Method and system for anonymizing data during export
First Claim
Patent Images
1. A computer-implemented method of anonymizing data of a database, the database including a plurality of data records, with each one of the plurality of data records including a plurality of content elements, each one of the plurality of data records adhering to a first defined structural relationship based on the plurality of content elements, the method comprising:
- anonymizing, in connection with at least one processor, at least one of the plurality of content elements for each one of the plurality of data records to produce at least one corresponding anonymized content element; and
exporting, in connection with the anonymizing, the plurality of data records,wherein each one of the plurality of exported data records includes the at least one corresponding anonymized content element instead of the at least one of the plurality of content elements,wherein each one of the exported plurality of data records adheres to a second defined structural relationship, andpreserving, in connection with the anonymizing, the structural relationship between the content elements for each one of the plurality of data records through the anonymization of at least one of the plurality of content elements for each one of the plurality of data records such that the first defined structural relationship of the plurality of content elements prior to anoymization is equal to the second defined structural relationship,generating a random encryption key; and
deleting the random encryption key in connection with completion of anonymization of the at least one of the plurality of content elements,wherein the at least one corresponding anonymized content element is anonymized with the random encryption key.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention refers to a computer-implemented method of anonymizing data of a database (2), wherein the method comprises the following steps:
- a. exporting at least one data record (10) from the database (2), wherein the data record (10) has a structure and comprises content (100); and
- b. anonymizing at least part of the content (100) to produce at least one anonymized data record (3);
- c. wherein the anonymized data record (3) has the same structure than the data record (10) read from the database (2).
23 Citations
19 Claims
-
1. A computer-implemented method of anonymizing data of a database, the database including a plurality of data records, with each one of the plurality of data records including a plurality of content elements, each one of the plurality of data records adhering to a first defined structural relationship based on the plurality of content elements, the method comprising:
-
anonymizing, in connection with at least one processor, at least one of the plurality of content elements for each one of the plurality of data records to produce at least one corresponding anonymized content element; and exporting, in connection with the anonymizing, the plurality of data records, wherein each one of the plurality of exported data records includes the at least one corresponding anonymized content element instead of the at least one of the plurality of content elements, wherein each one of the exported plurality of data records adheres to a second defined structural relationship, and preserving, in connection with the anonymizing, the structural relationship between the content elements for each one of the plurality of data records through the anonymization of at least one of the plurality of content elements for each one of the plurality of data records such that the first defined structural relationship of the plurality of content elements prior to anoymization is equal to the second defined structural relationship, generating a random encryption key; and deleting the random encryption key in connection with completion of anonymization of the at least one of the plurality of content elements, wherein the at least one corresponding anonymized content element is anonymized with the random encryption key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system for anonymizing data of a database, the database including a plurality of data records, with each one of the plurality of data records includes a content element, the system comprising:
-
processing resources including at least one processor and a memory, the at least one processor being configured to control a plurality of computer-related components including; an exporter component configured to export the plurality of data records at least one data record from the database along with the included content element for each one of the plurality of data record; an anonymizer component configured to anonymize the content element for each one of the plurality of data records to produce a corresponding anonymized content element such that the content element for each one of the plurality of data records and the corresponding anonymized content element for each one of the data records is consistent in size and/or an amount of content; and an encryption key component configured to generate a random encryption key and delete the random encryption key in connection with completion of the anonymization the content element for each one of the plurality of data records, wherein the anonymizer component is further configured to anonymize the content elemrnt for each one of the plurality of data records in accordance with the generated random encryption key. - View Dependent Claims (14, 15, 16)
-
-
17. A non-transitory computer-readable storage medium tangibly storing instructions for use with a database system, the database system including a with a plurality of data records, with each one of the plurality of data records including a plurality of content elements, each one of the plurality of data records adhering to a first defined structural relationship based on the plurality of content elements, the stored instructions comprising instructions that, when executed by at least one processor of a computer system, are configured to:
-
anonymize at least one of the plurality of content elements for each one of the plurality of data records to produce at least one corresponding part of the content to produce at least one anonymized content element data record; and export, in connection with the anonymizing, the plurality of data records, wherein each one of the plurality of exported data records includes the at least one corresponding anonymized content element instead of the at least one of the plurality of content elements, wherein each one of the exported plurality of data records adheres to a second defined structural relationship, and preserve, in connection with the anonymizing, the structural relationship between the content elements for each one of the plurality of data records through the anonymization of at least one of the plurality of content elements for each one of the plurality of data records such that the first defined structural relationship of the plurality of content elements prior to anonymization is equal to the second defined structural relationship, wherein the anonymizing is performed using a deterministic function such that successive anonymization of the same content will result in the same anonymized content. - View Dependent Claims (18, 19)
-
Specification