CN103067918A - Method, device and system of privacy data anonymization in communication network - Google Patents
Method, device and system of privacy data anonymization in communication network Download PDFInfo
- Publication number
- CN103067918A CN103067918A CN2012105685222A CN201210568522A CN103067918A CN 103067918 A CN103067918 A CN 103067918A CN 2012105685222 A CN2012105685222 A CN 2012105685222A CN 201210568522 A CN201210568522 A CN 201210568522A CN 103067918 A CN103067918 A CN 103067918A
- Authority
- CN
- China
- Prior art keywords
- anonymization
- data
- private data
- raw information
- private
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
Abstract
Provided is a method, a device and a system of privacy data anonymization in a communication network. The method of the privacy data anonymization in the communication network comprises the following steps of receiving a directive of opening an anonymization function sent by an anonymization control center, recognizing privacy data in raw information generated by operating business, and carrying out anonymization process of the privacy data in the raw information generated by operating business. When the method, the device and the system of the privacy data anonymization in the communication network are in use, sensitive data in the raw information is processed in an anonymization mode, equipment maintenance businessmen are incapable of restoring the sensitive data form data which are processed in the anonymization mode, and leakage of the sensitive data is avoided.
Description
Technical field
The present invention relates to the communications field, relate in particular to private data anonymization method, Apparatus and system in a kind of communication network.
Background technology
Secret protection has become the basic problem that individual or mechanism are concerned about, the appearance of various Data Mining Tools so that the privacy leakage problem become increasingly conspicuous.Usually the mode distributing data that removes identifier can't stop privacy to be revealed, and the assailant still can obtain by linked operation user's private data with very high probability.Anonymization is to realize one of major technique of secret protection under the present data issue environment.
In the present communication network, exist a large amount of personal information, such as user's phone number, IMSI (Intemational Mobile SubscriberIdentification, international mobile subscriber identity are called for short IMSI) number, the IP address of subscriber equipment and user's internet records etc.The equipment supplier is when communicating network operation, such as fault location etc., generally need the information of crawl signaling aspect to be used for the reason that diagnosis problem occurs, but these information all can comprise personal information usually, the legal provisions that some is national, the personal information data belong to private data, forbid carrying away from operator's internal network, will cause like this utilizing these information to carry out location and the diagnosis of problem.
Summary of the invention
The embodiment of the invention provides private data anonymization method, Apparatus and system in a kind of communication network, forbids being carried away the deficiency that therefore can't safeguard communication system in order to solve the raw information that comprises sensitive data in the prior art.
In order to solve the problems of the technologies described above, embodiment of the invention first aspect provides private data anonymization method in a kind of communication network, comprising:
Receive the indication of the unlatching anonymization function of anonymization control centre transmission;
Private data in the professional raw information that produces of identification operation;
According to the indication of described unlatching anonymization function, the private data that moves in the professional raw information that produces is carried out the anonymization processing.
In the possible implementation of the first, described private data in the described raw information is carried out further comprising after anonymization processes:
Private data after anonymization processed, and the non-private data in the described raw information report to described anonymization control centre.
In conjunction with the possible implementation of first aspect the first, in the possible implementation of the second, describedly private data in the described raw information is carried out anonymization process, comprising:
Convert described raw information to the tree data, the leaf node data of described tree data comprise private data and non-private data;
Using the anonymization function to carry out anonymization to the private data in the described leaf node processes.In conjunction with the possible implementation of first aspect the second, in the third possible implementation, use different anonymization functions to carry out anonymization to the private data in the different leaf nodes and process, described different anonymization functions are different Hash mapping.
In conjunction with first aspect, in the 4th kind of possible implementation, the private data in the professional raw information that produces of described identification operation comprises:
The data type of the private data that comprises in the indication according to the anonymization function, identifying the data of mating with this data type in the described initial data is private data; Or
The data type of the pre-configured private data of network element side apparatus, identifying the data of mating with this data type in the described initial data is private data.
Second aspect present invention provides the device of private data anonymity in a kind of communication network, comprising:
The indication receiver module is used for the indication of the unlatching anonymization function of reception anonymization control centre transmission;
Identification module is used for the private data that identification moves the professional raw information that produces;
Anonymous processing module is used for the indication according to described unlatching anonymization function, and the private data that described identification module is identified carries out the anonymization processing.
In the possible implementation of the first, also comprise:
The information reporting module, the private data after being used for anonymization processed, and the non-private data in the described raw information report to described anonymization control centre.
In conjunction with the possible implementation of the first of second aspect and second aspect, in the possible implementation of the second, described anonymous processing module comprises:
Date Conversion Unit converts described raw information to the tree data, and the leaf node data of described tree data comprise private data and non-private data;
Anonymous processing unit is used for using the anonymization function to carry out the anonymization processing to the private data of described leaf node.
In conjunction with the possible implementation of the second of second aspect, in the third possible implementation, also comprise:
Described anonymous processing unit comprises:
The Hash mapping unit is used for using different anonymization functions to carry out the anonymization processing to the private data of different leaf nodes, and described different anonymization functions are different Hash mapping.
In conjunction with second aspect, in the 4th kind of possible implementation, described identification module,
The data type that is used for the private data that the indication of the anonymization function that receives according to described indication receiver module comprises, the data that identify in the described initial data with this data type coupling are private data; Or
The data type that is used for pre-configured private data, identifying the data of mating with this data type in the described initial data is private data.
Third aspect present invention provides a kind of communication system, comprises anonymization control centre and second aspect any device to the 4th kind of possible implementation of second aspect.
Implement the embodiment of the invention, have following beneficial effect:
Sensitive data in the raw information is carried out anonymization to be processed; the plant maintenance merchant can't restore sensitive data the data after anonymization; avoided the leakage of sensitive data; therefore the equipment supplier can carry out operator's internal network to raw information; satisfy the legal requiremnt of operator's protection individual privacy, do not affect the maintenance efficiency of communication equipment simultaneously.
Description of drawings
In order to be illustrated more clearly in the embodiment of the invention or technical scheme of the prior art, the below will do to introduce simply to the accompanying drawing of required use in embodiment or the description of the Prior Art, apparently, accompanying drawing in the following describes only is some embodiments of the present invention, for those of ordinary skills, under the prerequisite of not paying creative work, can also obtain according to these accompanying drawings other accompanying drawing.
Fig. 1 is the schematic flow sheet of private data anonymization method in a kind of communication network of the present invention;
Fig. 2 is another schematic flow sheet of private data anonymization method in a kind of communication network of the present invention;
Fig. 3 is the schematic diagram that anonymization is processed among Fig. 2;
Fig. 4 is the structural representation of private data anonymization device in a kind of communication network of the present invention;
Fig. 5 is another structural representation of private data anonymization device in a kind of communication network of the present invention;
Fig. 6 is the structural representation of anonymous processing module among Fig. 5;
Fig. 7 is the structural representation of anonymous processing unit among Fig. 6;
Fig. 8 is the structural representation of a kind of communication system of the present invention;
Fig. 9 is the another structural representation of private data anonymization device in a kind of communication network of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the invention, the technical scheme in the embodiment of the invention is clearly and completely described, obviously, described embodiment only is the present invention's part embodiment, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills belong to the scope of protection of the invention not making the every other embodiment that obtains under the creative work prerequisite.
Referring to Fig. 1, the schematic flow sheet for private data anonymization method in a kind of communication network of the present invention comprises:
Concrete, the equipment of network element side receives the indication of the unlatching anonymization function of the anonymization control centre transmission that is deployed in Element management system.Here, the equipment of network element side is and the equipment of Element management system difference, can be mobile switching centre, attaching position register, call conversation control function entity etc.; Element management system can be network management center etc., and the embodiment of the invention is not construed as limiting at this.
Private data in the raw information that step 102, identification services generate;
Recognition methods can be the data type of the private data that comprises in the indication according to the anonymization function, and the data that identify in the described initial data with this data type coupling are private data.Alternatively, this step of private data in the professional raw information that produces of identification operation can also be before step 101, can raw information and this data type be mated in the data type of the pre-configured private data of network element side apparatus, obtain private data.The embodiment of the invention is not restricted concrete recognition methods.
Concrete, described raw information comprises private data and non-private data, and described private data comprises IMSI, telephone number, and at least a in user's internet records also can be other private datas.The network element side apparatus is pre-stored the anonymization function library, the network element side apparatus is when the indication of the unlatching anonymization function that receives the transmission of anonymization control centre, and the anonymization function that loads in the described anonymization function library carries out the anonymization processing to moving the professional data that produce.Anonymization is processed and to be referred to adopt security algorithm that the sensitive data in the raw information is encrypted, and such as hash function, can be different Hash mapping algorithms, also can be replacement function, as to the part position of telephone number asterisk in addition.The publisher can not cause the leakage of sensitive data during these raw informations in issue, can reduce again under given conditions sensitive data in the raw information simultaneously.Herein, anonymization CWinInetConnection type is not restricted.In addition, operation in the embodiment of the invention is professional, can be converse in the communication network, various signalings that online, transfer of data etc. produce.When network failure occurring, need to extract professional these data that produce of operation and carry out fault location.
Sensitive data in the raw information, namely private data is made anonymization by the network element side apparatus and is processed, and the information after the anonymization externally can be issued together with the non-privacy information in the described raw information, needn't worry that sensitive data is revealed.Non-privacy information in information after the above-mentioned anonymization and the raw information can be saved to simultaneously in the local specified file, be used for realizing the local location of network element side apparatus.
Alternatively, carrying out anonymization for a plurality of network element side apparatus processes, each network element side apparatus can be carried out the data that obtain after the anonymization to private data, together with the non-privacy information in the raw information, report anonymization control centre, control centre is stored as file by anonymization, is used for realizing the whole network fault location.
Implement embodiments of the invention; sensitive data in the raw information is carried out anonymization to be processed; the plant maintenance merchant can't restore sensitive data the data after anonymization; avoided the leakage of sensitive data; therefore the equipment supplier can carry out operator's internal network to the non-privacy information in the information after the above-mentioned anonymization and the raw information; satisfy the legal requiremnt of operator's protection individual privacy, do not affect the maintenance efficiency of communication equipment simultaneously.
Referring to Fig. 2 and Fig. 3, another schematic flow sheet for private data anonymization method in a kind of communication network of the present invention comprises:
Concrete, the network element side apparatus receives the indication of the unlatching anonymization function of the anonymization control centre transmission that is deployed in Element management system, described indication is used for the control network element side apparatus and opens the anonymization function, be understandable that, when the network element side apparatus receive that anonymization control centre sends close the instruction of anonymization function the time, the network element side apparatus no longer carries out anonymization and processes moving the professional raw information that produces.Here, the equipment of network element side is and the equipment of Element management system difference, can be mobile switching centre, attaching position register, call conversation control function entity etc.; Element management system can be network management center etc., and the embodiment of the invention is not construed as limiting at this.
Private data in step 202, the professional raw information that produces of identification operation;
Concrete, the method for identification can be the data type of the private data that comprises in the indication of the anonymization function that receives according to described indication receiver module, and the data that identify in the described initial data with this data type coupling are private data; Or the data type of pre-configured private data, identifying the data of mating with this data type in the described initial data is private data.The embodiment of the invention is not restricted concrete recognition methods.
Concrete, the data type of the professional raw information that generates of network element side apparatus operation is generally unstructured data, TLV (Type-Length-Value for example, label-length-value, abbreviation TLV) message of form because the message of this form is non-structured data, is difficult for it is processed and analyzes, therefore need to convert structurized data to, process in order to carry out follow-up anonymization.
As shown in Figure 3, schematic diagram for the tree data after the raw information conversion of network element side apparatus operation also generation, in these tree data, each leaf node represents the every data in the raw information, such as cell-phone number, name, ownership place, IMSI number, IP address and user's internet records etc., comprise in these leaf nodes not only comprising private data but also comprise non-private data, represent private data such as the leaf node of black among the figure, the leaf node of white represents non-private data.After raw information is converted to the tree data, is convenient to computer the tree data are processed, also be easy to inquire about simultaneously the private data that needs anonymization to process in the raw information, improved the efficient of operation.
Step 204 is used different anonymization functions to carry out anonymization to the private data in the different leaf nodes and is processed, and described anonymization function comprises Hash mapping.
Concrete, the collocation method of anonymization function can be to specify the anonymization function by anonymization control centre, will comprise that directly the indication of unlatching anonymization function of the anonymization function of described appointment is sent to the network element side apparatus; Also can be in advance in network element device side configuration anonymization function library, distribute a unique function identification for simultaneously each anonymization function, anonymization control centre sends the instruction of the unlatching anonymization function that comprises described function identification, and the network element side apparatus receives anonymization function corresponding to this function identification that calls in the local anonymization function library.Different anonymization functions can be different Hash mapping, can be the functions of other types also, and the present invention is not restricted.
As shown in Figure 3, private data is the leaf node of black in the raw information, and non-private data is the leaf node of white, and for example cell-phone number, name, ownership place, IMSI number and user's internet records belong to private data.The quantity of the leaf node of private data is 5,5 nodes anonymization function 1, anonymization function 2, anonymization function 3, anonymization function 4 and anonymization function 5 have been configured respectively, respectively to the different different anonymization functions of private data configuration, so that loading the anonymization function, the network element side apparatus carries out the difficulty increasing that the data after anonymization is processed are cracked, the fail safe that has improved data.The load mode of anonymization function can adopt the method for static compiling and dynamic load, and prior art is no longer described to disclose herein.
Concrete, in the common communication system, an Element management system is managed several network element side apparatus, adopts SOAP (Simple Object Access Protocol, Simple Object Access Protocol are called for short SOAP) interface communication between the two.The network element side apparatus is by SFTP (Secure File Transfer Protocol, the secure file transportation protocol, abbreviation SFTP) private data and the non-private data in the described raw information after interface or FPTS (File Transfer Protocol over Secure socketslayer) interface are processed anonymization are uploaded to the anonymization control centre that is deployed in Element management system, to realize location and the diagnosis to the whole network problem.
Implement embodiments of the invention; sensitive data in the raw information is carried out anonymization to be processed; the plant maintenance merchant can't restore sensitive data the data after anonymization; avoided the leakage of sensitive data; therefore the equipment supplier can carry out the information after the above-mentioned processing operator's internal network; satisfy the legal requiremnt of operator's protection individual privacy, do not affect the maintenance efficiency of communication equipment simultaneously.
Referring to Fig. 4, for private data anonymization device in a kind of communication network of the present invention, it is characterized in that, comprising:
Concrete, indication receiver module 11 receives the indication of the unlatching anonymization function of the anonymization control centre transmission that is deployed in Element management system, comprises anonymization CWinInetConnection type and the data type that needs anonymization in this indication.
Concrete, described raw information comprises private data and non-private data, and described private data comprises IMSI, telephone number, and at least a in user's internet records also can be other private datas.The network element side apparatus is pre-stored the anonymization function library, indication receiver module 11 is when the indication of the unlatching anonymization function that receives the transmission of anonymization control centre, and the anonymization function in the described anonymization function library of anonymous processing module 13 loadings carries out anonymization to the data of moving professional generation to be processed.Anonymization is processed and to be referred to adopt security algorithm that the sensitive data in the raw information is encrypted, and the publisher can not cause the leakage of sensitive data when these raw informations of issue, can reduce again under given conditions sensitive data in the raw information simultaneously.Herein, anonymization CWinInetConnection type is not restricted.
Sensitive data in the raw information, namely private data is made anonymization by the network element side apparatus and is processed, and described raw information externally can be issued, and needn't worry that sensitive data is revealed.Simultaneously described raw information is saved in the local specified file, in order to utilize described raw information to carry out the maintenance works such as fault location when carrying out attended operation.
Further, referring to Fig. 5-Fig. 7, be the another kind of structural representation of private data anonymization device in a kind of communication network of the present invention, except indication receiver module 11, identification module 12 and anonymous processing module 13, also comprise:
Concrete, in the common communication system, an Element management system is managed several network element side apparatus, adopts SOAP (Simple Object Access Protocol, Simple Object Access Protocol are called for short SOAP) interface communication between the two.Private data and the non-private data in the described raw information after information reporting module 14 is processed anonymization by SFTP interface or FPTS interface are uploaded to the anonymization control centre that is deployed in Element management system, to realize location and the diagnosis to the whole network problem.
Wherein, described anonymous processing module 13 comprises:
Concrete, the data type of the professional raw information that generates of network element side apparatus operation is generally unstructured data, TLV (Type-Length-Value for example, label-length-value, abbreviation TLV) message of form because the message of this form is non-structured data, is difficult for it is processed and analyzes, therefore Date Conversion Unit 131 need to convert non-structured raw information to structurized data, processes in order to carry out follow-up anonymization.
Concrete, anonymous processing unit 132 uses the anonymization function that the private data in the leaf node is carried out anonymization and processes, and different private datas can configure different anonymization functions, such as different Hash mapping, can configure identical anonymization function, the present invention is not restricted yet.
Further, anonymization processing unit 132 comprises:
Concrete, such as the structural data example of Fig. 3, private data is the leaf node of black in the raw information, and non-private data be white leaf node, and for example cell-phone number, name, ownership place, IMSI number and user's internet records belong to private data.The quantity of the leaf node of private data is 5,5 nodes anonymization function 1, anonymization function 2, anonymization function 3, anonymization function 4 and anonymization function 5 have been configured respectively, respectively to the different different anonymization functions of private data configuration, Hash mapping unit 1321 loads the anonymization function and carries out the difficulty increasing that the data after anonymization is processed are cracked, the fail safe that has improved data.The load mode of anonymization function can adopt the method for static compiling and dynamic load, and prior art is no longer described to disclose herein.
Further, identification module 12 specifically is used for,
The data type of the private data that comprises in the indication of the anonymization function that receives according to described indication receiver module, the data that identify in the described initial data with this data type coupling are private data; Or
The data type of pre-configured private data, identifying the data of mating with this data type in the described initial data is private data.
Implement embodiments of the invention; sensitive data in the raw information is carried out anonymization to be processed; the plant maintenance merchant can't restore sensitive data the data after anonymization; avoided the leakage of sensitive data; therefore the equipment supplier can carry out the information after the above-mentioned processing operator's internal network; satisfy the legal requiremnt of operator's protection individual privacy, do not affect the maintenance efficiency of communication equipment simultaneously.
Referring to Fig. 8, structural representation for a kind of communication system of the present invention, comprise anonymization control centre 2 and device 1a-1c, wherein, anonymization control centre is deployed in the Element management system side, device is deployed in the network element device side, and device is private data anonymization device in the communication network in above-described embodiment, and the quantity of this device is not restricted.Take the course of work between anonymization control centre 2 and the device 1a as example, other devices are consistent with the reciprocal process of anonymization control centre.
Anonymization control centre 2 sends an indication of opening the anonymization function to installing 1a,, when device 1a receives the indication of described unlatching anonymization function, the private data that comprises in the professional raw information that produces of network element side apparatus operation is carried out anonymization process.After anonymization is finished dealing with, private data and the non-private data in the described raw information after device 1a processes anonymization by SFTP interface or FPTS interface are uploaded to the anonymization control centre that is deployed in Element management system, so that Element management system is realized location and diagnosis to the whole network problem.
Implement embodiments of the invention; sensitive data in the raw information is carried out anonymization to be processed; the plant maintenance merchant can't restore sensitive data the data after anonymization; avoided the leakage of sensitive data; therefore the equipment supplier can carry out operator's internal network to raw information; satisfy the legal requiremnt of operator's protection individual privacy, do not affect the maintenance efficiency of communication equipment simultaneously.
Referring to Fig. 9, another structural representation for the device of private data anonymity in a kind of communication network of the present invention, comprise processor 61, memory 62, input unit 63 and output device 64, the quantity of the processor 61 of device 1 can be one or more, and Fig. 9 is take a processor as example.In the some embodiments of the present invention, processor 61, memory 62, input unit 63 are connected with output device and can be connected by bus or other modes, are connected to example with bus among Fig. 9.
Wherein, storage batch processing code in the memory 62, and processor 61 is used for carrying out following the operation for the program code that calls memory 62 storages:
Receive the indication of the unlatching anonymization function of anonymization control centre transmission;
Private data in the professional raw information that produces of identification operation;
According to the indication of described unlatching anonymization function, the private data that moves in the professional raw information that produces is carried out the anonymization processing.
In some embodiments of the invention, processor 61 also be used for to be carried out: the private data after anonymization is processed, and the non-private data in the described raw information report to described anonymization control centre.
In some embodiments of the invention, processor 61 is concrete for carrying out:
Convert described raw information to the tree data, the leaf node data of described tree data comprise private data and non-private data;
Using the anonymization function to carry out anonymization to the private data in the described leaf node processes.
In some embodiments of the invention, processor 61 is concrete for carrying out:
Use different anonymization functions to carry out anonymization to the private data in the different leaf nodes and process, described different anonymization functions are different Hash mapping.
In some embodiments of the invention, processor 61 is concrete for carrying out:
The data type of the private data that comprises in the indication according to the anonymization function, identifying the data of mating with this data type in the described initial data is private data; Or
The data type of the pre-configured private data of network element side apparatus, identifying the data of mating with this data type in the described initial data is private data.
Implement embodiments of the invention; sensitive data in the raw information is carried out anonymization to be processed; the plant maintenance merchant can't restore sensitive data the data after anonymization; avoided the leakage of sensitive data; therefore the equipment supplier can carry out the information after the above-mentioned processing operator's internal network; satisfy the legal requiremnt of operator's protection individual privacy, do not affect the maintenance efficiency of communication equipment simultaneously.
One of ordinary skill in the art will appreciate that all or part of flow process that realizes in above-described embodiment method, to come the relevant hardware of instruction to finish by computer program, described program can be stored in the computer read/write memory medium, this program can comprise the flow process such as the embodiment of above-mentioned each side method when carrying out.Wherein, described storage medium can be magnetic disc, CD, read-only store-memory body (Read-Only Memory, ROM) or random store-memory body (Random Access Memory, RAM) etc.
Above disclosed only is a kind of preferred embodiment of the present invention, certainly can not limit with this interest field of the present invention, one of ordinary skill in the art will appreciate that all or part of flow process that realizes above-described embodiment, and according to the equivalent variations that claim of the present invention is done, still belong to the scope that invention is contained.
Claims (11)
1. private data anonymization method in the communication network is characterized in that, comprising:
Receive the indication of the unlatching anonymization function of anonymization control centre transmission;
Private data in the professional raw information that produces of identification operation;
According to the indication of described unlatching anonymization function, the private data that moves in the professional raw information that produces is carried out the anonymization processing.
2. the method for claim 1 is characterized in that, described private data in the described raw information is carried out further comprising after anonymization processes:
Private data after anonymization processed, and the non-private data in the described raw information report to described anonymization control centre.
3. method as claimed in claim 1 or 2 is characterized in that, describedly private data in the described raw information is carried out anonymization processes, and comprising:
Convert described raw information to the tree data, the leaf node data of described tree data comprise private data and non-private data;
Using the anonymization function to carry out anonymization to the private data in the described leaf node processes.
4. method as claimed in claim 3 is characterized in that, uses different anonymization functions to carry out anonymization to the private data in the different leaf nodes and processes, and described different anonymization functions are different Hash mapping.
5. the method for claim 1 is characterized in that, the private data in the professional raw information that produces of described identification operation comprises:
The data type of the private data that comprises in the indication according to the anonymization function, identifying the data of mating with this data type in the described initial data is private data; Or
The data type of the pre-configured private data of network element side apparatus, identifying the data of mating with this data type in the described initial data is private data.
6. the device of private data anonymity in the communication network is characterized in that, comprising:
The indication receiver module is used for the indication of the unlatching anonymization function of reception anonymization control centre transmission;
Identification module is used for the private data that identification moves the professional raw information that produces;
Anonymous processing module is used for the indication according to described unlatching anonymization function, and the private data that described identification module is identified carries out the anonymization processing.
7. device as claimed in claim 6 is characterized in that, also comprises:
The information reporting module, the private data after being used for anonymization processed, and the non-private data in the described raw information report to described anonymization control centre.
8. such as claim 6 or 7 described devices, it is characterized in that, described anonymous processing module comprises:
Date Conversion Unit converts described raw information to the tree data, and the leaf node data of described tree data comprise private data and non-private data;
Anonymous processing unit is used for using the anonymization function to carry out the anonymization processing to the private data of described leaf node.
9. device as claimed in claim 8 is characterized in that, described anonymous processing unit comprises:
The Hash mapping unit is used for using different anonymization functions to carry out the anonymization processing to the private data of different leaf nodes, and described different anonymization functions are different Hash mapping.
10. device as claimed in claim 6 is characterized in that, described identification module,
The data type that is used for the private data that the indication of the anonymization function that receives according to described indication receiver module comprises, the data that identify in the described initial data with this data type coupling are private data; Or
The data type that is used for pre-configured private data, identifying the data of mating with this data type in the described initial data is private data.
11. a communication system is characterized in that, comprises anonymization control centre and such as each described device of claim 6-10.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210568522.2A CN103067918B (en) | 2012-12-25 | 2012-12-25 | Method, device and system of privacy data anonymization in communication network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210568522.2A CN103067918B (en) | 2012-12-25 | 2012-12-25 | Method, device and system of privacy data anonymization in communication network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103067918A true CN103067918A (en) | 2013-04-24 |
| CN103067918B CN103067918B (en) | 2017-04-12 |
Family
ID=48110344
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210568522.2A Active CN103067918B (en) | 2012-12-25 | 2012-12-25 | Method, device and system of privacy data anonymization in communication network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103067918B (en) |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2014530392A (en) * | 2011-09-12 | 2014-11-17 | マイクロソフト コーポレーション | Triage dump generation method and computing device |
| CN104410532A (en) * | 2014-12-12 | 2015-03-11 | 携程计算机技术(上海)有限公司 | Server and log filtering method thereof |
| CN105553979A (en) * | 2015-12-15 | 2016-05-04 | 国网智能电网研究院 | Encryption publishing method for privacy information in smart power grid |
| CN106162624A (en) * | 2015-04-15 | 2016-11-23 | 宇龙计算机通信科技(深圳)有限公司 | The method of secret protection, device and mobile terminal in communication process |
| CN107111616A (en) * | 2014-09-26 | 2017-08-29 | 上海贝尔股份有限公司 | The secret protection of third party's data sharing |
| CN107357943A (en) * | 2016-05-10 | 2017-11-17 | 中国移动通信集团湖北有限公司 | Data obfuscation method and device |
| CN107547513A (en) * | 2017-07-14 | 2018-01-05 | 新华三信息安全技术有限公司 | Message processing method, device, the network equipment and storage medium |
| CN107995616A (en) * | 2016-10-27 | 2018-05-04 | 中国电信股份有限公司 | The processing method and device of user behavior data |
| CN108352103A (en) * | 2015-09-07 | 2018-07-31 | 诺基亚技术有限公司 | Secret protection monitors |
| CN108924091A (en) * | 2018-06-06 | 2018-11-30 | 深圳市血之缘医疗科技有限公司 | Method for authenticating user identity and Related product |
| CN113055930A (en) * | 2021-03-09 | 2021-06-29 | Oppo广东移动通信有限公司 | Data processing method, communication device, server, and storage medium |
| CN116149235A (en) * | 2023-04-03 | 2023-05-23 | 艾欧史密斯(中国)热水器有限公司 | Data processing method of household appliance system, controller and household appliance system |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070130070A1 (en) * | 2005-12-02 | 2007-06-07 | Credigy Technologies, Inc. | System and method for an anonymous exchange of private data |
| CN101091369A (en) * | 2004-12-22 | 2007-12-19 | 艾利森电话股份有限公司 | Means and method for control of personal data |
| CN101473625A (en) * | 2006-06-20 | 2009-07-01 | 阿尔卡特朗讯公司 | Secure domain information protection apparatus and methods |
| US20100040030A1 (en) * | 2006-10-06 | 2010-02-18 | Takahiro Kakumaru | Communication device, communication system, communication method and communication program |
| CN101911591A (en) * | 2008-01-15 | 2010-12-08 | 微软公司 | Preventing secure data from leaving a network perimeter |
| CN102480481A (en) * | 2010-11-26 | 2012-05-30 | 腾讯科技(深圳)有限公司 | Method and device for improving security of product user data |
| CN103037428A (en) * | 2011-09-29 | 2013-04-10 | 北京三星通信技术研究有限公司 | Method of achieving Mobile Data Terminal (MDT) measurement anonymity report |
-
2012
- 2012-12-25 CN CN201210568522.2A patent/CN103067918B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101091369A (en) * | 2004-12-22 | 2007-12-19 | 艾利森电话股份有限公司 | Means and method for control of personal data |
| US20070130070A1 (en) * | 2005-12-02 | 2007-06-07 | Credigy Technologies, Inc. | System and method for an anonymous exchange of private data |
| CN101473625A (en) * | 2006-06-20 | 2009-07-01 | 阿尔卡特朗讯公司 | Secure domain information protection apparatus and methods |
| US20100040030A1 (en) * | 2006-10-06 | 2010-02-18 | Takahiro Kakumaru | Communication device, communication system, communication method and communication program |
| CN101911591A (en) * | 2008-01-15 | 2010-12-08 | 微软公司 | Preventing secure data from leaving a network perimeter |
| CN102480481A (en) * | 2010-11-26 | 2012-05-30 | 腾讯科技(深圳)有限公司 | Method and device for improving security of product user data |
| CN103037428A (en) * | 2011-09-29 | 2013-04-10 | 北京三星通信技术研究有限公司 | Method of achieving Mobile Data Terminal (MDT) measurement anonymity report |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2014530392A (en) * | 2011-09-12 | 2014-11-17 | マイクロソフト コーポレーション | Triage dump generation method and computing device |
| CN107111616A (en) * | 2014-09-26 | 2017-08-29 | 上海贝尔股份有限公司 | The secret protection of third party's data sharing |
| US11520930B2 (en) | 2014-09-26 | 2022-12-06 | Alcatel Lucent | Privacy protection for third party data sharing |
| CN104410532A (en) * | 2014-12-12 | 2015-03-11 | 携程计算机技术(上海)有限公司 | Server and log filtering method thereof |
| CN106162624A (en) * | 2015-04-15 | 2016-11-23 | 宇龙计算机通信科技(深圳)有限公司 | The method of secret protection, device and mobile terminal in communication process |
| CN108352103A (en) * | 2015-09-07 | 2018-07-31 | 诺基亚技术有限公司 | Secret protection monitors |
| CN105553979A (en) * | 2015-12-15 | 2016-05-04 | 国网智能电网研究院 | Encryption publishing method for privacy information in smart power grid |
| CN107357943A (en) * | 2016-05-10 | 2017-11-17 | 中国移动通信集团湖北有限公司 | Data obfuscation method and device |
| CN107995616B (en) * | 2016-10-27 | 2021-05-18 | 中国电信股份有限公司 | User behavior data processing method and device |
| CN107995616A (en) * | 2016-10-27 | 2018-05-04 | 中国电信股份有限公司 | The processing method and device of user behavior data |
| CN107547513A (en) * | 2017-07-14 | 2018-01-05 | 新华三信息安全技术有限公司 | Message processing method, device, the network equipment and storage medium |
| CN107547513B (en) * | 2017-07-14 | 2021-02-05 | 新华三信息安全技术有限公司 | Message processing method, device, network equipment and storage medium |
| CN108924091A (en) * | 2018-06-06 | 2018-11-30 | 深圳市血之缘医疗科技有限公司 | Method for authenticating user identity and Related product |
| CN113055930A (en) * | 2021-03-09 | 2021-06-29 | Oppo广东移动通信有限公司 | Data processing method, communication device, server, and storage medium |
| CN116149235A (en) * | 2023-04-03 | 2023-05-23 | 艾欧史密斯(中国)热水器有限公司 | Data processing method of household appliance system, controller and household appliance system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103067918B (en) | 2017-04-12 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103067918A (en) | Method, device and system of privacy data anonymization in communication network | |
| CN108183972B (en) | Document handling method and terminal | |
| CN106302927A (en) | The voice call platform that two-way number is hidden | |
| CN104216761B (en) | It is a kind of that the method for sharing equipment is used in the device that can run two kinds of operating system | |
| CN109154968B (en) | System and method for secure and efficient communication within an organization | |
| KR101877655B1 (en) | Intelligent firewall access rules | |
| CN103024061A (en) | Network address book sharing system and network address book sharing method | |
| CN105338516A (en) | Mobile communication network access method and apparatus | |
| CN204350029U (en) | Data interaction system | |
| CN105634737A (en) | Data transmission method, terminals and system thereof | |
| CN103491532A (en) | Cooperative privacy protection method and system based on Android platform | |
| CN112235193A (en) | Data transmission method, device, equipment and medium based on cross-network multi-level routing | |
| CN113852639B (en) | Data processing method, device, electronic equipment and computer readable storage medium | |
| CN105376733A (en) | Information processing method and electronic apparatus | |
| CN106936686A (en) | A kind of immediate communication platform for supporting safety moving to handle official business | |
| CN104580155A (en) | Safety protection method | |
| CN105933339B (en) | A kind of application login method and mobile terminal | |
| CN103188289A (en) | Message communication method between client and server | |
| CN105306541A (en) | System and method for registering, opening, exchanging and confirming electronic business cards | |
| CN105357445A (en) | Internet of things system | |
| CN111586174A (en) | Network service system | |
| CN104581705A (en) | Terminal | |
| US11284244B1 (en) | Data white box device utilized in conjunction with intelligent terminal | |
| CN104301567A (en) | Network communication method and system | |
| CN104063659A (en) | Network connection safety improvement method and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |