the set of input applications by searching respective abstract syntax trees, each representative of one of the set of input applications, to identify the plurality of custom APIs.
  - 10. The program product of claim 8, wherein the set of feature templates includes a plurality of keywords.
  - 11. The program product of claim 8, wherein the set of feature templates includes at least one of a plurality of channel properties and a plurality of data transformations.
  - 12. The program product of claim 8, wherein the program instructions are further configured to cause the at least one programmable processor to correlate the matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs by:
    - grouping the matched one or more features based on similarity of features and associated feature values; and
      
      annotating each group as privacy relevant or privacy irrelevant.
  - 13. The program product of claim 8, wherein the program instructions are further configured to cause the at least one programmable processor to correlate the matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs by:
    - annotating each instance of each identified custom API as privacy relevant or privacy irrelevant; and
      
      identifying features and associated feature values of privacy relevant instances of the plurality of custom APIs as the set of privacy relevant features.

14. A computer system comprising:
- a memory;
  
  a network interface; and
  
  a processor communicatively coupled to the memory and the network interface,wherein the processor is configured to obtain a set of input applications via the network interface and to analyze the set of input applications to identify a plurality of custom application programming interface (APIs) in the set of input applications, via one or more abstract syntax trees (ASTs),wherein representative code of the set of input applications is stored in the one or more ASTs,wherein the processor is further configured to determine a set of privacy relevant features from the plurality of identified custom APIs and to store the set of privacy relevant features in the memory,wherein the representative code is searched to find one or more occurrences of each identified custom API,wherein the processor is further configured to cluster the custom APIs from the set of input applications into separate groups based on similarity between respective identified feature values of each identified custom API,wherein the clustering is unsupervised,wherein the processor is further configured to detect execution of a candidate API subsequent to storing the set of privacy relevant features in the memory,wherein the processor is further configured to extract one or more features from the candidate API,wherein the processor is further configured to compare the extracted one or more features to the set of privacy relevant features in order to determine the privacy relevance of the candidate API,wherein the processor is further configured to assign a label to the candidate API indicating privacy relevance of the candidate API,wherein the processor is configured to provide an indication of the privacy relevancy of the candidate API via the user output device,wherein the processor is configured to determine the set of privacy relevant features by;
  
  generating, by the processor of the computer system, a respective taint specification for each identified custom API, each respective taint specification relating one or more sources of data to one or more data sinks;
  
  generating, by the processor of the computer system, one or more taint flows based on each respective taint specification, the one or more taint flows being a data path and associated data values between a source of data and a data sink, via data recorded from instrumenting the set of input applications based on the each respective taint specification;
  
  matching, by the processor of the computer system, one or more features and associated feature values from the one or more taint flows to a set of feature templates, via a representative code of each application of the set of input applications;
  
  correlating, by the processor of the computer system, the matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs to identify the set of privacy relevant features and associated feature values.
- View Dependent Claims (15, 16, 17, 18, 19)
- - 15. The computer system of claim 14, wherein the set of feature templates includes at least one of a plurality of keywords, a plurality of channel properties, and a plurality of data transformations.
  - 16. The computer system of claim 14, wherein the processor is further configured to correlate the one or more matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs by grouping the matched one or more features based on similarity of features and associated feature values and annotating each group as privacy relevant or privacy irrelevant.
  - 17. The computer system of claim 14, wherein the processor is further configured to correlate the one or more matched one or more features and associated feature values with respective privacy relevance of the plurality of custom APIs by annotating each instance of each identified custom API as privacy relevant or privacy irrelevant and identifying features and associated feature values of privacy relevant instances of the plurality of custom APIs as the set of privacy relevant features.
  - 18. The computer system of claim 14,wherein the computer system further comprises a user output device, andwherein the processor is further configured to output an indication of the privacy relevance of the candidate API via the user output device.
  - 19. The computer system of claim 14, wherein the processor is further configured to analyze the set of input applications by searching respective abstract syntax trees, each representative of one of the set of input applications, to identify the plurality of custom APIs.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Ionescu, Paul, Onut, Iosif V., Tripp, Omer
Primary Examiner(s)
SCHMIDT, KARI L

Application Number

US14/887,460
Publication Number

US 20170109541A1
Time in Patent Office

903 Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/2246   Trees, e.g. B+trees

G06F 16/285   Clustering or classification

G06F 16/9535   Search customisation based ...

G06F 21/56   Computer malware detection ...

G06F 21/57   Certifying or maintaining t...

G06F 21/6245   Protecting personal data, e...

H04L 63/0227   Filtering policies mail mes...

H04L 63/105   Multiple levels of security

H04L 63/20   for managing network securi...

H04W 12/02   Protecting privacy or anony...

Identifying and tracking sensitive data

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Identifying and tracking sensitive data

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links