Forgotten of Personal Information Based on DataSecOps

Abstract

Abstract: Personal information belongs to special information among all kinds of data information and has special requirements in compliance. Among them, forgotten of personal information is the key link of personal information compliance. However, due to the characteristics of data operation in the digital transformation period, the existing methods or technologies are insufficient to meet the demands for forgetting or deleting personal information in the whole process of data operation. Forgotten of personal information Based on DataSecOps is developed to solve problem. In view of the personal information itself characteristic and the new characteristics of data operation, the solution puts forward combined with AI and data sandbox, deleted personal information with self-associative retrieval, and established delete - compliance of the chain of evidence for audit. The technology is embedded into data operations and achieve compliance goals for personal information in forgetting or deleting.

Key words: forgotten of personal information, DataSecOps, AI, data sandbox, embedded features

摘要： 个人信息在各类数据信息中属于特殊的信息，在合规方面具有特殊的需求。其中，个人信息遗忘是个人信息合规的关键环节。数字化转型时期的数据运营特点，使得现有的技术手段无法解决数据运营全流程中个人信息的遗忘或删除问题。基于DataSecOps的个人信息遗忘，针对个人信息自身特性及数据运营的新特征，提出基于AI人工智能，融合数据沙箱，并自关联检索删除个人信息的方法，建立删除-合规的证据链以供审核。本技术作为内嵌特性融合于数据运营流程中，达到个人信息在遗忘或删除的合规目标。

关键词: 个人信息遗忘, 数据运营安全, 人工智能, 数据沙箱, 内嵌特性

王文宇. 基于DataSecOps的个人信息遗忘[J]. 信息安全研究, 2021, 7(9): 856-860.

References

[1] 中华人民共和国第十一届全国人民代表大会常务委员会. 关于加强网络信息保护的决定[Z].2012. http://www.npc.gov.cn/npc/c12489/201212/788288d3f0c24881bad60e84b9e1a712.shtml.
[2]中华人民共和国第十二届全国人民代表大会常务委员会.中华人民共和国网络安全法[Z].2017. http://www.npc.gov.cn/npc/c30834/201611/270b43e8b35e4f7ea98502b6f0e26f8a.shtml.
[3] 中华人民共和国第十二届全国人民代表大会.中华人民共和国民法总则[Z].2017. http://www.npc.gov.cn/npc/c12435/201703/7944f166a8194d788c63cc6610aebb4a.shtml.
[4] 中华人民共和国第十三届全国人民代表大会常务委员会. 中华人民共和国个人信息保护法(草案)[Z].2020. http://www.npc.gov.cn/npc/c30834/202010/569490b5b76a49c292e64c416da8c994.shtml
[5] 倪光南. 坚持信创科技自立自强，建设网络强国、数字中国[J]. 信息安全研究, 2021, 7(1): 2-03.
[6] Sweeney L, k-anonymity: a Model for Protecting Privacy[J]. International Journal on Uncertainty, Fuzziness and Knowledge based Systems, 2002,10(5):557-570.
[7] Sweeney L, Achieving k-anonymity privacy protection using generalization and suppression[J]. International Journal of Uncertainty，Fuzziness and Knowledge-Based Systems：IJUFKS，2002，10(5)：571-588.
[8] Aggarwal G, Feder T, Kenthapadi K, et al. Achieving Anonymity via Clustering[C]. ACM Sigmod-Sigact-Sigart Symposium on Principles of Database Systems,2006:153-162.
[9] Narayanan A , Shmatikov V . Robust De-anonymization of Large Sparse Datasets[C]// IEEE Symposium on Security & Privacy. IEEE, 2008:111-125.
[10] Srivatsa M, Hicks M. Deanonymizing mobility traces: Using social networks as a side-channel[C]// Proceedings of the 2012 ACM conference on Computer and communications security. ACM, 2012.

[1]	. The Analysis of National Security Risk in Open Source Software Supply Chain [J]. Journal of Information Security Reserach, 2021, 7(9): 790-794.
[2]	. Research on Security Risk Assessment of 5G Supply Chain [J]. Journal of Information Security Reserach, 2021, 7(9): 822-827.
[3]	. Design of CrossDomain Data Fusion Traceability Framework Based on Secondary Chain Structure#br# [J]. Journal of Information Security Reserach, 2021, 7(8): 728-738.
[4]	Wang Guan Ding Hao. Blockchain-based scheme for secure sharing of business collaboration data [J]. Journal of Information Security Reserach, 2021, 7(7): 606-614.
[5]	. The Research Status of Blockchain-based Technology Against Deepfake [J]. Journal of Information Security Reserach, 2021, 7(7): 615-620.
[6]	. Design and Implementation of RFID Data Collection and Traceability System Based on Blockchain [J]. Journal of Information Security Reserach, 2021, 7(7): 621-631.
[7]	. Research on Industrial Chain Security of Semi-Conductor on the Background of Digital Economy [J]. Journal of Information Security Reserach, 2021, 7(7): 640-645.
[8]	. Research on Chinese Named Entity Recognition Method Based on Pre-training Model for Public Safety Events [J]. Journal of Information Security Reserach, 2021, 7(7): 652-660.
[9]	. Distributed database fine-grained access control based on zero trust in the power Internet of Things [J]. Journal of Information Security Reserach, 2021, 7(6): 535-542.
[10]	. Device Authentication Method Based on Blockchain Transaction Verification [J]. Journal of Information Security Reserach, 2021, 7(6): 550-557.
[11]	. Research on 5G Supply Chain Security Risks and Countermeasures [J]. Journal of Information Security Reserach, 2021, 7(5): 423-427.
[12]	. Discussion on 5G Radio Access Network Security [J]. Journal of Information Security Reserach, 2021, 7(5): 457-465.
[13]	. Research and Design of Cloud Edge Collaboration Based on Blockchain [J]. Journal of Information Security Reserach, 2021, 7(4): 310-318.
[14]	. A Transaction Representation Model in Blockchain [J]. Journal of Information Security Research, 2021, 7(3): 233-241.
[15]	. Research on Dual-blockchain Model for Medical Privacy Protection [J]. Journal of Information Security Research, 2021, 7(2): 136-144.