WO2019134339A1 - Desensitization method and procedure, application server and computer readable storage medium - Google Patents

Desensitization method and procedure, application server and computer readable storage medium Download PDF

Info

Publication number
WO2019134339A1
WO2019134339A1 PCT/CN2018/089712 CN2018089712W WO2019134339A1 WO 2019134339 A1 WO2019134339 A1 WO 2019134339A1 CN 2018089712 W CN2018089712 W CN 2018089712W WO 2019134339 A1 WO2019134339 A1 WO 2019134339A1
Authority
WO
WIPO (PCT)
Prior art keywords
desensitization
field
rule
desensitized
target content
Prior art date
Application number
PCT/CN2018/089712
Other languages
French (fr)
Chinese (zh)
Inventor
彭捷
Original Assignee
平安科技(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 平安科技(深圳)有限公司 filed Critical 平安科技(深圳)有限公司
Publication of WO2019134339A1 publication Critical patent/WO2019134339A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data

Definitions

  • the present application relates to the field of communications technologies, and in particular, to a desensitization method, a program, an application server, and a computer readable storage medium.
  • the present application proposes a desensitization method, a program, an application server, and a computer readable storage medium.
  • the jar package is parsed by introducing a desensitization rule, and the jar package is provided to each subsystem to invoke, and the desensitization implementation method is implemented by the jar.
  • the package is completed, so that the performance of the system desensitization process can be improved, and a unified desensitization process and flexible management can be realized.
  • the present application provides an application server, which includes a memory, a processor, and a desensitization program executable on the processor, where the desensitization program is The processor implements the following steps when executed:
  • the present application further provides a desensitization method, which is applied to an application server, and the method includes:
  • the present application further provides a desensitization program, the desensitization program comprising:
  • a receiving module configured to receive a jar package for desensitization rule parsing
  • a first obtaining module configured to acquire target content, and obtain a to-be desensitized field in the target content according to the predefined sensitive data
  • a parsing module configured to parse the desensitization rule by using the jar package to obtain a desensitized rule after parsing
  • a desensitization processing module configured to desensitize the to-be desensitized field in the target content according to the parsed desensitization rule
  • the second obtaining module is configured to obtain the desensitized content.
  • the present application further provides a computer readable storage medium storing a desensitization program, the desensitization program being executable by at least one processor to enable the At least one processor performs the following steps:
  • the application server, desensitization method, program and computer readable storage medium proposed by the present application firstly receive a jar package for desensitization rule parsing; secondly, traverse the cache according to the input parameter type.
  • the desensitization rule table obtains the corresponding desensitization rule; again, obtains the target content, and obtains the to-be desensitized field in the target content according to the predefined sensitive data; and then, the target content is performed according to the parsed desensitization rule Desensitization treatment; finally, the content after desensitization treatment is obtained.
  • the desensitization requirement of the target content can be quickly achieved.
  • 1 is a schematic diagram of an optional hardware architecture of an application server of the present application
  • FIG. 2 is a block diagram showing the program of the first embodiment of the desensitization program of the present application
  • FIG. 3 is a block diagram showing the program of the second embodiment of the desensitization program of the present application.
  • FIG. 4 is a flow chart of a first embodiment of a desensitization method of the present application.
  • FIG. 1 it is a schematic diagram of an optional hardware architecture of the application server 1.
  • the application server 1 may be a computing device such as a rack server, a blade server, a tower server, or a rack server.
  • the application server 1 may be a stand-alone server or a server cluster composed of multiple servers.
  • the application server 1 may include, but is not limited to, the memory 11, the processor 12, and the network interface 13 being communicably connected to each other through a system bus.
  • the application server 1 connects to the network through the network interface 13 to obtain information.
  • the network may be an intranet, an Internet, a Global System of Mobile communication (GSM), a Wideband Code Division Multiple Access (WCDMA), a 4G network, or a 5G network.
  • Wireless or wired networks such as networks, Bluetooth, Wi-Fi, and call networks.
  • Figure 1 only shows the application server 1 with components 11-13, but it should be understood that not all illustrated components may be implemented, and more or fewer components may be implemented instead.
  • the memory 11 includes at least one type of readable storage medium including a flash memory, a hard disk, a multimedia card, a card type memory (eg, SD or DX memory, etc.), and a random access memory (RAM). , static random access memory (SRAM), read only memory (ROM), electrically erasable programmable read only memory (EEPROM), programmable read only memory (PROM), magnetic memory, magnetic disk, optical disk, and the like.
  • the memory 11 may be an internal storage unit of the application server 1, such as a hard disk or memory of the application server 1.
  • the memory 11 may also be an external storage device of the application server 1, such as a plug-in hard disk equipped with the application server 1, a smart memory card (SMC), and a secure digital ( Secure Digital, SD) cards, flash cards, etc.
  • the memory 11 can also include both the internal storage unit of the application server 1 and its external storage device.
  • the memory 11 is generally used to store an operating system installed in the application server 1 and various types of application software, such as program code of the desensitization program 200. Further, the memory 11 can also be used to temporarily store various types of data that have been output or are to be output.
  • the processor 12 may be a Central Processing Unit (CPU), controller, microcontroller, microprocessor, or other data processing chip in some embodiments.
  • the processor 12 is typically used to control the overall operation of the application server 1, such as performing data interaction or communication related control and processing, and the like.
  • the processor 12 is configured to run program code or process data stored in the memory 11, such as running the desensitization program 200 and the like.
  • the network interface 13 may comprise a wireless network interface or a wired network interface, which is typically used to establish a communication connection between the application server 1 and other electronic devices.
  • the application server 1 is installed with a desensitization program 200.
  • the desensitization program 200 When the desensitization program 200 is running, the jar package for desensitization rule analysis is received; the target content is acquired, and according to the predefined sensitive data. Obtaining a desensitization field in the target content; desensitizing the target content according to the parsed desensitization rule; and finally, obtaining the desensitized content. In this way, the desensitization requirement of the target content can be quickly achieved.
  • the present application proposes a desensitization procedure 200.
  • FIG. 2 it is a program block diagram of the first embodiment of the desensitization program 200 of the present application.
  • the desensitization program 200 includes a series of computer program instructions stored in the memory 11, and when the computer program instructions are executed by the processor 12, the jar package based on the embodiments of the present application may be implemented. Desensitization operation.
  • the desensitization process 200 can be divided into one or more modules based on the particular operations implemented by the various portions of the computer program instructions. For example, in FIG. 2, the desensitization program 200 can be divided into a receiving module 201, a first obtaining module 202, a parsing module 203, a desensitization processing module 204, and a second obtaining module 205. among them:
  • the receiving module 201 is configured to receive a jar package for desensitization rule parsing.
  • the Jar package is a java format toolkit that is mainly used to parse data packets.
  • the desensitization rule includes a field type and a corresponding desensitization action. For example, if the field type is a phone number, the corresponding desensitization action is data replacement, and if the field type is a location, the corresponding desensitization The action is character replacement; and such desensitization rules are compressed and stored by a certain data format, thereby facilitating the retrieval and parsing of tools of a specific format.
  • the first obtaining module 202 is configured to acquire target content, and obtain a to-be desensitized field in the target content according to the predefined sensitive data.
  • the predefined sensitive data may be a place name, a name, or a phone number (138********). If there is data content matching the sensitive data in the target content, the corresponding data is extracted. The data content serves as the field to be desensitized.
  • the first obtaining module 202 acquires a to-be desensitized field by:
  • Selecting sensitive data from the predefined sensitive data in turn, traversing the target content according to the length of the sensitive data and the sensitive data, that is, comparing the sensitive data with the target content in units of the length of the sensitive data.
  • this content is used as the desensitization field of the target content. In this way, the target content is iteratively iterated, and all the desensitized fields in the target content that match the predefined sensitive data are obtained.
  • the parsing module 203 is configured to parse the desensitization rule by using the jar package to obtain the desensitized rule after parsing.
  • the desensitization rule can be quickly parsed by the jar package of a specific format, and then the desensitization rule after parsing is obtained, that is, the correspondence between the field type and the desensitization action, and the correspondence corresponding to the above relationship is established. Desensitization rules table.
  • the desensitization processing module 204 is configured to desensitize the target content according to the parsed desensitization rule.
  • the desensitization processing module 204 matches the to-desensitization field acquired by the first obtaining module 202 with the field type in the desensitization rule table, and selects a corresponding desensitization action according to the matching result.
  • the desensitization field is first subjected to semantic analysis, for example, the desensitization field for the place name can be retrieved online.
  • the sensitive field is given its location type according to the search result; if it is for the telephone number, the telephone number type is assigned according to the common number segment and length of the number. After analyzing the type of the desensitization field, the field types in the desensitization rule table are matched.
  • the desensitization action may include the above data replacement, character replacement, and may further include data rearrangement, data randomization transformation, and the like.
  • replace All is a commonly used method of replacing characters in JAVA, similar to the replace method.
  • the difference is that the parameters of replace are char and Char Sequence, which can support character substitution and string substitution (Char Sequence)
  • the meaning, in a nutshell, is the string.
  • the parameter of replace All is regex, which is based on the replacement of regular expressions. For example, you can put all the strings by replace All(" ⁇ d","*") The numeric characters are replaced by asterisks. Similarly, you can use the above commands to replace the corresponding numbers with other required numbers.
  • the predefined sensitive data is one of many mobile phone number types such as 138********, 185********, etc.
  • you climb the corresponding data content from the government website use 138******** or 185******** to match the crawled data content
  • the corresponding content is to be desensitized Field.
  • the acquired desensitization field is matched with the field type in the post-parsing desensitization rule, and then the desensitization action corresponding to the field type is selected.
  • the corresponding desensitization action at this time replaces the corresponding to-desensitization field character, that is, replaces the mobile phone number in the target content with a predetermined character by the replace command.
  • the corresponding desensitization action is a data randomization transformation, the mobile phone number in the target content is randomly replaced with data.
  • 138******** or 185******** will change to other presentation modes according to the desensitization action, achieving a desensitization effect.
  • the second obtaining module 205 is configured to acquire content desensitized by the desensitization processing module 204.
  • the content that the user browses on the mobile terminal is the desensitized content.
  • the mobile terminal may be a mobile phone, a smart phone, a notebook computer, a digital broadcast receiver, or a PDA (personal digital assistant).
  • a mobile device such as a PAD (Tablet), a PMP (Portable Multimedia Player), a navigation device, an in-vehicle device, and the like, and a fixed terminal such as a digital TV, a desktop computer, a notebook, a server, and the like.
  • the desensitization program 200 receives a jar package for desensitization rule analysis; traverses the desensitization rule table in the cache according to the input parameter type to obtain a corresponding desensitization rule; Target content, and obtaining a desensitization field in the target content according to the predefined sensitive data; desensitizing the target content according to the parsed desensitization rule; and acquiring the desensitized content. In this way, the desensitization requirement of the target content can be quickly achieved.
  • the desensitization program 200 of the present application further includes a determination module 206.
  • the desensitization program 200 of the present application further includes a determination module 206.
  • the determining module 206 determines whether the desensitized content is the same as the target content.
  • the desensitization processing module 204 is further configured to perform desensitization processing on the target content according to the parsed desensitization rule again, when the desensitized content is the same as the target content.
  • the determining module 206 is further configured to determine whether the content length after the desensitization process is less than the length of the target content.
  • the desensitization processing module 204 is further configured to: add the desensitized content to the target content to synthesize new content; The synthesized new content is desensitized again according to the parsed desensitization rule.
  • abnormal desensitization may occur. For example, after desensitization, the content and the target content are consistent, resulting in no desensitization, or the content after desensitization is inconsistent with the target content length. In the case of sensitivity, abnormal desensitization treatment is required to ensure correct desensitization.
  • the desensitization program 200 proposed by the present application can compare the desensitized content and the target content, and the length of the desensitized content and the length of the target content. Abnormal desensitization treatment is performed in the case where the unsensitization is successful to ensure the correctness of desensitization.
  • the present application also proposes a desensitization method.
  • FIG. 4 it is a schematic diagram of the implementation process of the first embodiment of the desensitization method of the present application.
  • the order of execution of the steps in the flowchart shown in FIG. 4 may be changed according to different requirements, and some steps may be omitted.
  • Step S401 receiving a jar package for desensitization rule analysis.
  • the Jar package is a java format toolkit that is mainly used to parse data packets.
  • the desensitization rule includes a field type and a corresponding desensitization action. For example, if the field type is a phone number, the corresponding desensitization action is data exchange, and if the field type is a place, the corresponding off The sensitive action is character replacement; and such desensitization rules are compressed and stored by a certain data format, thereby facilitating management.
  • Step S402 is used to acquire target content, and obtain a to-be desensitized field in the target content according to the predefined sensitive data.
  • the predefined sensitive data may be a place name, a name, or a phone number (138********). If there is data content matching the sensitive data in the target content, the corresponding data is extracted. The data content serves as the field to be desensitized.
  • the first obtaining module 202 acquires a to-be desensitized field by:
  • Selecting sensitive data from the predefined sensitive data in turn, traversing the target content according to the length of the sensitive data and the sensitive data, that is, comparing the sensitive data with the target content in units of the length of the sensitive data.
  • this content is used as the desensitization field of the target content. In this way, the target content is iteratively iterated, and all the desensitized fields in the target content that match the predefined sensitive data are obtained.
  • Step S403 parsing the desensitization rule by using the jar package to obtain the desensitized rule after parsing.
  • the desiccant rule can be quickly parsed by the jar package of a specific format, and then the desensitized rule after parsing is obtained, that is, the correspondence between the field type and the desensitization action, and the corresponding storage is desensitized. Rule table.
  • Step S404 desensitizing the target content according to the parsed desensitization rule.
  • the desensitization processing module 204 matches the to-desensitization field acquired by the first obtaining module 202 with the field type in the desensitization rule table, and selects a corresponding desensitization action according to the matching result.
  • the desensitization field is first subjected to semantic analysis, for example, the desensitization field for the place name can be retrieved online.
  • the sensitive field is given its location type according to the search result; if it is for the telephone number, the telephone number type is assigned according to the common number segment and length of the number. After analyzing the type of the desensitization field, the field types in the named rule table are matched.
  • the desensitization action may include the above data replacement, character replacement, and may further include data rearrangement, data randomization transformation, and the like.
  • replace All is a commonly used method of replacing characters in JAVA, similar to the replace method.
  • the difference is that the parameters of replace are char and Char Sequence, which can support character substitution and string substitution (Char Sequence)
  • the meaning, in a nutshell, is the string.
  • the parameter of replace All is regex, which is based on the replacement of regular expressions. For example, you can put all the strings by replace All(" ⁇ d","*") The numeric characters are replaced by asterisks. Similarly, you can use the above commands to replace the corresponding numbers with other required numbers.
  • the predefined sensitive data is one of many mobile phone number types such as 138********, 185********, etc.
  • you climb the corresponding data content from the government website use 138******** or 185******** to match the crawled data content
  • the corresponding content is to be desensitized Field.
  • the acquired desensitization field is matched with the field type in the post-parsing desensitization rule, and then the desensitization action corresponding to the field type is selected.
  • the corresponding desensitization action at this time replaces the corresponding to-desensitization field character, that is, replaces the mobile phone number in the target content with a predetermined character by the replace command.
  • the corresponding desensitization action is a data randomization transformation, the mobile phone number in the target content is randomly replaced with data.
  • Step S405 the content after the desensitization process is acquired.
  • the content that the user browses on the mobile terminal is the desensitized content.
  • the mobile terminal may be a mobile phone, a smart phone, a notebook computer, a digital broadcast receiver, or a PDA (personal digital assistant).
  • a mobile device such as a PAD (Tablet), a PMP (Portable Multimedia Player), a navigation device, an in-vehicle device, and the like, and a fixed terminal such as a digital TV, a desktop computer, a notebook, a server, and the like.
  • the desensitization method proposed by the present application firstly receives a jar package for desensitization rule analysis; secondly, traverses the desensitization rule table in the cache according to the input parameter type to obtain a corresponding desensitization rule. And again, obtaining the target content, and acquiring the to-be desensitized field in the target content according to the predefined sensitive data; and then desensitizing the target content according to the parsed desensitization rule; finally, obtaining the desensitization process Content. In this way, the desensitization requirement of the target content can be quickly achieved.
  • the foregoing embodiment method can be implemented by means of software plus a necessary general hardware platform, and of course, can also be through hardware, but in many cases, the former is better.
  • Implementation Based on such understanding, the technical solution of the present application, which is essential or contributes to the prior art, may be embodied in the form of a software product stored in a storage medium (such as ROM/RAM, disk,
  • the optical disc includes a number of instructions for causing a terminal device (which may be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.) to perform the methods described in various embodiments of the present application.

Abstract

Disclosed by the present application is a desensitization method, the method comprises: receiving a jar package for parsing a desensitization rule; acquiring a target content and acquiring, according to a predefined sensitive data, a field to be desensitized in the target content, and parsing the desensitization rule by means of the jar package to obtain the parsed desensitization rule; performing desensitization processing on the target content according to the parsed desensitization rule; and acquiring the desensitized content. The present application further provides a desensitization procedure, an application server and a computer readable storage medium. According to the desensitization method and procedure, the application server and the computer readable storage medium provided by the present application, a jar package, for desensitization rule parsing, is introduced to be invoked by each subsystem, and the desensitization implementation method is accomplished by the jar package. In this way, the desensitization processing performance of the system may be improved and a unified desensitization processing and flexible management may be realized.

Description

脱敏方法、程序、应用服务器及计算机可读存储介质Desensitization method, program, application server and computer readable storage medium
优先权申明Priority claim
本申请基于巴黎公约申明享有2018年01月03日递交的申请号为CN201810003337.6、名称为“脱敏方法、应用服务器及计算机可读存储介质”中国专利申请的优先权,该中国专利申请的整体内容以参考的方式结合在本申请中。This application is based on the priority of the Chinese Patent Application entitled "Desensitization Method, Application Server and Computer-Readable Storage Media", filed on January 3, 2018, with the application number of CN201810003337.6. The entire content is incorporated herein by reference.
技术领域Technical field
本申请涉及通信技术领域,尤其涉及一种脱敏方法、程序、应用服务器及计算机可读存储介质。The present application relates to the field of communications technologies, and in particular, to a desensitization method, a program, an application server, and a computer readable storage medium.
背景技术Background technique
随着互联网技术的飞速发展,政府及企业已经积累了大量的敏感信息和数据,而这些数据在很多工作场景中会得到使用,例如,业务分析(用户的精准定位、大数据商业价值的挖掘)、共享与交换、开发测试、甚至是一些外包业务,使用的都是真实的业务数据和信息。这些敏感数据一旦发生泄漏,不仅会给政府及企业本身带来巨大的损失,对个人及企业用户带来无法估量的损害。With the rapid development of Internet technology, governments and enterprises have accumulated a large amount of sensitive information and data, which will be used in many work scenarios, such as business analysis (precise positioning of users, mining of big data business value) , sharing and exchange, development testing, and even some outsourcing, using real business data and information. Once such sensitive data leaks, it will not only bring huge losses to the government and the enterprise itself, but also cause immeasurable damage to individuals and business users.
当下,敏感的个人、财务和健康信息受到多种不同行业和政府数据隐私法规的管制。如果企业无法保持数据隐私,就会面临严重的财务和法律惩罚,同时还会在客户与市场信心方面蒙受可观损失。至关重要的是,企业既要保护数以百计的应用程序和数据库免受业务用户、生产支持团队、DBA、开发人员以及外包团队的不利影响,同时又要让他们完成他们的工作。因此,数据脱敏是亟待解决的难题。Today, sensitive personal, financial, and health information is regulated by a variety of industry and government data privacy regulations. If companies are unable to maintain data privacy, they face serious financial and legal penalties, as well as considerable losses in customer and market confidence. It is critical that companies protect hundreds of applications and databases from business users, production support teams, DBAs, developers, and outsourcing teams, while allowing them to do their jobs. Therefore, data desensitization is a difficult problem to be solved.
发明内容Summary of the invention
有鉴于此,本申请提出一种脱敏方法、程序、应用服务器及计算机可读 存储介质,通过引入脱敏规则解析的jar包,而jar包提供给各子系统调用,脱敏实现方法由jar包完成,如此,可以提高系统脱敏处理的性能,实现统一的脱敏处理以及灵活的管理。In view of this, the present application proposes a desensitization method, a program, an application server, and a computer readable storage medium. The jar package is parsed by introducing a desensitization rule, and the jar package is provided to each subsystem to invoke, and the desensitization implementation method is implemented by the jar. The package is completed, so that the performance of the system desensitization process can be improved, and a unified desensitization process and flexible management can be realized.
首先,为实现上述目的,本申请提出一种应用服务器,所述应用服务器包括存储器、处理器,所述存储器上存储有可在所述处理器上运行的脱敏程序,所述脱敏程序被所述处理器执行时实现如下步骤:First, in order to achieve the above object, the present application provides an application server, which includes a memory, a processor, and a desensitization program executable on the processor, where the desensitization program is The processor implements the following steps when executed:
接收用于脱敏规则解析的jar包;Receiving a jar package for desensitization rule parsing;
获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;Obtaining the target content, and obtaining the to-be desensitized field in the target content according to the predefined sensitive data;
利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则;Demyimating the desensitization rule by using the jar package to obtain the desensitized rule after parsing;
依据所述解析后的脱敏规则对所述目标内容中的待脱敏字段进行脱敏处理;及Desensitizing the to-be desensitized field in the target content according to the parsed desensitization rule; and
获取脱敏处理后的内容。Get the desensitized content.
此外,为实现上述目的,本申请还提供一种脱敏方法,该方法应用于应用服务器,所述方法包括:In addition, in order to achieve the above object, the present application further provides a desensitization method, which is applied to an application server, and the method includes:
接收用于脱敏规则解析的jar包;Receiving a jar package for desensitization rule parsing;
获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;Obtaining the target content, and obtaining the to-be desensitized field in the target content according to the predefined sensitive data;
利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则;Demyimating the desensitization rule by using the jar package to obtain the desensitized rule after parsing;
依据所述解析后的脱敏规则对所述目标内容中的待脱敏字段进行脱敏处理;及Desensitizing the to-be desensitized field in the target content according to the parsed desensitization rule; and
获取脱敏处理后的内容。Get the desensitized content.
此外,为实现上述目的,本申请还提供一种脱敏程序,所述脱敏程序包括:In addition, in order to achieve the above object, the present application further provides a desensitization program, the desensitization program comprising:
接收模块,用于接收用于脱敏规则解析的jar包;a receiving module, configured to receive a jar package for desensitization rule parsing;
第一获取模块,用于获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;a first obtaining module, configured to acquire target content, and obtain a to-be desensitized field in the target content according to the predefined sensitive data;
解析模块,用于利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则;a parsing module, configured to parse the desensitization rule by using the jar package to obtain a desensitized rule after parsing;
脱敏处理模块,用于依据所述解析后的脱敏规则对所述目标内容中待脱敏字段进行脱敏处理;及a desensitization processing module, configured to desensitize the to-be desensitized field in the target content according to the parsed desensitization rule; and
第二获取模块,用于获取脱敏处理后的内容。The second obtaining module is configured to obtain the desensitized content.
进一步地,为实现上述目的,本申请还提供一种计算机可读存储介质,所述计算机可读存储介质存储有脱敏程序,所述脱敏程序可被至少一个处理器执行,以使所述至少一个处理器执行如下步骤:Further, in order to achieve the above object, the present application further provides a computer readable storage medium storing a desensitization program, the desensitization program being executable by at least one processor to enable the At least one processor performs the following steps:
接收用于脱敏规则解析的jar包;Receiving a jar package for desensitization rule parsing;
获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;Obtaining the target content, and obtaining the to-be desensitized field in the target content according to the predefined sensitive data;
利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则;Demyimating the desensitization rule by using the jar package to obtain the desensitized rule after parsing;
依据所述解析后的脱敏规则对所述目标内容中待脱敏字段进行脱敏处理;及Desensitizing the to-be desensitized field in the target content according to the parsed desensitization rule; and
获取脱敏处理后的内容。Get the desensitized content.
相较于现有技术,本申请所提出的应用服务器、脱敏方法、程序及计算机可读存储介质,首先,接收用于脱敏规则解析的jar包;其次,根据输入的参数类型遍历缓存中的脱敏规则表获取相应的脱敏规则;再次,获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;然后,依据所述解析后的脱敏规则对目标内容进行脱敏处理;最后,获取脱敏处理后的内容。这样,可以快速的实现目标内容的脱敏需求。Compared with the prior art, the application server, desensitization method, program and computer readable storage medium proposed by the present application firstly receive a jar package for desensitization rule parsing; secondly, traverse the cache according to the input parameter type. The desensitization rule table obtains the corresponding desensitization rule; again, obtains the target content, and obtains the to-be desensitized field in the target content according to the predefined sensitive data; and then, the target content is performed according to the parsed desensitization rule Desensitization treatment; finally, the content after desensitization treatment is obtained. In this way, the desensitization requirement of the target content can be quickly achieved.
附图说明DRAWINGS
图1是本申请应用服务器一可选的硬件架构的示意图;1 is a schematic diagram of an optional hardware architecture of an application server of the present application;
图2是本申请脱敏程序第一实施例的程序模块图;2 is a block diagram showing the program of the first embodiment of the desensitization program of the present application;
图3是本申请脱敏程序第二实施例的程序模块图;Figure 3 is a block diagram showing the program of the second embodiment of the desensitization program of the present application;
图4为本申请脱敏方法第一实施例的流程图。4 is a flow chart of a first embodiment of a desensitization method of the present application.
附图标记:Reference mark:
应用服务器application server 11
存储器Memory 1111
处理器processor 1212
网络接口Network Interface 1313
脱敏程序Desensitization procedure 200200
接收模块Receiving module 201201
第一获取模块First acquisition module 202202
解析模块Parsing module 203203
脱敏处理模块Desensitization module 204204
第二获取模块Second acquisition module 205205
判断模块Judgment module 206206
本申请目的的实现、功能特点及优点将结合实施例,参照附图做进一步说明。The implementation, functional features and advantages of the present application will be further described with reference to the accompanying drawings.
具体实施方式Detailed ways
为了使本申请的目的、技术方案及优点更加清楚明白,以下结合附图及实施例,对本申请进行进一步详细说明。应当理解,此处所描述的具体实施例仅用以解释本申请,并不用于限定本申请。基于本申请中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都 属于本申请保护的范围。In order to make the objects, technical solutions, and advantages of the present application more comprehensible, the present application will be further described in detail below with reference to the accompanying drawings and embodiments. It is understood that the specific embodiments described herein are merely illustrative of the application and are not intended to be limiting. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present application without departing from the inventive scope are the scope of the present application.
需要说明的是,在本申请中涉及“第一”、“第二”等的描述仅用于描述目的,而不能理解为指示或暗示其相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”的特征可以明示或者隐含地包括至少一个该特征。另外,各个实施例之间的技术方案可以相互结合,但是必须是以本领域普通技术人员能够实现为基础,当技术方案的结合出现相互矛盾或无法实现时应当认为这种技术方案的结合不存在,也不在本申请要求的保护范围之内。It should be noted that the descriptions of "first", "second" and the like in the present application are for the purpose of description only, and are not to be construed as indicating or implying their relative importance or implicitly indicating the number of technical features indicated. . Thus, features defining "first" or "second" may include at least one of the features, either explicitly or implicitly. In addition, the technical solutions between the various embodiments may be combined with each other, but must be based on the realization of those skilled in the art, and when the combination of the technical solutions is contradictory or impossible to implement, it should be considered that the combination of the technical solutions does not exist. Nor is it within the scope of protection required by this application.
参阅图1所示,是应用服务器1一可选的硬件架构的示意图。Referring to FIG. 1, it is a schematic diagram of an optional hardware architecture of the application server 1.
所述应用服务器1可以是机架式服务器、刀片式服务器、塔式服务器或机柜式服务器等计算设备,该应用服务器1可以是独立的服务器,也可以是多个服务器所组成的服务器集群。The application server 1 may be a computing device such as a rack server, a blade server, a tower server, or a rack server. The application server 1 may be a stand-alone server or a server cluster composed of multiple servers.
本实施例中,所述应用服务器1可包括,但不仅限于,可通过系统总线相互通信连接存储器11、处理器12、网络接口13。In this embodiment, the application server 1 may include, but is not limited to, the memory 11, the processor 12, and the network interface 13 being communicably connected to each other through a system bus.
所述应用服务器1通过网络接口13连接网络,获取资讯。所述网络可以是企业内部网(Intranet)、互联网(Internet)、全球移动通讯系统(Global System of Mobile communication,GSM)、宽带码分多址(Wideband Code Division Multiple Access,WCDMA)、4G网络、5G网络、蓝牙(Bluetooth)、Wi-Fi、通话网络等无线或有线网络。The application server 1 connects to the network through the network interface 13 to obtain information. The network may be an intranet, an Internet, a Global System of Mobile communication (GSM), a Wideband Code Division Multiple Access (WCDMA), a 4G network, or a 5G network. Wireless or wired networks such as networks, Bluetooth, Wi-Fi, and call networks.
需要指出的是,图1仅示出了具有组件11-13的应用服务器1,但是应理解的是,并不要求实施所有示出的组件,可以替代的实施更多或者更少的组件。It is pointed out that Figure 1 only shows the application server 1 with components 11-13, but it should be understood that not all illustrated components may be implemented, and more or fewer components may be implemented instead.
其中,所述存储器11至少包括一种类型的可读存储介质,所述可读存储介质包括闪存、硬盘、多媒体卡、卡型存储器(例如,SD或DX存储器等)、随机访问存储器(RAM)、静态随机访问存储器(SRAM)、只读存储器(ROM)、电可擦除可编程只读存储器(EEPROM)、可编程只读存储器(PROM)、磁 性存储器、磁盘、光盘等。在一些实施例中,所述存储器11可以是所述应用服务器1的内部存储单元,例如该应用服务器1的硬盘或内存。在另一些实施例中,所述存储器11也可以是所述应用服务器1的外部存储设备,例如该应用服务器1配备的插接式硬盘,智能存储卡(Smart Media Card,SMC),安全数字(Secure Digital,SD)卡,闪存卡(Flash Card)等。当然,所述存储器11还可以既包括所述应用服务器1的内部存储单元也包括其外部存储设备。本实施例中,所述存储器11通常用于存储安装于所述应用服务器1的操作系统和各类应用软件,例如脱敏程序200的程序代码等。此外,所述存储器11还可以用于暂时地存储已经输出或者将要输出的各类数据。The memory 11 includes at least one type of readable storage medium including a flash memory, a hard disk, a multimedia card, a card type memory (eg, SD or DX memory, etc.), and a random access memory (RAM). , static random access memory (SRAM), read only memory (ROM), electrically erasable programmable read only memory (EEPROM), programmable read only memory (PROM), magnetic memory, magnetic disk, optical disk, and the like. In some embodiments, the memory 11 may be an internal storage unit of the application server 1, such as a hard disk or memory of the application server 1. In other embodiments, the memory 11 may also be an external storage device of the application server 1, such as a plug-in hard disk equipped with the application server 1, a smart memory card (SMC), and a secure digital ( Secure Digital, SD) cards, flash cards, etc. Of course, the memory 11 can also include both the internal storage unit of the application server 1 and its external storage device. In this embodiment, the memory 11 is generally used to store an operating system installed in the application server 1 and various types of application software, such as program code of the desensitization program 200. Further, the memory 11 can also be used to temporarily store various types of data that have been output or are to be output.
所述处理器12在一些实施例中可以是中央处理器(Central Processing Unit,CPU)、控制器、微控制器、微处理器、或其他数据处理芯片。该处理器12通常用于控制所述应用服务器1的总体操作,例如执行数据交互或者通信相关的控制和处理等。本实施例中,所述处理器12用于运行所述存储器11中存储的程序代码或者处理数据,例如运行所述的脱敏程序200等。The processor 12 may be a Central Processing Unit (CPU), controller, microcontroller, microprocessor, or other data processing chip in some embodiments. The processor 12 is typically used to control the overall operation of the application server 1, such as performing data interaction or communication related control and processing, and the like. In this embodiment, the processor 12 is configured to run program code or process data stored in the memory 11, such as running the desensitization program 200 and the like.
所述网络接口13可包括无线网络接口或有线网络接口,该网络接口13通常用于在所述应用服务器1与其他电子设备之间建立通信连接。The network interface 13 may comprise a wireless network interface or a wired network interface, which is typically used to establish a communication connection between the application server 1 and other electronic devices.
本实施例中,所述应用服务器1内安装有脱敏程序200,当所述脱敏程序200运行时,接收用于脱敏规则解析的jar包;获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;依据所述解析后的脱敏规则对目标内容进行脱敏处理;最后,获取脱敏处理后的内容。这样,可以快速的实现目标内容的脱敏需求。In this embodiment, the application server 1 is installed with a desensitization program 200. When the desensitization program 200 is running, the jar package for desensitization rule analysis is received; the target content is acquired, and according to the predefined sensitive data. Obtaining a desensitization field in the target content; desensitizing the target content according to the parsed desensitization rule; and finally, obtaining the desensitized content. In this way, the desensitization requirement of the target content can be quickly achieved.
至此,己经详细介绍了本申请各个实施例的应用环境和相关设备的硬件结构和功能。下面,将基于上述应用环境和相关设备,提出本申请的各个实施例。So far, the application environment of the various embodiments of the present application and the hardware structure and functions of related devices have been described in detail. Hereinafter, various embodiments of the present application will be proposed based on the above-described application environment and related devices.
首先,本申请提出一种脱敏程序200。First, the present application proposes a desensitization procedure 200.
参阅图2所示,是本申请脱敏程序200第一实施例的程序模块图。Referring to FIG. 2, it is a program block diagram of the first embodiment of the desensitization program 200 of the present application.
本实施例中,所述的脱敏程序200包括一系列的存储于存储器11上的计算机程序指令,当该计算机程序指令被处理器12执行时,可以实现本申请各实施例的基于jar包的脱敏操作。在一些实施例中,基于该计算机程序指令各部分所实现的特定的操作,所述脱敏程序200可以被划分为一个或多个模块。例如,在图2中,所述的脱敏程序200可以被分割成接收模块201、第一获取模块202、解析模块203、脱敏处理模块204及第二获取模块205。其中:In this embodiment, the desensitization program 200 includes a series of computer program instructions stored in the memory 11, and when the computer program instructions are executed by the processor 12, the jar package based on the embodiments of the present application may be implemented. Desensitization operation. In some embodiments, the desensitization process 200 can be divided into one or more modules based on the particular operations implemented by the various portions of the computer program instructions. For example, in FIG. 2, the desensitization program 200 can be divided into a receiving module 201, a first obtaining module 202, a parsing module 203, a desensitization processing module 204, and a second obtaining module 205. among them:
所述接收模块201,用于接收用于脱敏规则解析的jar包。The receiving module 201 is configured to receive a jar package for desensitization rule parsing.
Jar包是一种java格式工具包,主要用于解析数据包。在本实施方式中,所述脱敏规则包括字段类型和对应的脱敏动作,比如字段类型如果为电话号码,对应的脱敏动作则为数据替换,若字段类型为地点,则对应的脱敏动作则为字符替换;而此类脱敏规则通过一定的数据格式进行压缩存储,进而便于特定格式的工具进行调取和解析。The Jar package is a java format toolkit that is mainly used to parse data packets. In this embodiment, the desensitization rule includes a field type and a corresponding desensitization action. For example, if the field type is a phone number, the corresponding desensitization action is data replacement, and if the field type is a location, the corresponding desensitization The action is character replacement; and such desensitization rules are compressed and stored by a certain data format, thereby facilitating the retrieval and parsing of tools of a specific format.
所述第一获取模块202,用于获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段。在本实施方式中,预定义的敏感数据可以为地名、姓名、或者电话号码(138********),如果在目标内容中存在匹配上述敏感数据的数据内容,则提取相应的数据内容作为待脱敏字段。The first obtaining module 202 is configured to acquire target content, and obtain a to-be desensitized field in the target content according to the predefined sensitive data. In this embodiment, the predefined sensitive data may be a place name, a name, or a phone number (138********). If there is data content matching the sensitive data in the target content, the corresponding data is extracted. The data content serves as the field to be desensitized.
具体地,所述第一获取模块202通过以下方式获取待脱敏字段:Specifically, the first obtaining module 202 acquires a to-be desensitized field by:
依次从预定义的敏感数据中选择敏感数据,根据所述敏感数据及敏感数据的长度遍历目标内容,即以所述敏感数据的长度为单位依次将所述敏感数据与所述目标内容进行比对,当存在与敏感数据相同的内容,则将此内容做为目标内容的待脱敏字段。如此,反复的遍历目标内容,获得目标内容中与预定义敏感数据匹配的所有待脱敏字段。Selecting sensitive data from the predefined sensitive data in turn, traversing the target content according to the length of the sensitive data and the sensitive data, that is, comparing the sensitive data with the target content in units of the length of the sensitive data. When there is the same content as the sensitive data, this content is used as the desensitization field of the target content. In this way, the target content is iteratively iterated, and all the desensitized fields in the target content that match the predefined sensitive data are obtained.
所述解析模块203,用于利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则。The parsing module 203 is configured to parse the desensitization rule by using the jar package to obtain the desensitized rule after parsing.
而在本实施方式中,通过特定格式的jar包可以快速的实现脱敏规则的解 析,进而获取解析后的脱敏规则,即字段类型和脱敏动作的对应关系,并建立对应上述对应关系的脱敏规则表。In the present embodiment, the desensitization rule can be quickly parsed by the jar package of a specific format, and then the desensitization rule after parsing is obtained, that is, the correspondence between the field type and the desensitization action, and the correspondence corresponding to the above relationship is established. Desensitization rules table.
所述脱敏处理模块204,用于依据所述解析后的脱敏规则对目标内容进行脱敏处理。The desensitization processing module 204 is configured to desensitize the target content according to the parsed desensitization rule.
进一步地,脱敏处理模块204将第一获取模块202获取的待脱敏字段分别与脱敏规则表中的字段类型进行匹配,并根据匹配结果选择对应的脱敏动作。在本实施方式中,在待脱敏字段分别与脱敏规则表中的字段类型进行匹配的过程中,首先对待脱敏字段进行语义分析,比如针对地名的待脱敏字段,可以联网检索待脱敏字段,根据检索结果赋予其地点类型;若对于电话号码,则根据号码的常用号段和长度赋予其电话号码类型。在分析出待脱敏字段的类型后,在于脱敏规则表中的字段类型进行匹配。Further, the desensitization processing module 204 matches the to-desensitization field acquired by the first obtaining module 202 with the field type in the desensitization rule table, and selects a corresponding desensitization action according to the matching result. In this embodiment, in the process of matching the field to be desensitized with the field type in the desensitization rule table, the desensitization field is first subjected to semantic analysis, for example, the desensitization field for the place name can be retrieved online. The sensitive field is given its location type according to the search result; if it is for the telephone number, the telephone number type is assigned according to the common number segment and length of the number. After analyzing the type of the desensitization field, the field types in the desensitization rule table are matched.
进一步地,当选择对应的脱敏动作后,对目标内容中的待脱敏字段采取选择的脱敏动作。在本实施方式中,所述脱敏动作可以包括上述数据替换、字符替换,还可以包括数据重排、数据随机化变换等等。Further, after selecting the corresponding desensitization action, a selected desensitization action is taken on the to-be desensitization field in the target content. In this embodiment, the desensitization action may include the above data replacement, character replacement, and may further include data rearrangement, data randomization transformation, and the like.
具体的,上述数据替换或者字符替换均是是通过调用String类的replace All方法来实现的。其中,replace All是JAVA中常用的替换字符的方法,类似replace方法,不同在于:replace的参数是char和Char Sequence,既可以支持字符的替换,也支持字符串的替换(Char Sequence即字符串序列的意思,简单的说,也就是字符串。replace All的参数是regex,即基于规则表达式的替换。比如,可以通过replace All("\\d","*")把一个字符串所有的数字字符都换成星号。同样的,也可以通过上述命令将相应的数字替换为其他需要的数字。Specifically, the above data replacement or character replacement is implemented by calling the replace All method of the String class. Among them, replace All is a commonly used method of replacing characters in JAVA, similar to the replace method. The difference is that the parameters of replace are char and Char Sequence, which can support character substitution and string substitution (Char Sequence) The meaning, in a nutshell, is the string. The parameter of replace All is regex, which is based on the replacement of regular expressions. For example, you can put all the strings by replace All("\\d","*") The numeric characters are replaced by asterisks. Similarly, you can use the above commands to replace the corresponding numbers with other required numbers.
以下以一个具体的实施例进行说明:The following is explained in a specific embodiment:
如果预定义的敏感数据为138********、185********等众多手机号码类型中一种,此时如果从政府网站爬取相应的数据内容后,用138********或者185********去匹配爬取的数据内容,当数字和位数完全匹配爬取的数据内容 后,则将相应的内容作为待脱敏字段。此时再将获取的待脱敏字段与解析后脱敏规则中的字段类型进行匹配,则选择与该字段类型对应的脱敏动作。举例而言,此时对应的脱敏动作为将相应的待脱敏字段字符替换,即通过replace命令将目标内容中的手机号码全部替换成预定字符。同样的,如果对应的脱敏动作为数据随机化变换,则将目标内容中的手机号码进行数据的随机替代。如此处理后,138********或者185********则会依据脱敏动作变化成其他的呈现方式,达到一种脱敏的效果。If the predefined sensitive data is one of many mobile phone number types such as 138********, 185********, etc., if you climb the corresponding data content from the government website, use 138******** or 185******** to match the crawled data content, when the number and digits exactly match the crawled data content, then the corresponding content is to be desensitized Field. At this time, the acquired desensitization field is matched with the field type in the post-parsing desensitization rule, and then the desensitization action corresponding to the field type is selected. For example, the corresponding desensitization action at this time replaces the corresponding to-desensitization field character, that is, replaces the mobile phone number in the target content with a predetermined character by the replace command. Similarly, if the corresponding desensitization action is a data randomization transformation, the mobile phone number in the target content is randomly replaced with data. After this treatment, 138******** or 185******** will change to other presentation modes according to the desensitization action, achieving a desensitization effect.
所述第二获取模块205,用于获取经过所述脱敏处理模块204脱敏处理后的内容。这样,用户在移动终端上浏览的内容即是经过脱敏处理后的内容,本实施例中,所述移动终端可以是移动电话、智能电话、笔记本电脑、数字广播接收器、PDA(个人数字助理)、PAD(平板电脑)、PMP(便携式多媒体播放器)、导航装置、车载装置等等的可移动设备,以及诸如数字TV、台式计算机、笔记本、服务器等等的固定终端。The second obtaining module 205 is configured to acquire content desensitized by the desensitization processing module 204. In this way, the content that the user browses on the mobile terminal is the desensitized content. In this embodiment, the mobile terminal may be a mobile phone, a smart phone, a notebook computer, a digital broadcast receiver, or a PDA (personal digital assistant). A mobile device such as a PAD (Tablet), a PMP (Portable Multimedia Player), a navigation device, an in-vehicle device, and the like, and a fixed terminal such as a digital TV, a desktop computer, a notebook, a server, and the like.
通过上述程序模块201-205,本申请所提出的脱敏程序200,接收用于脱敏规则解析的jar包;根据输入的参数类型遍历缓存中的脱敏规则表获取相应的脱敏规则;获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;依据所述解析后的脱敏规则对目标内容进行脱敏处理;获取脱敏处理后的内容。这样,可以快速的实现目标内容的脱敏需求。Through the above-mentioned program modules 201-205, the desensitization program 200 proposed by the present application receives a jar package for desensitization rule analysis; traverses the desensitization rule table in the cache according to the input parameter type to obtain a corresponding desensitization rule; Target content, and obtaining a desensitization field in the target content according to the predefined sensitive data; desensitizing the target content according to the parsed desensitization rule; and acquiring the desensitized content. In this way, the desensitization requirement of the target content can be quickly achieved.
进一步地,基于本申请的脱敏程序200的上述第一实施例,提出本申请的第二实施例(如图3所示)。本实施例中,本申请的脱敏程序200还包括判断模块206。本实施例中:Further, based on the above-described first embodiment of the desensitization program 200 of the present application, a second embodiment of the present application (shown in FIG. 3) is proposed. In this embodiment, the desensitization program 200 of the present application further includes a determination module 206. In this embodiment:
所述判断模块206,判断所述脱敏处理后的内容是否与所述目标内容相同。当所述脱敏处理后的内容与所述目标内容相同时,所述脱敏处理模块204还用于,再次依据所述解析后的脱敏规则对所述目标内容进行脱敏处理。The determining module 206 determines whether the desensitized content is the same as the target content. The desensitization processing module 204 is further configured to perform desensitization processing on the target content according to the parsed desensitization rule again, when the desensitized content is the same as the target content.
进一步地,当所述脱敏处理后的内容与所述目标内容不同时,所述判断模块206,还用于判断所述脱敏处理后的内容长度是否小于所述目标内容的长度。当所述脱敏处理后的内容长度小于所述目标内容的长度时,所述脱敏处理模块204还用于,将所述脱敏处理后的内容附加所述目标内容合成新的内容;并再次依据所述解析后的脱敏规则对合成的所述新的内容进行脱敏处理。Further, when the desensitized content is different from the target content, the determining module 206 is further configured to determine whether the content length after the desensitization process is less than the length of the target content. When the content length of the desensitization process is less than the length of the target content, the desensitization processing module 204 is further configured to: add the desensitized content to the target content to synthesize new content; The synthesized new content is desensitized again according to the parsed desensitization rule.
本实施例中,在脱敏过程中,可能会出现异常脱敏情况,比如脱敏后内容和目标内容一致导致未脱敏,或者说脱敏后内容与目标内容长度不一致,针对此种异常脱敏情况,均需要进行异常脱敏处理,以保证脱敏的正确进行。In this embodiment, during the desensitization process, abnormal desensitization may occur. For example, after desensitization, the content and the target content are consistent, resulting in no desensitization, or the content after desensitization is inconsistent with the target content length. In the case of sensitivity, abnormal desensitization treatment is required to ensure correct desensitization.
通过上述程序模块206,本申请所提出的脱敏程序200,通过对脱敏处理后的内容与目标内容,以及对脱敏处理后的内容长度与目标内容的长度均进行比较处理,可以对可能发生的未脱敏成功的情况进行异常脱敏处理,以保证脱敏的正确进行。Through the above-mentioned program module 206, the desensitization program 200 proposed by the present application can compare the desensitized content and the target content, and the length of the desensitized content and the length of the target content. Abnormal desensitization treatment is performed in the case where the unsensitization is successful to ensure the correctness of desensitization.
此外,本申请还提出一种脱敏方法。In addition, the present application also proposes a desensitization method.
参阅图4所示,是本申请脱敏方法第一实施例的实施流程示意图。在本实施例中,根据不同的需求,图4所示的流程图中的步骤的执行顺序可以改变,某些步骤可以省略。Referring to FIG. 4, it is a schematic diagram of the implementation process of the first embodiment of the desensitization method of the present application. In this embodiment, the order of execution of the steps in the flowchart shown in FIG. 4 may be changed according to different requirements, and some steps may be omitted.
步骤S401,接收用于脱敏规则解析的jar包。Step S401, receiving a jar package for desensitization rule analysis.
Jar包是一种java格式工具包,主要用于解析数据包。在本实施方式中,所述脱敏规则包括字段类型和对应的脱敏动作,比如字段类型如果为电话号码,对应的脱敏动作则为数据特换,若字段类型为地点,则对应的脱敏动作则为字符替换;而此类脱敏规则通过一定的数据格式进行压缩存储,进而便于管理。The Jar package is a java format toolkit that is mainly used to parse data packets. In this embodiment, the desensitization rule includes a field type and a corresponding desensitization action. For example, if the field type is a phone number, the corresponding desensitization action is data exchange, and if the field type is a place, the corresponding off The sensitive action is character replacement; and such desensitization rules are compressed and stored by a certain data format, thereby facilitating management.
步骤S402,用于获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段。在本实施方式中,预定义的敏感数据可以为地名、姓名、 或者电话号码(138********),如果在目标内容中存在匹配上述敏感数据的数据内容,则提取相应的数据内容作为待脱敏字段。Step S402 is used to acquire target content, and obtain a to-be desensitized field in the target content according to the predefined sensitive data. In this embodiment, the predefined sensitive data may be a place name, a name, or a phone number (138********). If there is data content matching the sensitive data in the target content, the corresponding data is extracted. The data content serves as the field to be desensitized.
具体地,所述第一获取模块202通过以下方式获取待脱敏字段:Specifically, the first obtaining module 202 acquires a to-be desensitized field by:
依次从预定义的敏感数据中选择敏感数据,根据所述敏感数据及敏感数据的长度遍历目标内容,即以所述敏感数据的长度为单位依次将所述敏感数据与所述目标内容进行比对,当存在与敏感数据相同的内容,则将此内容做为目标内容的待脱敏字段。如此,反复的遍历目标内容,获得目标内容中与预定义敏感数据匹配的所有待脱敏字段。Selecting sensitive data from the predefined sensitive data in turn, traversing the target content according to the length of the sensitive data and the sensitive data, that is, comparing the sensitive data with the target content in units of the length of the sensitive data. When there is the same content as the sensitive data, this content is used as the desensitization field of the target content. In this way, the target content is iteratively iterated, and all the desensitized fields in the target content that match the predefined sensitive data are obtained.
步骤S403,利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则。而在本实施方式中,通过特定格式的jar包可以快速的实现脱敏规则的解析,进而获取解析后的脱敏规则,即字段类型和脱敏动作的对应关系,并进行对应存储为脱敏规则表。Step S403, parsing the desensitization rule by using the jar package to obtain the desensitized rule after parsing. In this embodiment, the desiccant rule can be quickly parsed by the jar package of a specific format, and then the desensitized rule after parsing is obtained, that is, the correspondence between the field type and the desensitization action, and the corresponding storage is desensitized. Rule table.
步骤S404,依据所述解析后的脱敏规则对目标内容进行脱敏处理。Step S404, desensitizing the target content according to the parsed desensitization rule.
进一步地,脱敏处理模块204将第一获取模块202获取的待脱敏字段分别与脱敏规则表中的字段类型进行匹配,并根据匹配结果选择对应的脱敏动作。在本实施方式中,在待脱敏字段分别与脱敏规则表中的字段类型进行匹配的过程中,首先对待脱敏字段进行语义分析,比如针对地名的待脱敏字段,可以联网检索待脱敏字段,根据检索结果赋予其地点类型;若对于电话号码,则根据号码的常用号段和长度赋予其电话号码类型。在分析出待脱敏字段的类型后,在于托名规则表中的字段类型进行匹配。Further, the desensitization processing module 204 matches the to-desensitization field acquired by the first obtaining module 202 with the field type in the desensitization rule table, and selects a corresponding desensitization action according to the matching result. In this embodiment, in the process of matching the field to be desensitized with the field type in the desensitization rule table, the desensitization field is first subjected to semantic analysis, for example, the desensitization field for the place name can be retrieved online. The sensitive field is given its location type according to the search result; if it is for the telephone number, the telephone number type is assigned according to the common number segment and length of the number. After analyzing the type of the desensitization field, the field types in the named rule table are matched.
进一步地,当选择对应的脱敏动作后,对目标内容中的待脱敏字段采取选择的脱敏动作。在本实施方式中,所述脱敏动作可以包括上述数据替换、字符替换,还可以包括数据重排、数据随机化变换等等。Further, after selecting the corresponding desensitization action, a selected desensitization action is taken on the to-be desensitization field in the target content. In this embodiment, the desensitization action may include the above data replacement, character replacement, and may further include data rearrangement, data randomization transformation, and the like.
具体的,上述数据替换或者字符替换均是是通过调用String类的replace All方法来实现的。其中,replace All是JAVA中常用的替换字符的方法,类似replace方法,不同在于:replace的参数是char和Char Sequence,既可以 支持字符的替换,也支持字符串的替换(Char Sequence即字符串序列的意思,简单的说,也就是字符串。replace All的参数是regex,即基于规则表达式的替换。比如,可以通过replace All("\\d","*")把一个字符串所有的数字字符都换成星号。同样的,也可以通过上述命令将相应的数字替换为其他需要的数字。Specifically, the above data replacement or character replacement is implemented by calling the replace All method of the String class. Among them, replace All is a commonly used method of replacing characters in JAVA, similar to the replace method. The difference is that the parameters of replace are char and Char Sequence, which can support character substitution and string substitution (Char Sequence) The meaning, in a nutshell, is the string. The parameter of replace All is regex, which is based on the replacement of regular expressions. For example, you can put all the strings by replace All("\\d","*") The numeric characters are replaced by asterisks. Similarly, you can use the above commands to replace the corresponding numbers with other required numbers.
以下以一个具体的实施例进行说明:The following is explained in a specific embodiment:
如果预定义的敏感数据为138********、185********等众多手机号码类型中一种,此时如果从政府网站爬取相应的数据内容后,用138********或者185********去匹配爬取的数据内容,当数字和位数完全匹配爬取的数据内容后,则将相应的内容作为待脱敏字段。此时再将获取的待脱敏字段与解析后脱敏规则中的字段类型进行匹配,则选择与该字段类型对应的脱敏动作。举例而言,此时对应的脱敏动作为将相应的待脱敏字段字符替换,即通过replace命令将目标内容中的手机号码全部替换成预定字符。同样的,如果对应的脱敏动作为数据随机化变换,则将目标内容中的手机号码进行数据的随机替代。If the predefined sensitive data is one of many mobile phone number types such as 138********, 185********, etc., if you climb the corresponding data content from the government website, use 138******** or 185******** to match the crawled data content, when the number and digits exactly match the crawled data content, then the corresponding content is to be desensitized Field. At this time, the acquired desensitization field is matched with the field type in the post-parsing desensitization rule, and then the desensitization action corresponding to the field type is selected. For example, the corresponding desensitization action at this time replaces the corresponding to-desensitization field character, that is, replaces the mobile phone number in the target content with a predetermined character by the replace command. Similarly, if the corresponding desensitization action is a data randomization transformation, the mobile phone number in the target content is randomly replaced with data.
步骤S405,获取脱敏处理后的内容。这样,用户在移动终端上浏览的内容即是经过脱敏处理后的内容,本实施例中,所述移动终端可以是移动电话、智能电话、笔记本电脑、数字广播接收器、PDA(个人数字助理)、PAD(平板电脑)、PMP(便携式多媒体播放器)、导航装置、车载装置等等的可移动设备,以及诸如数字TV、台式计算机、笔记本、服务器等等的固定终端。Step S405, the content after the desensitization process is acquired. In this way, the content that the user browses on the mobile terminal is the desensitized content. In this embodiment, the mobile terminal may be a mobile phone, a smart phone, a notebook computer, a digital broadcast receiver, or a PDA (personal digital assistant). A mobile device such as a PAD (Tablet), a PMP (Portable Multimedia Player), a navigation device, an in-vehicle device, and the like, and a fixed terminal such as a digital TV, a desktop computer, a notebook, a server, and the like.
通过上述步骤S401-405,本申请所提出的脱敏方法,首先,接收用于脱敏规则解析的jar包;其次,根据输入的参数类型遍历缓存中的脱敏规则表获取相应的脱敏规则;再次,获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;然后,依据所述解析后的脱敏规则对目标内容进行脱敏处理;最后,获取脱敏处理后的内容。这样,可以快速的实现目标内容的脱敏需求。Through the above steps S401-405, the desensitization method proposed by the present application firstly receives a jar package for desensitization rule analysis; secondly, traverses the desensitization rule table in the cache according to the input parameter type to obtain a corresponding desensitization rule. And again, obtaining the target content, and acquiring the to-be desensitized field in the target content according to the predefined sensitive data; and then desensitizing the target content according to the parsed desensitization rule; finally, obtaining the desensitization process Content. In this way, the desensitization requirement of the target content can be quickly achieved.
上述本申请实施例序号仅仅为了描述,不代表实施例的优劣。The serial numbers of the embodiments of the present application are merely for the description, and do not represent the advantages and disadvantages of the embodiments.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到上述实施例方法可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解,本申请的技术方案本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质(如ROM/RAM、磁碟、光盘)中,包括若干指令用以使得一台终端设备(可以是手机,计算机,服务器,空调器,或者网络设备等)执行本申请各个实施例所述的方法。Through the description of the above embodiments, those skilled in the art can clearly understand that the foregoing embodiment method can be implemented by means of software plus a necessary general hardware platform, and of course, can also be through hardware, but in many cases, the former is better. Implementation. Based on such understanding, the technical solution of the present application, which is essential or contributes to the prior art, may be embodied in the form of a software product stored in a storage medium (such as ROM/RAM, disk, The optical disc includes a number of instructions for causing a terminal device (which may be a mobile phone, a computer, a server, an air conditioner, or a network device, etc.) to perform the methods described in various embodiments of the present application.
以上仅为本申请的优选实施例,并非因此限制本申请的专利范围,凡是利用本申请说明书及附图内容所作的等效结构或等效流程变换,或直接或间接运用在其他相关的技术领域,均同理包括在本申请的专利保护范围内。The above is only a preferred embodiment of the present application, and is not intended to limit the scope of the patent application, and the equivalent structure or equivalent process transformations made by the specification and the drawings of the present application, or directly or indirectly applied to other related technical fields. The same is included in the scope of patent protection of this application.

Claims (28)

  1. 一种脱敏方法,应用于应用服务器,其特征在于,所述方法包括:A desensitization method is applied to an application server, and the method includes:
    接收用于脱敏规则解析的jar包;Receiving a jar package for desensitization rule parsing;
    获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;Obtaining the target content, and obtaining the to-be desensitized field in the target content according to the predefined sensitive data;
    利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则;Demyimating the desensitization rule by using the jar package to obtain the desensitized rule after parsing;
    依据所述解析后的脱敏规则对所述目标内容中待脱敏字段进行脱敏处理;及Desensitizing the to-be desensitized field in the target content according to the parsed desensitization rule; and
    获取脱敏处理后的内容。Get the desensitized content.
  2. 如权利要求1所述的脱敏方法,其特征在于,所述根据预定义的敏感数据获取目标内容中的待脱敏字段的步骤还包括:The desensitization method according to claim 1, wherein the step of acquiring the to-be desensitized field in the target content according to the predefined sensitive data further comprises:
    依次从预定义的敏感数据中选择敏感数据,根据所述敏感数据及敏感数据的长度遍历目标内容,当存在与敏感数据相同的内容,则将此内容作为目标内容的待脱敏字段。The sensitive data is sequentially selected from the predefined sensitive data, and the target content is traversed according to the length of the sensitive data and the sensitive data. When there is the same content as the sensitive data, the content is used as a desensitization field of the target content.
  3. 如权利要求1所述的脱敏方法,其特征在于,所述解析后的脱敏规则包括字段类型和所述字段类型对应的脱敏动作。The desensitization method according to claim 1, wherein the parsed desensitization rule comprises a field type and a desensitization action corresponding to the field type.
  4. 如权利要求1所述的脱敏方法,其特征在于,所述利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则的步骤还包括:The desensitization method according to claim 1, wherein the step of parsing the desensitization rule by using the jar package to obtain the resolved desensitization rule further comprises:
    建立所述字段类型和脱敏动作对应的脱敏规则表。A desensitization rule table corresponding to the field type and the desensitization action is established.
  5. 如权利要求4所述的脱敏方法,其特征在于,所述依据所述解析后的脱敏规则对所述目标内容中待脱敏字段进行脱敏处理的步骤包括:The desensitization method according to claim 4, wherein the step of desensitizing the desensitization field in the target content according to the parsed desensitization rule comprises:
    将所述待脱敏字段与所述脱敏规则表中的字段类型进行匹配;Matching the to-be desensitized field with a field type in the desensitization rule table;
    若所述待脱敏字段与所述脱敏规则表中的字段类型匹配,则选择对应的脱敏动作。If the to-be desensitization field matches the field type in the desensitization rule table, the corresponding desensitization action is selected.
  6. 如权利要求3所述的脱敏方法,其特征在于,所述脱敏动作包括数据替换、字符替换、数据重排和数据随机化变换。The desensitization method according to claim 3, wherein the desensitization action comprises data replacement, character replacement, data rearrangement, and data randomization transformation.
  7. 如权利要求6所述的脱敏方法,其特征在于,所述述数据替换或者字 符替换通过调用String类的replace All方法实现。The desensitization method according to claim 6, wherein said data replacement or character replacement is implemented by calling a replace All method of a String class.
  8. 一种应用服务器,其特征在于,所述应用服务器包括存储器、处理器,所述存储器上存储有可在所述处理器上运行的脱敏程序,所述脱敏程序被所述处理器执行时实现如下步骤:An application server, comprising: a memory, a processor, wherein the memory stores a desensitization program executable on the processor, when the desensitization program is executed by the processor Implement the following steps:
    接收用于脱敏规则解析的jar包;Receiving a jar package for desensitization rule parsing;
    获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;Obtaining the target content, and obtaining the to-be desensitized field in the target content according to the predefined sensitive data;
    利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则;Demyimating the desensitization rule by using the jar package to obtain the desensitized rule after parsing;
    依据所述解析后的脱敏规则对所述目标内容中的待脱敏字段进行脱敏处理;及Desensitizing the to-be desensitized field in the target content according to the parsed desensitization rule; and
    获取脱敏处理后的内容。Get the desensitized content.
  9. 如权利要求8所述的应用服务器,其特征在于,所述处理器还用于:依次从预定义的敏感数据中选择敏感数据,根据所述敏感数据及敏感数据的长度遍历目标内容,当存在与敏感数据相同的内容,则将此内容作为目标内容的待脱敏字段。The application server according to claim 8, wherein the processor is further configured to: sequentially select sensitive data from the predefined sensitive data, and traverse the target content according to the length of the sensitive data and the sensitive data, when present The content that is the same as the sensitive data is used as the desensitization field of the target content.
  10. 如权利要求8所述的应用服务器,其特征在于,所述解析后的脱敏规则包括字段类型和所述字段类型对应的脱敏动作。The application server according to claim 8, wherein the parsed desensitization rule comprises a field type and a desensitization action corresponding to the field type.
  11. 如权利要求8所述的应用服务器,其特征在于,所述利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则的步骤还包括:The application server according to claim 8, wherein the step of parsing the desensitization rule by using the jar package to obtain the resolved desensitization rule further comprises:
    建立所述字段类型和脱敏动作对应的脱敏规则表。A desensitization rule table corresponding to the field type and the desensitization action is established.
  12. 如权利要求11所述的应用服务器,其特征在于,所述依据所述解析后的脱敏规则对所述目标内容中待脱敏字段进行脱敏处理的步骤包括:The application server according to claim 11, wherein the step of desensitizing the desensitization field in the target content according to the parsed desensitization rule comprises:
    将所述待脱敏字段与所述脱敏规则表中的字段类型进行匹配;Matching the to-be desensitized field with a field type in the desensitization rule table;
    若所述待脱敏字段与所述脱敏规则表中的字段类型匹配,则选择对应的脱敏动作。If the to-be desensitization field matches the field type in the desensitization rule table, the corresponding desensitization action is selected.
  13. 如权利要求10所述的应用服务器,其特征在于,所述脱敏动作包括数据替换、字符替换、数据重排和数据随机化变换。The application server of claim 10 wherein said desensitization action comprises data replacement, character replacement, data rearrangement, and data randomization transformation.
  14. 如权利要求13所述的应用服务器,其特征在于,所述述数据替换或者字符替换通过调用String类的replace All方法实现。The application server according to claim 13, wherein said data replacement or character replacement is implemented by calling a replace All method of a String class.
  15. 一种脱敏程序,其特征在于,所述脱敏程序包括:A desensitization program, characterized in that the desensitization program comprises:
    接收模块,用于接收用于脱敏规则解析的jar包;a receiving module, configured to receive a jar package for desensitization rule parsing;
    第一获取模块,用于获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;a first obtaining module, configured to acquire target content, and obtain a to-be desensitized field in the target content according to the predefined sensitive data;
    解析模块,用于利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则;a parsing module, configured to parse the desensitization rule by using the jar package to obtain a desensitized rule after parsing;
    脱敏处理模块,用于依据所述解析后的脱敏规则对所述目标内容中待脱敏字段进行脱敏处理;及a desensitization processing module, configured to desensitize the to-be desensitized field in the target content according to the parsed desensitization rule; and
    第二获取模块,用于获取脱敏处理后的内容。The second obtaining module is configured to obtain the desensitized content.
  16. 如权利要求15所述的脱敏程序,其特征在于,所述第一获取模块,具体用于:The desensitization program according to claim 15, wherein the first obtaining module is specifically configured to:
    依次从预定义的敏感数据中选择敏感数据,根据所述敏感数据及敏感数据的长度遍历目标内容,当存在与敏感数据相同的内容,则将此内容作为目标内容的待脱敏字段。The sensitive data is sequentially selected from the predefined sensitive data, and the target content is traversed according to the length of the sensitive data and the sensitive data. When there is the same content as the sensitive data, the content is used as a desensitization field of the target content.
  17. 如权利要求15所述的脱敏程序,其特征在于,所述解析后的脱敏规则包括字段类型和所述字段类型对应的脱敏动作。The desensitization program according to claim 15, wherein said parsed desensitization rule comprises a field type and a desensitization action corresponding to said field type.
  18. 如权利要求15所述的脱敏程序,其特征在于,所述解析模块还用于:The desensitization program according to claim 15, wherein the parsing module is further configured to:
    建立所述字段类型和脱敏动作对应的脱敏规则表。A desensitization rule table corresponding to the field type and the desensitization action is established.
  19. 如权利要求18所述的脱敏程序,其特征在于,所述脱敏处理模块,具体用于:The desensitization process according to claim 18, wherein the desensitization processing module is specifically configured to:
    将所述待脱敏字段与所述脱敏规则表中的字段类型进行匹配;Matching the to-be desensitized field with a field type in the desensitization rule table;
    若所述待脱敏字段与所述脱敏规则表中的字段类型匹配,则选择对应的脱敏动作。If the to-be desensitization field matches the field type in the desensitization rule table, the corresponding desensitization action is selected.
  20. 如权利要求17所述的脱敏程序,其特征在于,所述脱敏动作包括数 据替换、字符替换、数据重排和数据随机化变换。The desensitization procedure of claim 17 wherein said desensitization action comprises data replacement, character replacement, data rearrangement, and data randomization transformation.
  21. 如权利要求20所述的脱敏程序,其特征在于,所述述数据替换或者字符替换通过调用String类的replace All方法实现。The desensitization program according to claim 20, wherein said data replacement or character replacement is implemented by calling a replace All method of a String class.
  22. 一种计算机可读存储介质,所述计算机可读存储介质存储有脱敏程序,所述脱敏程序可被至少一个处理器执行,以使所述至少一个处理器执行如下步骤:A computer readable storage medium storing a desensitization program, the desensitization program being executable by at least one processor to cause the at least one processor to perform the following steps:
    接收用于脱敏规则解析的jar包;Receiving a jar package for desensitization rule parsing;
    获取目标内容,并根据预定义的敏感数据获取目标内容中的待脱敏字段;Obtaining the target content, and obtaining the to-be desensitized field in the target content according to the predefined sensitive data;
    利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则;Demyimating the desensitization rule by using the jar package to obtain the desensitized rule after parsing;
    依据所述解析后的脱敏规则对所述目标内容中待脱敏字段进行脱敏处理;及Desensitizing the to-be desensitized field in the target content according to the parsed desensitization rule; and
    获取脱敏处理后的内容。Get the desensitized content.
  23. 如权利要求22所述的计算机可读存储介质,其特征在于,所述根据预定义的敏感数据获取目标内容中的待脱敏字段的步骤还包括:The computer readable storage medium according to claim 22, wherein the step of acquiring the to-be desensitized field in the target content according to the predefined sensitive data further comprises:
    依次从预定义的敏感数据中选择敏感数据,根据所述敏感数据及敏感数据的长度遍历目标内容,当存在与敏感数据相同的内容,则将此内容作为目标内容的待脱敏字段。The sensitive data is sequentially selected from the predefined sensitive data, and the target content is traversed according to the length of the sensitive data and the sensitive data. When there is the same content as the sensitive data, the content is used as a desensitization field of the target content.
  24. 如权利要求22所述的计算机可读存储介质,其特征在于,所述解析后的脱敏规则包括字段类型和所述字段类型对应的脱敏动作。The computer readable storage medium of claim 22, wherein the parsed desensitization rule comprises a field type and a desensitization action corresponding to the field type.
  25. 如权利要求22所述的计算机可读存储介质,其特征在于,所述利用所述jar包对所述脱敏规则进行解析以获取解析后的脱敏规则的步骤还包括:The computer readable storage medium according to claim 22, wherein the step of parsing the desensitization rule with the jar package to obtain the resolved desensitization rule further comprises:
    建立所述字段类型和脱敏动作对应的脱敏规则表。A desensitization rule table corresponding to the field type and the desensitization action is established.
  26. 如权利要求25所述的计算机可读存储介质,其特征在于,所述依据所述解析后的脱敏规则对所述目标内容中待脱敏字段进行脱敏处理的步骤包括:The computer readable storage medium according to claim 25, wherein the step of desensitizing the desensitization field in the target content according to the parsed desensitization rule comprises:
    将所述待脱敏字段与所述脱敏规则表中的字段类型进行匹配;Matching the to-be desensitized field with a field type in the desensitization rule table;
    若所述待脱敏字段与所述脱敏规则表中的字段类型匹配,则选择对应的脱敏动作。If the to-be desensitization field matches the field type in the desensitization rule table, the corresponding desensitization action is selected.
  27. 如权利要求24所述的计算机可读存储介质,其特征在于,所述脱敏动作包括数据替换、字符替换、数据重排和数据随机化变换。The computer readable storage medium of claim 24, wherein the desensitization action comprises data replacement, character replacement, data rearrangement, and data randomization transformation.
  28. 如权利要求27所述的计算机可读存储介质,其特征在于,所述述数据替换或者字符替换通过调用String类的replace All方法实现。The computer readable storage medium according to claim 27, wherein said data replacement or character replacement is implemented by calling a replace All method of a String class.
PCT/CN2018/089712 2018-01-03 2018-06-03 Desensitization method and procedure, application server and computer readable storage medium WO2019134339A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201810003337.6A CN108171069A (en) 2018-01-03 2018-01-03 Desensitization method, application server and computer readable storage medium
CN201810003337.6 2018-01-03

Publications (1)

Publication Number Publication Date
WO2019134339A1 true WO2019134339A1 (en) 2019-07-11

Family

ID=62517317

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2018/089712 WO2019134339A1 (en) 2018-01-03 2018-06-03 Desensitization method and procedure, application server and computer readable storage medium

Country Status (2)

Country Link
CN (1) CN108171069A (en)
WO (1) WO2019134339A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116756777A (en) * 2023-08-14 2023-09-15 上海观安信息技术股份有限公司 Data desensitizing method and device, computer equipment and readable storage medium

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109308258A (en) * 2018-08-21 2019-02-05 中国平安人寿保险股份有限公司 Building method, device, computer equipment and the storage medium of test data
CN109409121B (en) * 2018-09-07 2022-10-11 创新先进技术有限公司 Desensitization processing method and device and server
CN109472847A (en) * 2018-10-16 2019-03-15 平安普惠企业管理有限公司 A kind of image processing method, system and terminal device
CN109614816A (en) * 2018-11-19 2019-04-12 平安科技(深圳)有限公司 Data desensitization method, device and storage medium
CN111241133A (en) * 2018-11-29 2020-06-05 中国移动通信集团重庆有限公司 Sensitive data identification method, device and equipment and computer storage medium
CN109981619A (en) * 2019-03-13 2019-07-05 泰康保险集团股份有限公司 Data capture method, device, medium and electronic equipment
CN110348239B (en) * 2019-06-13 2023-10-27 张建军 Desensitization rule configuration method, data desensitization method, system and computer equipment
CN110727954B (en) * 2019-09-19 2023-08-29 平安科技(深圳)有限公司 Data authorization desensitization automation method, device and storage medium
CN112395645A (en) * 2020-11-30 2021-02-23 中国民航信息网络股份有限公司 Data desensitization processing method and device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106203170A (en) * 2016-07-19 2016-12-07 北京同余科技有限公司 The Database Dynamic desensitization method of servicing of based role and system
CN106649532A (en) * 2016-10-31 2017-05-10 电子科技大学 Data desensitization method for address information
CN107145799A (en) * 2017-05-04 2017-09-08 山东浪潮云服务信息科技有限公司 A kind of data desensitization method and device
CN107180200A (en) * 2017-04-20 2017-09-19 北京同余科技有限公司 Data file customizable desensitization method and system

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106203145A (en) * 2016-08-04 2016-12-07 北京网智天元科技股份有限公司 Data desensitization method and relevant device
CN107403111A (en) * 2017-08-10 2017-11-28 中国民航信息网络股份有限公司 HIVE data desensitization method and device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106203170A (en) * 2016-07-19 2016-12-07 北京同余科技有限公司 The Database Dynamic desensitization method of servicing of based role and system
CN106649532A (en) * 2016-10-31 2017-05-10 电子科技大学 Data desensitization method for address information
CN107180200A (en) * 2017-04-20 2017-09-19 北京同余科技有限公司 Data file customizable desensitization method and system
CN107145799A (en) * 2017-05-04 2017-09-08 山东浪潮云服务信息科技有限公司 A kind of data desensitization method and device

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116756777A (en) * 2023-08-14 2023-09-15 上海观安信息技术股份有限公司 Data desensitizing method and device, computer equipment and readable storage medium
CN116756777B (en) * 2023-08-14 2023-11-03 上海观安信息技术股份有限公司 Data desensitizing method and device, computer equipment and readable storage medium

Also Published As

Publication number Publication date
CN108171069A (en) 2018-06-15

Similar Documents

Publication Publication Date Title
WO2019134339A1 (en) Desensitization method and procedure, application server and computer readable storage medium
WO2019140828A1 (en) Electronic apparatus, method for querying logs in distributed system, and storage medium
WO2020233219A1 (en) Abnormal problem locating method and device, apparatus and computer readable storage medium
WO2020186786A1 (en) File processing method and apparatus, computer device and storage medium
WO2020134657A1 (en) System log desensitization method, desensitization system, computer device, and storage medium
US11386224B2 (en) Method and system for managing personal digital identifiers of a user in a plurality of data elements
WO2019071967A1 (en) Method and program for masking sensitive information, application server, and computer readable storage medium
CN111400308B (en) Processing method of cache data, electronic device and readable storage medium
WO2019019640A1 (en) Simulated processing method and apparatus for order information, and storage medium and computer device
WO2019196304A1 (en) Electronic apparatus, credit feedback message parsing method, and storage medium
CN109829287A (en) Api interface permission access method, equipment, storage medium and device
WO2019085463A1 (en) Department demand recommendation method, application server, and computer-readable storage medium
CN112052138A (en) Service data quality detection method and device, computer equipment and storage medium
CN111177113B (en) Data migration method, device, computer equipment and storage medium
CN111651468A (en) Data updating method and device based on SQL analysis, electronic equipment and storage medium
WO2019136812A1 (en) Electronic device, data calling log generation and query method, and storage medium
WO2019071968A1 (en) Salary calculation method, application server, and computer readable storage medium
CN115757495A (en) Cache data processing method and device, computer equipment and storage medium
CN111064725A (en) Code zero intrusion interface verification method and device
CN112328631A (en) Production fault analysis method and device, electronic equipment and storage medium
CN112328486A (en) Interface automation test method and device, computer equipment and storage medium
WO2019169771A1 (en) Electronic device, access instruction information acquisition method and storage medium
WO2019071958A1 (en) Cloud computing-based salary calculation method, application server, and computer readable storage medium
US20210397600A1 (en) Ensuring consistent metadata across computing devices
WO2019071907A1 (en) Method for identifying help information based on operation page, and application server

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18898035

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 01/10/2020)

122 Ep: pct application non-entry in european phase

Ref document number: 18898035

Country of ref document: EP

Kind code of ref document: A1