A Context Approach to Improve the Data Anonymization Process

2022 International Conference on Engineering and Emerging Technologies (ICEET) Pub Date : 2022-10-27 DOI:10.1109/ICEET56468.2022.10007410

H. Tahir, P. Brézillon

{"title":"A Context Approach to Improve the Data Anonymization Process","authors":"H. Tahir, P. Brézillon","doi":"10.1109/ICEET56468.2022.10007410","DOIUrl":null,"url":null,"abstract":"Today, the protection of personal data is an important step in the development of an information system. This awakening of consciousness is happening as businesses grapple with growing volumes of data. No one wants to publicly expose their users’ data. The objective is not only to avoid sanctions but also bad media coverage and image damage when a company is the victim of a data breach. Personal and sensitive data should be confined to production environments and should not be copied to test environments, which poses a risk to its integrity. They should not be accessible in development and test databases to comply with GDPR (General Data Protection Regulation) regulations and to protect company data from potential breaches. Anonymization is a recommended technique for replacing personal data with non-identifying data for use in a test environment. This paper presents a socio-technical approach to data anonymization using the Contextual Graphs formalism which can help to easily represent user practices and gradually add them to an experience database. This can be used to improve the anonymization process in non-production environments.","PeriodicalId":241355,"journal":{"name":"2022 International Conference on Engineering and Emerging Technologies (ICEET)","volume":"41 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-10-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 International Conference on Engineering and Emerging Technologies (ICEET)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICEET56468.2022.10007410","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Today, the protection of personal data is an important step in the development of an information system. This awakening of consciousness is happening as businesses grapple with growing volumes of data. No one wants to publicly expose their users’ data. The objective is not only to avoid sanctions but also bad media coverage and image damage when a company is the victim of a data breach. Personal and sensitive data should be confined to production environments and should not be copied to test environments, which poses a risk to its integrity. They should not be accessible in development and test databases to comply with GDPR (General Data Protection Regulation) regulations and to protect company data from potential breaches. Anonymization is a recommended technique for replacing personal data with non-identifying data for use in a test environment. This paper presents a socio-technical approach to data anonymization using the Contextual Graphs formalism which can help to easily represent user practices and gradually add them to an experience database. This can be used to improve the anonymization process in non-production environments.

查看原文本刊更多论文

改进数据匿名化过程的上下文方法

如今，保护个人资料是发展资讯系统的重要步骤。这种意识的觉醒是在企业应对日益增长的数据量之际发生的。没有人想公开暴露他们的用户数据。这样做的目的不仅是为了避免受到制裁，而且当一家公司成为数据泄露的受害者时，还可以避免媒体的负面报道和形象受损。个人和敏感数据应限于生产环境，不应复制到测试环境，这对其完整性构成风险。在开发和测试数据库中不应该访问这些数据，以遵守GDPR(通用数据保护条例)法规，并保护公司数据免受潜在的泄露。匿名化是一种推荐的技术，用于在测试环境中用非识别数据替换个人数据。本文提出了一种使用上下文图形式化的数据匿名化的社会技术方法，该方法可以帮助轻松地表示用户实践并逐渐将其添加到经验数据库中。这可以用于改进非生产环境中的匿名化过程。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 International Conference on Engineering and Emerging Technologies (ICEET)

自引率

0.00%

发文量