[go: up one dir, main page]

CN108664812A - Information desensitization method, device and system - Google Patents

Information desensitization method, device and system Download PDF

Info

Publication number
CN108664812A
CN108664812A CN201810456793.6A CN201810456793A CN108664812A CN 108664812 A CN108664812 A CN 108664812A CN 201810456793 A CN201810456793 A CN 201810456793A CN 108664812 A CN108664812 A CN 108664812A
Authority
CN
China
Prior art keywords
desensitization
field
desensitized
business
sensitive
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810456793.6A
Other languages
Chinese (zh)
Other versions
CN108664812B (en
Inventor
温涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Advanced Nova Technology Singapore Holdings Ltd
Original Assignee
Alibaba Group Holding Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alibaba Group Holding Ltd filed Critical Alibaba Group Holding Ltd
Priority to CN201810456793.6A priority Critical patent/CN108664812B/en
Priority to CN202211730981.6A priority patent/CN115935428A/en
Publication of CN108664812A publication Critical patent/CN108664812A/en
Application granted granted Critical
Publication of CN108664812B publication Critical patent/CN108664812B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • G06F21/6254Protecting personal data, e.g. for financial or medical purposes by anonymising data, e.g. decorrelating personal data from the owner's identification

Landscapes

  • Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Databases & Information Systems (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Medical Informatics (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The embodiment of the application provides an information desensitization method, an information desensitization device and a system, wherein the information desensitization device corresponds to a service system, and the method comprises the following steps: receiving a desensitization request sent by a service system; the desensitization request carries a field to be desensitized and a target service type to which the field to be desensitized belongs; searching a desensitization rule corresponding to the field to be desensitized according to the target service type and the field to be desensitized; and performing desensitization processing on the field to be desensitized by using the desensitization rule.

Description

信息脱敏方法、装置及系统Information desensitization method, device and system

技术领域technical field

本申请涉及信息处理领域,尤其涉及一种信息脱敏方法、装置及系统。The present application relates to the field of information processing, and in particular to an information desensitization method, device and system.

背景技术Background technique

随着信息技术的快速发展,手机、平板电脑、计算机等终端设备在人们的生活、工作中得到了广泛的应用,越来越多的用户开始使用终端设备在线办理业务。With the rapid development of information technology, terminal devices such as mobile phones, tablet computers, and computers have been widely used in people's lives and work, and more and more users have begun to use terminal devices to handle business online.

用户使用终端设备在线办理业务时,大都是通过安装在终端设备上的业务系统进行业务办理。当用户使用业务系统进行业务办理时,一般需要在业务系统进行注册、登录、办理业务等多个环节,并且在每个环节中,一般都会填入用户个人信息,例如,手机号码、密码、身份证号、邮箱等信息。这些个人信息中,会存在一些用户的隐私信息等敏感数据,而在进行系统设计或者维护时,往往需要打印一些用户信息日志进行参考,在进行日志打印时,日志中设计到的用户隐私数据必须要经过脱敏处理后才可以打印。When a user handles business online using a terminal device, most of the business is handled through the business system installed on the terminal device. When a user uses the business system to conduct business, it generally needs to register, log in, and handle business in the business system, and in each link, the user's personal information is generally filled in, such as mobile phone number, password, identity ID number, email address, etc. Among these personal information, there will be some sensitive data such as user privacy information. When designing or maintaining the system, it is often necessary to print some user information logs for reference. When printing the log, the user privacy data designed in the log must be It can be printed after desensitization treatment.

因此,亟需提出一种信息脱敏方法,以对业务系统中涉及到的敏感信息进行脱敏。Therefore, it is urgent to propose an information desensitization method to desensitize the sensitive information involved in the business system.

发明内容Contents of the invention

本申请实施例的目的是提供一种信息脱敏方法、装置及系统,该方法应用于业务系统对应的信息脱敏装置,可以对业务系统下的各个业务类型中涉及到的敏感字段进行脱敏;并且,接收到的业务系统发送的脱敏请求中携带有待脱敏字段和待脱敏字段对所属的目标业务类型,这样根据待脱敏字段和其所属的目标业务类型,可以唯一确定出待脱敏字段对应的脱敏规则,使得脱敏的准确性更高。The purpose of the embodiment of the present application is to provide an information desensitization method, device and system, the method is applied to the information desensitization device corresponding to the business system, and can desensitize the sensitive fields involved in each business type under the business system and, the desensitization request sent by the received business system carries the field to be desensitized and the target business type to which the field to be desensitized belongs, so that the field to be desensitized and the target business type to which it belongs can be uniquely determined. The desensitization rules corresponding to the desensitization fields make desensitization more accurate.

为解决上述技术问题,本申请实施例是这样实现的:In order to solve the above technical problems, the embodiment of the present application is implemented as follows:

本申请实施例提供了一种信息脱敏方法,应用于业务系统对应的信息脱敏装置,所述方法包括:An embodiment of the present application provides an information desensitization method, which is applied to an information desensitization device corresponding to a business system, and the method includes:

接收业务系统发送的脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;receiving the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs;

根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;Searching for a desensitization rule corresponding to the field to be desensitized according to the target service type and the field to be desensitized;

使用所述脱敏规则对所述待脱敏字段进行脱敏处理。The desensitization process is performed on the field to be desensitized by using the desensitization rule.

本申请实施例还提供了一种信息脱敏装置,所述装置包括:The embodiment of the present application also provides an information desensitization device, which includes:

接收模块,接收业务系统发送的脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;所述信息脱敏装置与所述业务系统对应;The receiving module receives the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target business type to which the field to be desensitized belongs; the information desensitization device corresponds to the business system ;

查找模块,根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;A search module, searching for a desensitization rule corresponding to the field to be desensitized according to the target business type and the field to be desensitized;

脱敏模块,使用所述脱敏规则对所述待脱敏字段进行脱敏处理。A desensitization module, which uses the desensitization rule to desensitize the field to be desensitized.

本申请实施例还提供了一种信息脱敏系统,包括:业务系统以及信息脱敏装置;The embodiment of the present application also provides an information desensitization system, including: a business system and an information desensitization device;

所述业务系统,用于向所述信息脱敏装置发送脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;The business system is configured to send a desensitization request to the information desensitization device; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs;

信息脱敏装置,用于接收所述脱敏请求,以及根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;并使用所述脱敏规则对所述待脱敏字段进行脱敏处理。An information desensitization device, configured to receive the desensitization request, and according to the target service type and the field to be desensitized, find a desensitization rule corresponding to the field to be desensitized; and use the desensitization rule to The field to be desensitized is desensitized.

本申请实施例还提供了一种信息脱敏设备,包括:The embodiment of the present application also provides an information desensitization device, including:

处理器;以及processor; and

被安排成存储计算机可执行指令的存储器,所述可执行指令在被执行时使所述处理器:A memory arranged to store computer-executable instructions that, when executed, cause the processor to:

接收业务系统发送的脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;receiving the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs;

根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;Searching for a desensitization rule corresponding to the field to be desensitized according to the target service type and the field to be desensitized;

使用所述脱敏规则对所述待脱敏字段进行脱敏处理。The desensitization process is performed on the field to be desensitized by using the desensitization rule.

本申请实施例还提供了一种存储介质,用于存储计算机可执行指令,所述可执行指令在被执行时实现以下流程:The embodiment of the present application also provides a storage medium for storing computer-executable instructions, and the executable instructions implement the following process when executed:

接收业务系统发送的脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;receiving the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs;

根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;Searching for a desensitization rule corresponding to the field to be desensitized according to the target service type and the field to be desensitized;

使用所述脱敏规则对所述待脱敏字段进行脱敏处理。The desensitization process is performed on the field to be desensitized by using the desensitization rule.

通过本实施例中的技术方案,可以对业务系统下的各个业务类型中涉及到的敏感字段进行脱敏;并且,接收到的业务系统发送的脱敏请求中携带有待脱敏字段和待脱敏字段对所属的目标业务类型,这样根据待脱敏字段和其所属的目标业务类型,可以唯一确定出待脱敏字段对应的脱敏规则,使得脱敏的准确性更高。Through the technical solution in this embodiment, the sensitive fields involved in each business type under the business system can be desensitized; and the received desensitization request sent by the business system carries the field to be desensitized and the field to be desensitized The target business type to which the field pair belongs, so that the desensitization rule corresponding to the field to be desensitized can be uniquely determined according to the field to be desensitized and the target business type to which it belongs, so that the accuracy of desensitization is higher.

附图说明Description of drawings

为了更清楚地说明本申请实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本申请中记载的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present application or the prior art, the following will briefly introduce the drawings that need to be used in the description of the embodiments or the prior art. Obviously, the accompanying drawings in the following description are only These are some embodiments described in this application. Those skilled in the art can also obtain other drawings based on these drawings without any creative effort.

图1为本申请实施例提供的信息脱敏方法的第一种方法流程图;Fig. 1 is the flow chart of the first method of the information desensitization method provided by the embodiment of the present application;

图2为本申请实施例提供的信息脱敏方法的第二种方法流程图;FIG. 2 is a flow chart of the second method of the information desensitization method provided in the embodiment of the present application;

图3为本申请实施例提供的信息脱敏装置的模块组成示意图;Fig. 3 is a schematic diagram of the module composition of the information desensitization device provided by the embodiment of the present application;

图4为本申请实施例提供的信息脱敏系统的结构示意图;Fig. 4 is a schematic structural diagram of the information desensitization system provided by the embodiment of the present application;

图5为本申请实施例提供的信息脱敏方法的第三种方法流程图;FIG. 5 is a flow chart of the third method of the information desensitization method provided in the embodiment of the present application;

图6为本申请实施例提供的信息脱敏设备的结构示意图。FIG. 6 is a schematic structural diagram of an information desensitization device provided in an embodiment of the present application.

具体实施方式Detailed ways

为了使本技术领域的人员更好地理解本申请中的技术方案,下面将结合本申请实施例中的附图,对本申请实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本申请一部分实施例,而不是全部的实施例。基于本申请中的实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都应当属于本申请保护的范围。In order to enable those skilled in the art to better understand the technical solutions in the present application, the technical solutions in the embodiments of the present application will be clearly and completely described below in conjunction with the drawings in the embodiments of the present application. Obviously, the described The embodiments are only some of the embodiments of the present application, but not all of them. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without creative efforts shall fall within the scope of protection of this application.

本申请实施例提供了一种信息脱敏方法,该方法应用于业务系统对应的信息脱敏装置,可以对业务系统中各个功能模块对应的业务类型所涉及到的敏感信息进行脱敏,通用于业务系统的各种业务类型。具体的,在本申请实施例中,信息脱敏装置为独立于业务系统之外单独设置的装置。The embodiment of the present application provides an information desensitization method, which is applied to the information desensitization device corresponding to the business system, and can desensitize the sensitive information involved in the business type corresponding to each functional module in the business system, and is generally used in Various business types of the business system. Specifically, in this embodiment of the application, the information desensitization device is a device that is set independently from the business system.

图1为本申请实施例提供的信息脱敏方法的第一种方法流程图,图1所示的方法,至少包括如下步骤:Figure 1 is a flow chart of the first method of the information desensitization method provided in the embodiment of the present application. The method shown in Figure 1 at least includes the following steps:

步骤102,接收业务系统发送的脱敏请求;其中,该脱敏请求中携带有待脱敏字段和待脱敏字段所属的目标业务类型。Step 102, receiving a desensitization request sent by the service system; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs.

具体的,在上述步骤102中接收业务系统发送的脱敏请求,可以是接收业务系统的任意一个功能模块发送的脱敏请求。一般的,业务系统中不同的功能模块用于处理不同的业务类型,例如,业务系统的会员注册模块,用于处理会员注册类型的业务;业务系统的登录模块,用于处理用户会员登录类型的业务。Specifically, the desensitization request sent by the receiving business system in step 102 above may be a desensitization request sent by any functional module of the receiving business system. Generally, different functional modules in the business system are used to handle different types of business, for example, the member registration module of the business system is used to handle the business of the member registration type; the login module of the business system is used to handle the user member login type business.

在一种具体实施方式中,上述待脱敏字段一般包括两部分内容,待脱敏字段的前半部分用于描述该字段的类型,例如,手机号、邮箱账号、密码等,该部分主要是用于查找待脱敏字段对应的脱敏规则;待脱敏字段的后半部分为需要进行脱敏的具体字段,例如,该部分内容可以为具体的手机号码等,当通过前半部分查找到脱敏规则后,使用查找到的脱敏规则对该部分具体字段进行脱敏处理。In a specific implementation, the above-mentioned field to be desensitized generally includes two parts, and the first half of the field to be desensitized is used to describe the type of the field, for example, mobile phone number, email account, password, etc. This part is mainly used It is used to find the desensitization rule corresponding to the field to be desensitized; the second half of the field to be desensitized is the specific field that needs to be desensitized, for example, the content of this part can be a specific mobile phone number, etc., when the desensitized After the rules, use the found desensitization rules to desensitize the specific fields.

为便于理解,下述将举例进行说明。For ease of understanding, the following examples will be used for illustration.

例如,脱敏请求中携带的待脱敏字段可以为:“手机号:18958186671”或者“邮箱:abcdefg@126.com”等等。For example, the field to be desensitized carried in the desensitization request can be: "Mobile phone number: 18958186671" or "Email: abcdefg@126.com" and so on.

上述目标业务类型可以为业务系统中任意一个功能模块所处处理的业务类型。The above target business type may be the business type processed by any functional module in the business system.

步骤104,根据目标业务类型和待脱敏字段,查找待脱敏字段对应的脱敏规则。Step 104, according to the target service type and the field to be desensitized, look up the desensitization rule corresponding to the field to be desensitized.

其中,在本申请实施例中,查找与待脱敏字段对应的脱敏规则,实际上是查找与待脱敏字段中的字段类型对应的脱敏规则。例如,可以是查找手机号码、邮箱账号对应的脱敏规则。Wherein, in the embodiment of the present application, searching for the desensitization rule corresponding to the field to be desensitized is actually searching for the desensitization rule corresponding to the field type in the field to be desensitized. For example, it can be to search for desensitization rules corresponding to mobile phone numbers and email accounts.

具体的,在本申请实施例中,上述步骤104,根据目标业务类型和待脱敏字段,查找待脱敏字段对应的脱敏规则,具体包括如下步骤:Specifically, in the embodiment of the present application, the above step 104, according to the target business type and the field to be desensitized, searches for the desensitization rule corresponding to the field to be desensitized, which specifically includes the following steps:

根据目标业务类型和待脱敏字段,从建立的业务类型、敏感字段与脱敏规则的对应关系中,查找目标业务类型下的待脱敏字段对应的脱敏规则。According to the target business type and the field to be desensitized, find the desensitization rule corresponding to the field to be desensitized under the target business type from the established correspondence between the business type, sensitive field and desensitization rule.

在一种具体实施方式中,上述对应关系中的敏感字段可以只是敏感字段的类型,例如,手机号码、邮箱账号等,可以不包括具体的敏感内容。In a specific implementation manner, the sensitive fields in the above correspondence may only be types of sensitive fields, for example, mobile phone numbers, email account numbers, etc., and may not include specific sensitive content.

在本申请实施例中,信息脱敏装置中存储有业务类型、敏感字段与脱敏规则的对应关系,当信息脱敏装置接收到业务系统发送的脱敏请求后,将该脱敏请求中携带的待脱敏字段和目标业务类型与上述对应关系进行匹配,查找上述对应关系中是否存在与待脱敏字段和目标业务类型相匹配的敏感字段和业务类型,若存在,则将该敏感字段和业务类型对应的脱敏规则确定为目标类型下的待脱敏字段对应的脱敏规则。In this embodiment of the application, the information desensitization device stores the correspondence between business types, sensitive fields, and desensitization rules. When the information desensitization device receives the desensitization request sent by the business system, it carries The field to be desensitized and the target business type are matched with the above correspondence, and whether there is a sensitive field and business type that matches the field to be desensitized and the target business type in the above correspondence, and if there is, the sensitive field and The desensitization rule corresponding to the business type is determined as the desensitization rule corresponding to the field to be desensitized under the target type.

由于,一个业务系统上可能会存在多个功能模块,每个功能模块处理不同的业务,每个业务类型对应有需要进行脱敏的敏感字段,不同业务类型可能会存在相同的敏感字段,并且针对同一个敏感字段,在不同的业务类型下所对应的脱敏规则可能不同。因此,在在本申请实施例中,在建立敏感字段与脱敏规则的对应关系时,将敏感字段所属的业务类型考虑在内,即建立的是业务类型、敏感字段与脱敏规则三者的对应关系,因此,可以唯一的确定出待脱敏字段对应的脱敏规则,从而使得确定出的待脱敏字段对应的脱敏规则的准确性较高。Because there may be multiple functional modules on a business system, each functional module handles different businesses, each business type corresponds to sensitive fields that need to be desensitized, different business types may have the same sensitive fields, and for The same sensitive field may have different desensitization rules corresponding to different business types. Therefore, in this embodiment of the application, when establishing the correspondence between sensitive fields and desensitization rules, the business type to which the sensitive fields belong is taken into consideration, that is, the relationship between the business type, sensitive fields and desensitization rules is established. Therefore, the desensitization rule corresponding to the field to be desensitized can be uniquely determined, so that the determined desensitization rule corresponding to the field to be desensitized has higher accuracy.

为了便于在采用本申请实施例提供的方法进行信息脱敏时,可以确定出待脱敏字段对应的脱敏规则,因此,在执行上述步骤102之前,本申请实施例提供的方法还包括建立业务类型、敏感字段与脱敏规则的对应关系。In order to facilitate desensitization of information using the method provided by the embodiment of the present application, the desensitization rule corresponding to the field to be desensitized can be determined. Therefore, before performing the above step 102, the method provided by the embodiment of the present application also includes establishing a business Correspondence between types, sensitive fields, and desensitization rules.

具体的,上述建立业务类型、敏感字段与脱敏规则的对应关系,具体包括如下步骤:Specifically, the establishment of the correspondence between business types, sensitive fields, and desensitization rules above includes the following steps:

确定业务系统的各个业务类型对应的敏感字段标识,以及每个敏感字段对应的脱敏规则;建立上述业务类型、上述敏感字段与上述脱敏规则的对应关系。Determine the sensitive field identification corresponding to each business type of the business system, and the desensitization rule corresponding to each sensitive field; establish the corresponding relationship between the above business type, the above sensitive field and the above desensitization rule.

具体的,针对某个业务系统,可以首先确定出该业务系统中所具有的所有的业务类型,然后,确定每个业务类型所对应的敏感字段,例如,可以是手机号码、邮箱账号、密码等;最后确定出每个敏感字段对应的脱敏规则;然后建立上述业务类型、敏感字段与脱敏规则的对应关系。Specifically, for a certain business system, you can first determine all the business types in the business system, and then determine the sensitive fields corresponding to each business type, for example, it can be mobile phone number, email account, password, etc. ;Finally determine the desensitization rules corresponding to each sensitive field; and then establish the correspondence between the above business types, sensitive fields and desensitization rules.

在一种具体实施方式中,业务类型、敏感字段与脱敏规则的对应关系可以以表格的形式表示,如表1所示。表1示出了本申请实施例中建立的业务类型、敏感字段与脱敏规则的对应关系的一种可能的形式。In a specific implementation manner, the correspondence between business types, sensitive fields, and desensitization rules may be expressed in the form of a table, as shown in Table 1. Table 1 shows a possible form of the correspondence between service types, sensitive fields and desensitization rules established in the embodiment of the present application.

在表1中,标注出每个敏感字段对应的业务类型。其中,上述表1中的“mobile_no”表示的是“手机号码”,对于会员注册业务类型下的任何手机号码都可以使用规则1进行脱敏。表1中的“email”表示的是“邮箱账号”,对于会员注册业务类型下的任何邮箱账号都可以使用规则4进行脱敏。另外,上述表1只是示例性说明,业务类型、敏感字段以及脱敏规则的具体内容并不局限于此。In Table 1, mark the business type corresponding to each sensitive field. Among them, "mobile_no" in the above Table 1 means "mobile phone number", and any mobile phone number under the membership registration business type can be desensitized using Rule 1. "email" in Table 1 means "email account", and rule 4 can be used to desensitize any email account under the membership registration business type. In addition, the above-mentioned Table 1 is only an illustration, and the specific content of the business type, sensitive fields, and desensitization rules is not limited thereto.

表1Table 1

业务类型business type 敏感字段Sensitive fields 脱敏规则desensitization rules 会员注册Sign Up mobile_nomobile_no 规则1Rule 1 会员登录Member Login mobile_nomobile_no 规则2Rule 2 会员登录Member Login emailemail 规则3Rule 3 会员注册Sign Up emailemail 规则4Rule 4

除此之外,建立的业务类型、敏感字段与脱敏规则的对应关系还可以为表2所示的形式。具体的,在表2中,可以根据业务类型对各个敏感字段进行分类,然后只需要标记出一类敏感字段对应的业务类型即可。In addition, the established correspondence between business types, sensitive fields, and desensitization rules may also be in the form shown in Table 2. Specifically, in Table 2, each sensitive field can be classified according to the business type, and then it is only necessary to mark the business type corresponding to one type of sensitive field.

若是采用表2所示的对应关系的形式,在接收到业务系统发送的脱敏请求后,可以先将该目标业务类型与上述对应关系进行匹配,查找出与目标业务类型相匹配的业务类型,然后,在将脱敏请求中的待脱敏字段与该业务类型下的各个敏感字段进行匹配,查找出与待脱敏字段相匹配的敏感字段,将与待脱敏字段相匹配的敏感字段对应的脱敏规则确定为目标业务类型下待脱敏字段对应的脱敏规则。If the corresponding relationship shown in Table 2 is used, after receiving the desensitization request sent by the business system, the target business type can be matched with the above-mentioned corresponding relationship to find out the business type that matches the target business type. Then, match the fields to be desensitized in the desensitization request with each sensitive field under the business type, find out the sensitive fields that match the fields to be desensitized, and match the sensitive fields that match the fields to be desensitized The desensitization rule of is determined as the desensitization rule corresponding to the field to be desensitized under the target business type.

表2Table 2

另外,在一种具体实施方式中,还可以建立多个表格,一个表格中存储一种业务类型下的敏感字段与脱敏规则的对应关系,然后,可以采用业务类型的标识对每个表格进行命名。这样当信息脱敏装置接收到业务系统发送的脱敏请求后,首先根据该脱敏请求中的目标业务类型查找到该目标业务类型对应的表格,然后再在该表格中查找该待脱敏字段对应的脱敏规则。In addition, in a specific implementation manner, multiple tables can also be established, and a table stores the corresponding relationship between sensitive fields and desensitization rules under a business type, and then, each table can be identified by using the business type. name. In this way, when the information desensitization device receives the desensitization request sent by the business system, it first searches for the table corresponding to the target business type according to the target business type in the desensitization request, and then searches the table for the field to be desensitized Corresponding desensitization rules.

或者,在另外一种具体实施方式中,还可以建立多个表格,一个表格存储有一个敏感字段在各个业务类型下所对应的脱敏规则,然后可以采用敏感字段对每个表格进行命名。这样,当信息脱敏装置接收到业务系统发送的脱敏请求后,首先查找到与待脱敏字段相匹配的敏感字段对应的表格,然后,再在该表格中查找目标业务类型对应的脱敏规则。Or, in another specific implementation manner, multiple tables can also be established, one table stores a desensitization rule corresponding to a sensitive field under each business type, and then each table can be named by using the sensitive field. In this way, when the information desensitization device receives the desensitization request sent by the business system, it first finds the table corresponding to the sensitive field matching the field to be desensitized, and then searches the table for the desensitization request corresponding to the target business type. rule.

上述只是列举了业务类型、敏感字段与脱敏规则的对应关系的几种可能的实现方式,当然,该对应关系的具体实现方式并不局限于此,本申请实施例不再一一列举。The foregoing only lists several possible implementations of the correspondence between business types, sensitive fields, and desensitization rules. Of course, the specific implementation of the correspondence is not limited thereto, and the embodiments of the present application will not list them one by one.

步骤106,使用上述脱敏规则对待脱敏字段进行脱敏。Step 106, desensitize the field to be desensitized by using the above desensitization rule.

在本申请实施例中,若是查找到待脱敏字段对应的脱敏规则,则使用该脱敏规则对待脱敏字段进行脱敏。In the embodiment of the present application, if the desensitization rule corresponding to the field to be desensitized is found, the desensitization rule is used to desensitize the field to be desensitized.

具体的,在本申请实施例中,各个脱敏规则使用正则表达式表示;Specifically, in the embodiment of this application, each desensitization rule is represented by a regular expression;

相应的,在步骤106中,使用脱敏规则对待脱敏字段进行脱敏,包括:Correspondingly, in step 106, use desensitization rules to desensitize the fields to be desensitized, including:

对正则表达式进行解析,确定该正则表达式所表示的含义;按照解析得到的含义对待脱敏字段进行脱敏。Analyze the regular expression to determine the meaning expressed by the regular expression; desensitize the desensitized field according to the meaning obtained by the analysis.

在本申请实施例中,可以根据正则表达式中各个符号所表示的含义,确定该正则表达式所表示的含义。In the embodiment of the present application, the meaning represented by the regular expression can be determined according to the meaning represented by each symbol in the regular expression.

为便于理解本申请实施例提供的方案,下述将举例进行说明。例如,在本申请实施例中,信息脱敏装置中存储的一种具体的业务类型、敏感字段与脱敏规则的对应关系如表3所示。In order to facilitate understanding of the solutions provided in the embodiments of the present application, the following examples will be used for illustration. For example, in the embodiment of the present application, Table 3 shows the corresponding relationship between a specific business type, sensitive fields and desensitization rules stored in the information desensitization device.

表3table 3

业务类型business type 敏感字段sensitive field 脱敏规则desensitization rules 会员注册Sign Up mobile_nomobile_no [0-9]{1}[*]{9}[0-9]{1}[0-9]{1}[*]{9}[0-9]{1} 会员登录Member Login emailemail [0-9][a-z]{1}*{9}[0-9][a-z]{1}[0-9][a-z]{1}*{9}[0-9][a-z]{1}

当信息脱敏装置接收到业务系统发送的脱敏请求中携带的业务类型为“会员注册”、携带的待脱敏字段为“mobile_no:“18958186671”时,根据上述表1中的对应关系,可以确定出在“会员注册”类型下,手机号码对应的脱敏规则为“[0-9]{1}[*]{9}[0-9]{1}”,因此,使用该脱敏规则对上述手机号码进行脱敏后,得到的字段为“1*********1”;当信息脱敏装置接收到业务系统发送的脱敏请求中携带的业务类型为“会员登录”、携带的待脱敏字段标识为“email:abcdefg@126.com,根据上述表1中的对应关系,可以确定出在“会员登录”类型下,邮箱账号对应的脱敏规则为“[0-9][a-z]{1}*{9}[0-9][a-z]{1}”,因此,使用该脱敏规则对上述邮箱账号进行脱敏后,得到的字段为“a*************m”。When the information desensitization device receives the business type in the desensitization request sent by the business system as "member registration" and the field to be desensitized as "mobile_no:"18958186671", according to the corresponding relationship in Table 1 above, it can It is determined that under the "Member Registration" type, the desensitization rule corresponding to the mobile phone number is "[0-9]{1}[*]{9}[0-9]{1}", so use this desensitization rule After desensitizing the above mobile phone number, the obtained field is "1********1"; when the information desensitization device receives the desensitization request sent by the business system, the business type carried in it is "member login ", the field to be desensitized is identified as "email:abcdefg@126.com, according to the corresponding relationship in Table 1 above, it can be determined that under the "member login" type, the desensitization rule corresponding to the email account is "[0 -9][a-z]{1}*{9}[0-9][a-z]{1}", therefore, after using this desensitization rule to desensitize the above email account, the field obtained is "a** *************m".

当然,上述表3以及根据表3所举例均是示例性说明,并不构成对本申请实施例的限定。Of course, the above Table 3 and the examples based on Table 3 are all illustrative descriptions, and do not constitute a limitation to the embodiment of the present application.

在本申请实施例中,当信息脱敏装置对待脱敏字段进行脱敏后,向业务系统发送经过脱敏处理后的字段。In the embodiment of the present application, after the information desensitization device desensitizes the field to be desensitized, it sends the desensitized field to the business system.

另外,在本申请实施例中,若是经过上述步骤104,未查找到待脱敏字段对应的脱敏规则,则信息脱敏装置向业务系统发送提示信息;其中,该提示信息用于提示不存在待脱敏字段对应的脱敏规则。In addition, in the embodiment of the present application, if the desensitization rule corresponding to the field to be desensitized is not found after the above step 104, the information desensitization device sends a prompt message to the business system; wherein, the prompt message is used to prompt that there is no The desensitization rule corresponding to the field to be desensitized.

具体的,若是在上述对应关系中未查找到目标业务类型下待脱敏字段对应的脱敏规则,则信息脱敏装置向业务系统发送提示信息,该提示信息用于提示业务系统在当前对应关系中不存在目标业务类型下该待脱敏字段对应的脱敏规则。Specifically, if the desensitization rule corresponding to the field to be desensitized under the target business type is not found in the above correspondence, the information desensitization device sends a prompt message to the business system, and the prompt message is used to prompt the business system There is no desensitization rule corresponding to the field to be desensitized under the target business type in .

当业务系统接收到信息脱敏装置发送的提示信息后,检查是否发送给信息脱敏装置的目标业务类型或者待脱敏字段是否有误。After the service system receives the prompt information sent by the information desensitization device, it checks whether the target service type or the field to be desensitized sent to the information desensitization device is wrong.

具体的,在本申请实施例中,信息脱敏装置接收到的脱敏请求中可以携带有一个待脱敏字段,也可以携带有多个待脱敏字段,本申请实施例并不对脱敏请求中携带的字段的数量进行限定。Specifically, in this embodiment of the application, the desensitization request received by the information desensitization device may carry one field to be desensitized, or may carry multiple fields to be desensitized. The number of fields carried in is limited.

另外,在本申请实施例中,当业务系统下某一个或者多个业务类型存在新增加的敏感字段时,则需要对信息脱敏装置中存储的业务类型、敏感字段与脱敏规则的对应关系进行更新,因此,本申请实施例提供的方法,还包括:In addition, in the embodiment of this application, when there are newly added sensitive fields in one or more business types under the business system, it is necessary to check the correspondence between the business types, sensitive fields and desensitization rules stored in the information desensitization device To update, therefore, the method provided in the embodiment of the present application also includes:

获取新增加的敏感字段;确定新增加的敏感字段所属的业务类型以及新增加的敏感字段对应的脱敏规则;根据新增加的敏感字段、新增加的敏感字段所属的业务类型以及新增加的敏感字段所对应的脱敏规则,更新上述对应关系。Obtain the newly added sensitive field; determine the business type to which the newly added sensitive field belongs and the desensitization rule corresponding to the newly added sensitive field; according to the newly added sensitive field, the business type to which the newly added sensitive field belongs and the newly added sensitive field The desensitization rules corresponding to the fields, and update the above correspondence.

在本申请实施例中,由于信息脱敏装置为独立于业务系统之外的装置,该信息脱敏装置可以对整个业务系统中的信息进行脱敏,因此,避免了在业务系统中的每个功能模块下设置一个针对于该功能模块的脱敏装置,这样,当有新增加的敏感字段时,只需要对信息敏感装置更新一次即可,避免了更新具有该新增字段的每个功能模块对应的脱敏装置,实现了方便、快捷的对信息脱敏装置进行更新。In the embodiment of this application, since the information desensitization device is a device independent of the business system, the information desensitization device can desensitize the information in the entire business system, thus avoiding the A desensitization device for the functional module is set under the functional module, so that when there is a newly added sensitive field, it only needs to update the information sensitive device once, avoiding the need to update each functional module with the newly added field The corresponding desensitization device realizes the convenient and fast updating of the information desensitization device.

为便于理解本申请实施例提供的信息脱敏方法,下述将以待脱敏字段为会员注册业务类型下的手机号码为例通过具体实施例介绍本申请实施例提供的信息脱敏方法。图2为本申请实施例提供的信息脱敏方法的第二种方法流程图,图2所示的方法,至少包括如下步骤:In order to facilitate the understanding of the information desensitization method provided by the embodiment of this application, the following will introduce the information desensitization method provided by the embodiment of this application through specific examples by taking the mobile phone number under the member registration service type as the field to be desensitized. Figure 2 is a flow chart of the second method of the information desensitization method provided in the embodiment of the present application. The method shown in Figure 2 includes at least the following steps:

步骤202,接收业务系统发送的脱敏请求,该脱敏请求中携带有待脱敏字段以及会员注册业务标识。Step 202, receiving the desensitization request sent by the business system, the desensitization request carrying the field to be desensitized and the membership registration service identifier.

其中,上述会员注册业务标识可以是该业务类型的名称,例如:“会员注册”或者“注册”等;上述待脱敏字段包括字段的类型和待脱敏的具体内容。在该实施例中,上述字段的类型为手机号码,待脱敏的具体内容为需要进行脱敏的11位手机号码。Wherein, the above-mentioned member registration business identifier may be the name of the business type, for example: "member registration" or "registration" and so on; the above-mentioned field to be desensitized includes the type of the field and the specific content to be desensitized. In this embodiment, the type of the above field is a mobile phone number, and the specific content to be desensitized is the 11-digit mobile phone number that needs to be desensitized.

步骤204,查找预先建立的业务类型、敏感字段和脱敏规则的对应关系中,是否存在会员注册业务类型下的手机号码对应的脱敏规则;若存在,执行步骤206,否则,执行步骤212。Step 204, find out whether there is a desensitization rule corresponding to the mobile phone number under the member registration business type in the pre-established correspondence between business types, sensitive fields and desensitization rules; if yes, perform step 206; otherwise, perform step 212.

步骤206,获取待脱敏的手机号码对应的脱敏规则。Step 206, obtain the desensitization rule corresponding to the mobile phone number to be desensitized.

其中,上述脱敏规则使用正则表达式表示。Wherein, the above desensitization rules are represented by regular expressions.

步骤208,使用上述脱敏规则对待脱敏的手机号码进行脱敏。Step 208, use the above desensitization rule to desensitize the mobile phone number to be desensitized.

步骤210,将脱敏处理后的字段发送给业务系统。Step 210, sending the desensitized fields to the business system.

步骤212,向业务系统发送提示信息,该提示信息用于提示不存在待脱敏的手机号码对应的脱敏规则。Step 212, sending prompt information to the service system, the prompt information is used to prompt that there is no desensitization rule corresponding to the mobile phone number to be desensitized.

本申请实施例提供的信息脱敏方法,可以对业务系统下的各个业务类型中涉及到的敏感字段进行脱敏;并且,接收到的业务系统发送的脱敏请求中携带有待脱敏字段和待脱敏字段对所属的目标业务类型,这样根据待脱敏字段和其所属的目标业务类型,可以唯一确定出待脱敏字段对应的脱敏规则,使得脱敏的准确性更高。The information desensitization method provided by the embodiment of this application can desensitize the sensitive fields involved in each business type under the business system; and the received desensitization request sent by the business system carries the field to be desensitized and the The target business type to which the desensitization field belongs, so that the desensitization rule corresponding to the field to be desensitized can be uniquely determined according to the field to be desensitized and the target business type to which it belongs, so that the accuracy of desensitization is higher.

对应于本申请实施例提供的信息脱敏方法,基于相同的思路,本申请实施例还提供了一种信息脱敏装置,用于执行上述实施例提供的信息脱敏方法,图3示出了本申请实施例提供的信息脱敏装置的模块组成示意图,图3所示的装置,包括:Corresponding to the information desensitization method provided in the embodiment of the present application, based on the same idea, the embodiment of the present application also provides an information desensitization device, which is used to implement the information desensitization method provided in the above embodiment. FIG. 3 shows A schematic diagram of the module composition of the information desensitization device provided in the embodiment of the present application. The device shown in Figure 3 includes:

接收模块301,用于接收业务系统发送的脱敏请求;其中,该脱敏请求中携带有待脱敏字段和待脱敏字段所属的目标业务类型;上述信息脱敏装置与该业务系统对应;The receiving module 301 is used to receive the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target business type to which the field to be desensitized belongs; the above-mentioned information desensitization device corresponds to the business system;

查找模块302,用于根据上述目标业务类型和待脱敏字段,查找待脱敏字段对应的脱敏规则;A search module 302, configured to search for a desensitization rule corresponding to the field to be desensitized according to the above-mentioned target business type and the field to be desensitized;

脱敏模块303,用于使用上述脱敏规则对待脱敏字段进行脱敏处理。The desensitization module 303 is configured to desensitize the field to be desensitized by using the above desensitization rule.

可选地,上述查找模块302,具体用于:Optionally, the above search module 302 is specifically used for:

根据上述目标业务类型和上述待脱敏字段,从建立的业务类型、敏感字段与脱敏规则的对应关系中,查找目标业务类型下的待脱敏字段对应的脱敏规则。According to the above-mentioned target business type and the above-mentioned fields to be desensitized, from the established correspondence between the business type, sensitive fields and desensitization rules, find the desensitization rules corresponding to the fields to be desensitized under the target business type.

可选地,本申请实施例提供的装置,还包括:Optionally, the device provided in the embodiment of the present application further includes:

第一确定模块,用于确定业务系统下的各个业务类型对应的敏感字段,以及每个敏感字段对应的脱敏规则;The first determination module is configured to determine the sensitive fields corresponding to each business type under the business system, and the desensitization rules corresponding to each sensitive field;

建立模块,用于建立业务类型、敏感字段与脱敏规则的对应关系。The establishment module is used to establish the corresponding relationship between business types, sensitive fields and desensitization rules.

可选地,本申请实施例提供的装置,还包括:Optionally, the device provided in the embodiment of the present application further includes:

获取模块,用于获取新增加的敏感字段;Acquisition module, used to obtain newly added sensitive fields;

第二确定模块,用于确定新增加的敏感字段所属的业务类型以及新增加的敏感字段对应的脱敏规则;The second determining module is used to determine the business type to which the newly added sensitive field belongs and the desensitization rule corresponding to the newly added sensitive field;

更新模块,用于根据新增加的敏感字段、新增加的敏感字段所属的业务类型以及新增加的敏感字段所对应的脱敏规则,更新所述对应关系。An update module, configured to update the corresponding relationship according to the newly added sensitive field, the business type to which the newly added sensitive field belongs, and the desensitization rule corresponding to the newly added sensitive field.

可选地,本申请实施例提供的装置,还包括:Optionally, the device provided in the embodiment of the present application further includes:

第一发送模块,用于若未查找到待脱敏字段对应的脱敏规则,向业务系统发送提示信息;其中,上述提示信息用于提示不存在待脱敏字段对应的脱敏规则。The first sending module is configured to send prompt information to the business system if no desensitization rule corresponding to the field to be desensitized is found; wherein, the prompt message is used to prompt that there is no desensitization rule corresponding to the field to be desensitized.

可选地,上述脱敏规则使用正则表达式表示;Optionally, the above desensitization rules are represented by regular expressions;

相应的,上述脱敏模块303,具体用于:Correspondingly, the above desensitization module 303 is specifically used for:

对上述正则表达式进行解析,确定正则表达式所表示的含义;按照解析得到的含义对待脱敏字段进行脱敏。Analyze the above regular expression to determine the meaning expressed by the regular expression; desensitize the desensitized field according to the meaning obtained by the analysis.

可选地,本申请实施例提供的装置,还包括:Optionally, the device provided in the embodiment of the present application further includes:

第二发送模块,用于向业务系统发送经过脱敏处理后的字段。The second sending module is configured to send the desensitized fields to the business system.

本申请实施例提供的信息脱敏装置,可以实现图1、图2对应方法实施例中信息脱敏方法所能实现的各个过程、步骤,各个模块的具体实现过程可参考上述方法实施例,这里不再赘述。The information desensitization device provided in the embodiment of the present application can realize the various processes and steps that can be realized by the information desensitization method in the method embodiment corresponding to Fig. 1 and Fig. 2. The specific implementation process of each module can refer to the above method embodiment, here No longer.

本申请实施例提供的信息脱敏装置,可以对业务系统下的各个业务类型中涉及到的敏感字段进行脱敏;并且,接收到的业务系统发送的脱敏请求中携带有待脱敏字段和待脱敏字段对所属的目标业务类型,这样根据待脱敏字段和其所属的目标业务类型,可以唯一确定出待脱敏字段对应的脱敏规则,使得脱敏的准确性更高。The information desensitization device provided by the embodiment of this application can desensitize the sensitive fields involved in each business type under the business system; and the received desensitization request sent by the business system carries the field to be desensitized and the The target business type to which the desensitization field belongs, so that the desensitization rule corresponding to the field to be desensitized can be uniquely determined according to the field to be desensitized and the target business type to which it belongs, so that the accuracy of desensitization is higher.

基于本申请实施例提供的信息脱敏方法,本申请实施例还提供了一种信息脱敏系统,图4为本申请实施例提供的信息脱敏系统的结构示意图,针对图4所示的系统,其具体实现原理、各个模块及组成的具体执行过程可参考本申请实施例提供的信息脱敏方法,具体实现过程不再赘述。图4所示的信息脱敏系统,包括:业务系统401和信息脱敏装置402;Based on the information desensitization method provided by the embodiment of the present application, the embodiment of the present application also provides an information desensitization system. Figure 4 is a schematic structural diagram of the information desensitization system provided by the embodiment of the present application, for the system shown in Figure 4 , the specific implementation principle, the specific execution process of each module and its composition can refer to the information desensitization method provided in the embodiment of the present application, and the specific implementation process will not be repeated. The information desensitization system shown in Figure 4 includes: a business system 401 and an information desensitization device 402;

其中,上述业务系统401,用于向信息脱敏装置402发送脱敏请求;其中,该脱敏请求中携带有待脱敏字段和待脱敏字段所属的目标业务类型;Wherein, the above-mentioned business system 401 is configured to send a desensitization request to the information desensitization device 402; wherein, the desensitization request carries the field to be desensitized and the target business type to which the field to be desensitized belongs;

上述信息脱敏装置402,用于接收上述脱敏请求,以及根据上述目标业务类型和待脱敏字段,查找待脱敏字段对应的脱敏规则;并使用该脱敏规则对待脱敏字段进行脱敏处理。The above-mentioned information desensitization device 402 is configured to receive the above-mentioned desensitization request, and according to the above-mentioned target business type and the field to be desensitized, find a desensitization rule corresponding to the field to be desensitized; and use the desensitization rule to desensitize the field to be desensitized Sensitive handling.

可选地,上述信息脱敏装置402,具体用于:Optionally, the above-mentioned information desensitization device 402 is specifically used for:

根据上述目标业务类型和待脱敏字段,从建立的业务类型、敏感字段与脱敏规则的对应关系中,查找目标业务类型下的待脱敏字段对应的脱敏规则。According to the target business type and the field to be desensitized, find the desensitization rule corresponding to the field to be desensitized under the target business type from the established correspondence between the business type, the sensitive field and the desensitization rule.

可选地,上述信息脱敏装置402,还用于:Optionally, the above-mentioned information desensitization device 402 is also used for:

确定业务系统下的各个业务类型对应的敏感字段,以及每个敏感字段对应的脱敏规则;建立上述业务类型、敏感字段与脱敏规则的对应关系。Determine the sensitive fields corresponding to each business type in the business system, and the desensitization rules corresponding to each sensitive field; establish the correspondence between the above business types, sensitive fields and desensitization rules.

可选地,上述信息脱敏装置402,还用于:Optionally, the above-mentioned information desensitization device 402 is also used for:

获取新增加的敏感字段;确定新增加的敏感字段所属的业务类型以及新增加的敏感字段对应的脱敏规则;根据新增加的敏感字段、新增加的敏感字段所属的业务类型以及新增加的敏感字段对应的脱敏规则,更新上述对应关系。Obtain the newly added sensitive field; determine the business type to which the newly added sensitive field belongs and the desensitization rule corresponding to the newly added sensitive field; according to the newly added sensitive field, the business type to which the newly added sensitive field belongs and the newly added sensitive field The desensitization rules corresponding to the fields, and update the above correspondence.

可选地,上述信息脱敏装置402,还用于:Optionally, the above-mentioned information desensitization device 402 is also used for:

若未查找到待脱敏字段对应的脱敏规则,向业务系统发送提示信息;其中,上述提示信息用于提示不存在待脱敏字段对应的脱敏规则。If no desensitization rule corresponding to the field to be desensitized is found, a prompt message is sent to the business system; wherein, the above prompt message is used to prompt that there is no desensitization rule corresponding to the field to be desensitized.

可选地,上述脱敏规则使用正则表达式表示;Optionally, the above desensitization rules are represented by regular expressions;

相应的,上述信息脱敏装置402,具体用于:Correspondingly, the above-mentioned information desensitization device 402 is specifically used for:

对上述正则表达式进行解析,确定正则表达式所表示的含义;按照解析得到的含义对待脱敏字段进行脱敏。Analyze the above regular expression to determine the meaning expressed by the regular expression; desensitize the desensitized field according to the meaning obtained by the analysis.

可选地,上述信息脱敏装置402,还用于:Optionally, the above-mentioned information desensitization device 402 is also used for:

向业务系统401发送经过脱敏处理后的字段。The desensitized fields are sent to the business system 401 .

为便于理解本申请实施例提供的信息脱敏系统,下述将结合信息脱敏系统对本申请实施例提供的信息脱敏方法进行说明。In order to facilitate understanding of the information desensitization system provided in the embodiment of the present application, the information desensitization method provided in the embodiment of the present application will be described below in conjunction with the information desensitization system.

图5示出了本申请实施例提供的信息脱敏方法的第三种方法流程图,该方法应用于信息脱敏系统,由信息脱敏系统中的业务系统和信息脱敏装置交互完成。图5所示的方法,至少包括如下步骤:Fig. 5 shows a flow chart of the third method of the information desensitization method provided by the embodiment of the present application. This method is applied to the information desensitization system and is completed by the interaction between the business system and the information desensitization device in the information desensitization system. The method shown in Figure 5 at least includes the following steps:

步骤502,终端设备向业务系统发送注册请求,该注册请求中携带有用户信息。Step 502, the terminal device sends a registration request to the service system, and the registration request carries user information.

具体的,在步骤502中,用户终端终端设备在某一业务系统进行会员注册,并填写用户信息,并将该用户信息携带在注册请求中发送给业务系统。Specifically, in step 502, the user terminal device registers as a member in a certain service system, fills in user information, and sends the user information to the service system in a registration request.

其中,上述终端设备可以为手机、平板电脑、计算机等。Wherein, the above-mentioned terminal device may be a mobile phone, a tablet computer, a computer, and the like.

步骤504,业务系统确定上述用户信息中的待脱敏字段。Step 504, the service system determines the field to be desensitized in the above user information.

步骤506,业务系统向信息脱敏装置发送脱敏请求,该脱敏请求中携带有待脱敏字段以及会员注册业务标识。Step 506, the business system sends a desensitization request to the information desensitization device, and the desensitization request carries the field to be desensitized and the membership registration service identifier.

步骤508,信息脱敏装置接收到业务系统发送的脱敏请求后,查找是否存在会员注册业务下的待脱敏字段对应的脱敏规则;若存在,执行步骤510,否则,执行步514。Step 508: After receiving the desensitization request sent by the business system, the information desensitization device searches whether there is a desensitization rule corresponding to the field to be desensitized under the member registration service; if yes, execute step 510; otherwise, execute step 514.

步骤510,信息脱敏装置使用该脱敏规则对待脱敏字段进行脱敏。Step 510, the information desensitization device uses the desensitization rule to desensitize the field to be desensitized.

步骤512,信息脱敏装置将脱敏处理后得到的字段发送给业务系统。Step 512, the information desensitization device sends the fields obtained after desensitization processing to the business system.

步骤514,信息脱敏装置向业务系统发送提示信息,该提示信息用于提示不存在待脱敏字段对应的脱敏规则。Step 514, the information desensitization device sends prompt information to the business system, and the prompt information is used to prompt that there is no desensitization rule corresponding to the field to be desensitized.

本申请实施例提供的信息脱敏系统,可以对业务系统下的各个业务类型中涉及到的敏感字段进行脱敏;并且,接收到的业务系统发送的脱敏请求中携带有待脱敏字段和待脱敏字段对所属的目标业务类型,这样根据待脱敏字段和其所属的目标业务类型,可以唯一确定出待脱敏字段对应的脱敏规则,使得脱敏的准确性更高;The information desensitization system provided by the embodiment of this application can desensitize the sensitive fields involved in each business type under the business system; and the received desensitization request sent by the business system carries the field to be desensitized and the The target business type to which the desensitization field belongs, so that the desensitization rule corresponding to the field to be desensitized can be uniquely determined according to the field to be desensitized and the target business type to which it belongs, so that the accuracy of desensitization is higher;

另外,在本申请实施例中,使用独立于业务系统的信息脱敏装置对业务系统中的待脱敏字段进行脱敏,该信息脱敏装置可以对整个业务系统中的信息进行脱敏,因此,避免了在业务系统中的每个功能模块下设置一个针对于该功能模块的脱敏装置,这样,当有新增加的敏感字段时,只需要对信息敏感装置更新一次即可,避免了更新具有该新增字段的每个功能模块对应的脱敏装置,实现了方便、快捷的对信息脱敏装置进行更新。In addition, in the embodiment of this application, an information desensitization device independent of the business system is used to desensitize the field to be desensitized in the business system, and the information desensitization device can desensitize the information in the entire business system, so , to avoid setting a desensitization device for each functional module in the business system, so that when there is a newly added sensitive field, it is only necessary to update the information sensitive device once, avoiding the need to update The desensitization device corresponding to each functional module having the newly added field realizes convenient and fast updating of the information desensitization device.

进一步地,基于上述图1至图2所示的方法,本申请实施例还提供了一种信息脱敏设备,如图6所示。Further, based on the methods shown in FIGS. 1 to 2 above, an embodiment of the present application also provides an information desensitization device, as shown in FIG. 6 .

信息脱敏设备可因配置或性能不同而产生比较大的差异,可以包括一个或一个以上的处理器601和存储器602,存储器602中可以存储有一个或一个以上存储应用程序或数据。其中,存储器602可以是短暂存储或持久存储。存储在存储器602的应用程序可以包括一个或一个以上模块(图示未示出),每个模块可以包括对信息脱敏设备中的一系列计算机可执行指令。更进一步地,处理器601可以设置为与存储器602通信,在信息脱敏设备上执行存储器602中的一系列计算机可执行指令。信息脱敏设备还可以包括一个或一个以上电源603,一个或一个以上有线或无线网络接口604,一个或一个以上输入输出接口605,一个或一个以上键盘606等。The information desensitization device may have relatively large differences due to different configurations or performances, and may include one or more processors 601 and memory 602, and one or more storage applications or data may be stored in the memory 602. Wherein, the storage 602 may be a short-term storage or a persistent storage. The application program stored in the memory 602 may include one or more modules (not shown in the figure), and each module may include a series of computer-executable instructions in the information desensitization device. Furthermore, the processor 601 may be configured to communicate with the memory 602, and execute a series of computer-executable instructions in the memory 602 on the information desensitization device. The information desensitization device may also include one or more power sources 603, one or more wired or wireless network interfaces 604, one or more input and output interfaces 605, one or more keyboards 606, and the like.

在一个具体的实施例中,信息脱敏设备包括有存储器,以及一个或一个以上的程序,其中一个或者一个以上程序存储于存储器中,且一个或者一个以上程序可以包括一个或一个以上模块,且每个模块可以包括对信息脱敏设备中的一系列计算机可执行指令,且经配置以由一个或者一个以上处理器执行该一个或者一个以上程序包含用于进行以下计算机可执行指令:In a specific embodiment, the information desensitization device includes a memory, and one or more programs, wherein one or more programs are stored in the memory, and one or more programs may include one or more modules, and Each module may include a series of computer-executable instructions in the information desensitization device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following:

接收业务系统发送的脱敏请求;其中,该脱敏请求中携带有待脱敏字段和待脱敏字段所属的目标业务类型;Receive the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target business type to which the field to be desensitized belongs;

根据目标业务类型和待脱敏字段,查找待脱敏字段对应的脱敏规则;Find the desensitization rule corresponding to the field to be desensitized according to the target business type and the field to be desensitized;

使用上述脱敏规则对待脱敏字段进行脱敏处理。Use the above desensitization rules to desensitize the fields to be desensitized.

可选地,计算机可执行指令在被执行时,根据目标业务类型和待脱敏字段,查找待脱敏字段对应的脱敏规则,包括:Optionally, when the computer-executable instructions are executed, according to the target business type and the field to be desensitized, the desensitization rule corresponding to the field to be desensitized is searched, including:

根据目标业务类型和待脱敏字段,从建立的业务类型、敏感字段与脱敏规则的对应关系中,查找目标业务类型下的待脱敏字段对应的脱敏规则。According to the target business type and the field to be desensitized, find the desensitization rule corresponding to the field to be desensitized under the target business type from the established correspondence between the business type, sensitive field and desensitization rule.

可选地,计算机可执行指令在被执行时,接收业务系统发送的脱敏请求之前,还包括:Optionally, when the computer-executable instructions are executed, before receiving the desensitization request sent by the business system, it may further include:

确定业务系统下的各个业务类型对应的敏感字段,以及每个敏感字段对应的脱敏规则;Determine the sensitive fields corresponding to each business type under the business system, and the desensitization rules corresponding to each sensitive field;

建立业务类型、敏感字段与脱敏规则的对应关系。Establish correspondence between business types, sensitive fields, and desensitization rules.

可选地,计算机可执行指令在被执行时,还包括:Optionally, when executed, the computer-executable instructions further include:

获取新增加的敏感字段;Obtain newly added sensitive fields;

确定新增加的敏感字段所属的业务类型以及新增加的敏感字段对应的脱敏规则;Determine the business type to which the newly added sensitive fields belong and the desensitization rules corresponding to the newly added sensitive fields;

根据新增加的敏感字段、新增加的敏感字段所属的业务类型以及新增加的敏感字段所对应的脱敏规则,更新上述对应关系。The above corresponding relationship is updated according to the newly added sensitive field, the service type to which the newly added sensitive field belongs, and the desensitization rule corresponding to the newly added sensitive field.

可选地,计算机可执行指令在被执行时,还包括:Optionally, when executed, the computer-executable instructions further include:

若未查找到待脱敏字段对应的脱敏规则,向业务系统发送提示信息;其中,该提示信息用于提示不存在待脱敏字段对应的脱敏规则。If no desensitization rule corresponding to the field to be desensitized is found, a prompt message is sent to the business system; wherein, the prompt message is used to prompt that there is no desensitization rule corresponding to the field to be desensitized.

可选地,计算机可执行指令在被执行时,脱敏规则使用正则表达式表示;Optionally, when the computer-executable instructions are executed, the desensitization rules are represented by regular expressions;

使用所述脱敏规则对待脱敏字段进行脱敏处理,包括:Use the desensitization rules to desensitize the fields to be desensitized, including:

对正则表达式进行解析,确定正则表达式所表示的含义;Analyze the regular expression to determine the meaning represented by the regular expression;

按照解析得到的含义对待脱敏字段进行脱敏。Desensitize the desensitized field according to the meaning obtained by parsing.

可选地,计算机可执行指令在被执行时,使用脱敏规则对待脱敏字段进行脱敏处理之后,还包括:Optionally, when the computer-executable instructions are executed, after desensitizing the field to be desensitized using a desensitization rule, it further includes:

向业务系统发送经过脱敏处理后的字段。Send the desensitized fields to the business system.

本申请实施例提供的信息脱敏设备,可以对业务系统下的各个业务类型中涉及到的敏感字段进行脱敏;并且,接收到的业务系统发送的脱敏请求中携带有待脱敏字段和待脱敏字段对所属的目标业务类型,这样根据待脱敏字段和其所属的目标业务类型,可以唯一确定出待脱敏字段对应的脱敏规则,使得脱敏的准确性更高。The information desensitization device provided by the embodiment of this application can desensitize the sensitive fields involved in each business type under the business system; and the received desensitization request sent by the business system carries the field to be desensitized and the The target business type to which the desensitization field belongs, so that the desensitization rule corresponding to the field to be desensitized can be uniquely determined according to the field to be desensitized and the target business type to which it belongs, so that the accuracy of desensitization is higher.

进一步地,基于上述图1至图2所示的方法,本申请实施例还提供了一种存储介质,用于存储计算机可执行指令,一种具体的实施例中,该存储介质可以为U盘、光盘、硬盘等,该存储介质存储的计算机可执行指令在被处理器执行时,能实现以下流程:Further, based on the above methods shown in Figures 1 to 2, the embodiment of the present application also provides a storage medium for storing computer-executable instructions. In a specific embodiment, the storage medium may be a USB flash drive , optical disc, hard disk, etc., when the computer-executable instructions stored in the storage medium are executed by the processor, the following process can be realized:

接收业务系统发送的脱敏请求;其中,该脱敏请求中携带有待脱敏字段和待脱敏字段所属的目标业务类型;Receive the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target business type to which the field to be desensitized belongs;

根据目标业务类型和待脱敏字段,查找待脱敏字段对应的脱敏规则;Find the desensitization rule corresponding to the field to be desensitized according to the target business type and the field to be desensitized;

使用上述脱敏规则对待脱敏字段进行脱敏处理。Use the above desensitization rules to desensitize the fields to be desensitized.

可选地,该存储介质存储的计算机可执行指令在被处理器执行时,根据目标业务类型和待脱敏字段,查找待脱敏字段对应的脱敏规则,包括:Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the desensitization rules corresponding to the fields to be desensitized are searched according to the target business type and the fields to be desensitized, including:

根据目标业务类型和待脱敏字段,从建立的业务类型、敏感字段与脱敏规则的对应关系中,查找目标业务类型下的待脱敏字段对应的脱敏规则。According to the target business type and the field to be desensitized, find the desensitization rule corresponding to the field to be desensitized under the target business type from the established correspondence between the business type, sensitive field and desensitization rule.

可选地,该存储介质存储的计算机可执行指令在被处理器执行时,接收业务系统发送的脱敏请求之前,还包括:Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, before receiving the desensitization request sent by the business system, it further includes:

确定业务系统下的各个业务类型对应的敏感字段,以及每个敏感字段对应的脱敏规则;Determine the sensitive fields corresponding to each business type under the business system, and the desensitization rules corresponding to each sensitive field;

建立业务类型、敏感字段与脱敏规则的对应关系。Establish correspondence between business types, sensitive fields, and desensitization rules.

可选地,该存储介质存储的计算机可执行指令在被处理器执行时,还包括:Optionally, when executed by the processor, the computer-executable instructions stored in the storage medium further include:

获取新增加的敏感字段;Obtain newly added sensitive fields;

确定新增加的敏感字段所属的业务类型以及新增加的敏感字段对应的脱敏规则;Determine the business type to which the newly added sensitive fields belong and the desensitization rules corresponding to the newly added sensitive fields;

根据新增加的敏感字段、新增加的敏感字段所属的业务类型以及新增加的敏感字段所对应的脱敏规则,更新上述对应关系。The above corresponding relationship is updated according to the newly added sensitive field, the service type to which the newly added sensitive field belongs, and the desensitization rule corresponding to the newly added sensitive field.

可选地,该存储介质存储的计算机可执行指令在被处理器执行时,还包括:Optionally, when executed by the processor, the computer-executable instructions stored in the storage medium further include:

若未查找到待脱敏字段对应的脱敏规则,向业务系统发送提示信息;其中,该提示信息用于提示不存在待脱敏字段对应的脱敏规则。If no desensitization rule corresponding to the field to be desensitized is found, a prompt message is sent to the business system; wherein, the prompt message is used to prompt that there is no desensitization rule corresponding to the field to be desensitized.

可选地,该存储介质存储的计算机可执行指令在被处理器执行时,脱敏规则使用正则表达式表示;Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the desensitization rules are represented by regular expressions;

使用所述脱敏规则对待脱敏字段进行脱敏处理,包括:Use the desensitization rules to desensitize the fields to be desensitized, including:

对正则表达式进行解析,确定正则表达式所表示的含义;Analyze the regular expression to determine the meaning represented by the regular expression;

按照解析得到的含义对待脱敏字段进行脱敏。Desensitize the desensitized field according to the meaning obtained by parsing.

可选地,该存储介质存储的计算机可执行指令在被处理器执行时,使用脱敏规则对待脱敏字段进行脱敏处理之后,还包括:Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, after desensitizing the field to be desensitized by using a desensitization rule, it further includes:

向业务系统发送经过脱敏处理后的字段。Send the desensitized fields to the business system.

本申请实施例提供的存储介质中存储的计算机可执行指令在被处理器执行时,可以对业务系统下的各个业务类型中涉及到的敏感字段进行脱敏;并且,接收到的业务系统发送的脱敏请求中携带有待脱敏字段和待脱敏字段对所属的目标业务类型,这样根据待脱敏字段和其所属的目标业务类型,可以唯一确定出待脱敏字段对应的脱敏规则,使得脱敏的准确性更高。When the computer-executable instructions stored in the storage medium provided by the embodiment of the present application are executed by the processor, the sensitive fields involved in each business type under the business system can be desensitized; and, the received data sent by the business system The desensitization request carries the field to be desensitized and the target business type to which the field to be desensitized belongs, so that the desensitization rule corresponding to the field to be desensitized can be uniquely determined according to the field to be desensitized and the target business type to which it belongs, so that The accuracy of desensitization is higher.

在20世纪90年代,对于一个技术的改进可以很明显地区分是硬件上的改进(例如,对二极管、晶体管、开关等电路结构的改进)还是软件上的改进(对于方法流程的改进)。然而,随着技术的发展,当今的很多方法流程的改进已经可以视为硬件电路结构的直接改进。设计人员几乎都通过将改进的方法流程编程到硬件电路中来得到相应的硬件电路结构。因此,不能说一个方法流程的改进就不能用硬件实体模块来实现。例如,可编程逻辑器件(Programmable Logic Device,PLD)(例如现场可编程门阵列(Field Programmable GateArray,FPGA))就是这样一种集成电路,其逻辑功能由用户对器件编程来确定。由设计人员自行编程来把一个数字系统“集成”在一片PLD上,而不需要请芯片制造厂商来设计和制作专用的集成电路芯片。而且,如今,取代手工地制作集成电路芯片,这种编程也多半改用“逻辑编译器(logic compiler)”软件来实现,它与程序开发撰写时所用的软件编译器相类似,而要编译之前的原始代码也得用特定的编程语言来撰写,此称之为硬件描述语言(Hardware Description Language,HDL),而HDL也并非仅有一种,而是有许多种,如ABEL(Advanced Boolean Expression Language)、AHDL(Altera Hardware DescriptionLanguage)、Confluence、CUPL(Cornell University Programming Language)、HDCal、JHDL(Java Hardware Description Language)、Lava、Lola、MyHDL、PALASM、RHDL(RubyHardware Description Language)等,目前最普遍使用的是VHDL(Very-High-SpeedIntegrated Circuit Hardware Description Language)与Verilog。本领域技术人员也应该清楚,只需要将方法流程用上述几种硬件描述语言稍作逻辑编程并编程到集成电路中,就可以很容易得到实现该逻辑方法流程的硬件电路。In the 1990s, the improvement of a technology can be clearly distinguished as an improvement in hardware (for example, improvements in circuit structures such as diodes, transistors, and switches) or improvements in software (improvement in method flow). However, with the development of technology, the improvement of many current method flows can be regarded as the direct improvement of the hardware circuit structure. Designers almost always get the corresponding hardware circuit structure by programming the improved method flow into the hardware circuit. Therefore, it cannot be said that the improvement of a method flow cannot be realized by hardware physical modules. For example, a Programmable Logic Device (Programmable Logic Device, PLD) (such as a Field Programmable Gate Array (Field Programmable GateArray, FPGA)) is such an integrated circuit, and its logic function is determined by programming the device by a user. It is programmed by the designer to "integrate" a digital system on a PLD, instead of asking a chip manufacturer to design and make a dedicated integrated circuit chip. Moreover, nowadays, instead of making integrated circuit chips by hand, this kind of programming is mostly realized by "logic compiler (logic compiler)" software, which is similar to the software compiler used when writing programs. The original code of the computer must also be written in a specific programming language, which is called a hardware description language (Hardware Description Language, HDL), and there is not only one kind of HDL, but many kinds, such as ABEL (Advanced Boolean Expression Language) , AHDL (Altera Hardware Description Language), Confluence, CUPL (Cornell University Programming Language), HDCal, JHDL (Java Hardware Description Language), Lava, Lola, MyHDL, PALASM, RHDL (Ruby Hardware Description Language), etc., currently the most commonly used is VHDL (Very-High-Speed Integrated Circuit Hardware Description Language) and Verilog. It should also be clear to those skilled in the art that only a little logical programming of the method flow in the above-mentioned hardware description languages and programming into an integrated circuit can easily obtain a hardware circuit for realizing the logic method flow.

控制器可以按任何适当的方式实现,例如,控制器可以采取例如微处理器或处理器以及存储可由该(微)处理器执行的计算机可读程序代码(例如软件或固件)的计算机可读介质、逻辑门、开关、专用集成电路(Application Specific Integrated Circuit,ASIC)、可编程逻辑控制器和嵌入微控制器的形式,控制器的例子包括但不限于以下微控制器:ARC 625D、Atmel AT91SAM、Microchip PIC18F26K20以及Silicone Labs C8051F320,存储器控制器还可以被实现为存储器的控制逻辑的一部分。本领域技术人员也知道,除了以纯计算机可读程序代码方式实现控制器以外,完全可以通过将方法步骤进行逻辑编程来使得控制器以逻辑门、开关、专用集成电路、可编程逻辑控制器和嵌入微控制器等的形式来实现相同功能。因此这种控制器可以被认为是一种硬件部件,而对其内包括的用于实现各种功能的装置也可以视为硬件部件内的结构。或者甚至,可以将用于实现各种功能的装置视为既可以是实现方法的软件模块又可以是硬件部件内的结构。The controller may be implemented in any suitable way, for example the controller may take the form of a microprocessor or processor and a computer readable medium storing computer readable program code (such as software or firmware) executable by the (micro)processor , logic gates, switches, Application Specific Integrated Circuit (ASIC), programmable logic controllers, and embedded microcontrollers, examples of controllers include but are not limited to the following microcontrollers: ARC 625D, Atmel AT91SAM, Microchip PIC18F26K20 and Silicone Labs C8051F320, the memory controller can also be implemented as part of the memory's control logic. Those skilled in the art also know that, in addition to realizing the controller in a purely computer-readable program code mode, it is entirely possible to make the controller use logic gates, switches, application-specific integrated circuits, programmable logic controllers, and embedded The same function can be realized in the form of a microcontroller or the like. Therefore, such a controller can be regarded as a hardware component, and the devices included in it for realizing various functions can also be regarded as structures within the hardware component. Or even, means for realizing various functions can be regarded as a structure within both a software module realizing a method and a hardware component.

上述实施例阐明的系统、装置、模块或单元,具体可以由计算机芯片或实体实现,或者由具有某种功能的产品来实现。一种典型的实现设备为计算机。具体的,计算机例如可以为个人计算机、膝上型计算机、蜂窝电话、相机电话、智能电话、个人数字助理、媒体播放器、导航设备、电子邮件设备、游戏控制台、平板计算机、可穿戴设备或者这些设备中的任何设备的组合。The systems, devices, modules, or units described in the above embodiments can be specifically implemented by computer chips or entities, or by products with certain functions. A typical implementing device is a computer. Specifically, the computer may be, for example, a personal computer, a laptop computer, a cellular phone, a camera phone, a smart phone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or Combinations of any of these devices.

为了描述的方便,描述以上装置时以功能分为各种单元分别描述。当然,在实施本申请时可以把各单元的功能在同一个或多个软件和/或硬件中实现。For the convenience of description, when describing the above devices, functions are divided into various units and described separately. Of course, when implementing the present application, the functions of each unit can be implemented in one or more pieces of software and/or hardware.

本领域内的技术人员应明白,本申请的实施例可提供为方法、系统、或计算机程序产品。因此,本申请可采用完全硬件实施例、完全软件实施例、或结合软件和硬件方面的实施例的形式。而且,本申请可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质(包括但不限于磁盘存储器、CD-ROM、光学存储器等)上实施的计算机程序产品的形式。Those skilled in the art should understand that the embodiments of the present application may be provided as methods, systems, or computer program products. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) having computer-usable program code embodied therein.

本申请是参照根据本申请实施例的方法、设备(系统)、和计算机程序产品的流程图和/或方框图来描述的。应理解可由计算机程序指令实现流程图和/或方框图中的每一流程和/或方框、以及流程图和/或方框图中的流程和/或方框的结合。可提供这些计算机程序指令到通用计算机、专用计算机、嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器,使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的装置。The present application is described with reference to flowcharts and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the present application. It should be understood that each procedure and/or block in the flowchart and/or block diagram, and a combination of procedures and/or blocks in the flowchart and/or block diagram can be realized by computer program instructions. These computer program instructions may be provided to a general purpose computer, special purpose computer, embedded processor, or processor of other programmable data processing equipment to produce a machine such that the instructions executed by the processor of the computer or other programmable data processing equipment produce a An apparatus for realizing the functions specified in one or more procedures of the flowchart and/or one or more blocks of the block diagram.

这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设备以特定方式工作的计算机可读存储器中,使得存储在该计算机可读存储器中的指令产生包括指令装置的制造品,该指令装置实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能。These computer program instructions may also be stored in a computer-readable memory capable of directing a computer or other programmable data processing apparatus to operate in a specific manner, such that the instructions stored in the computer-readable memory produce an article of manufacture comprising instruction means, the instructions The device realizes the function specified in one or more procedures of the flowchart and/or one or more blocks of the block diagram.

这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上,使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理,从而在计算机或其他可编程设备上执行的指令提供用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的步骤。These computer program instructions can also be loaded onto a computer or other programmable data processing device, causing a series of operational steps to be performed on the computer or other programmable device to produce a computer-implemented process, thereby The instructions provide steps for implementing the functions specified in the flow chart or blocks of the flowchart and/or the block or blocks of the block diagrams.

在一个典型的配置中,计算设备包括一个或多个处理器(CPU)、输入/输出接口、网络接口和内存。In a typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.

内存可能包括计算机可读介质中的非永久性存储器,随机存取存储器(RAM)和/或非易失性内存等形式,如只读存储器(ROM)或闪存(flash RAM)。内存是计算机可读介质的示例。Memory may include non-permanent storage in computer readable media, in the form of random access memory (RAM) and/or nonvolatile memory such as read only memory (ROM) or flash RAM. Memory is an example of computer readable media.

计算机可读介质包括永久性和非永久性、可移动和非可移动媒体可以由任何方法或技术来实现信息存储。信息可以是计算机可读指令、数据结构、程序的模块或其他数据。计算机的存储介质的例子包括,但不限于相变内存(PRAM)、静态随机存取存储器(SRAM)、动态随机存取存储器(DRAM)、其他类型的随机存取存储器(RAM)、只读存储器(ROM)、电可擦除可编程只读存储器(EEPROM)、快闪记忆体或其他内存技术、只读光盘只读存储器(CD-ROM)、数字多功能光盘(DVD)或其他光学存储、磁盒式磁带,磁带磁磁盘存储或其他磁性存储设备或任何其他非传输介质,可用于存储可以被计算设备访问的信息。按照本文中的界定,计算机可读介质不包括暂存电脑可读媒体(transitory media),如调制的数据信号和载波。Computer-readable media, including both permanent and non-permanent, removable and non-removable media, can be implemented by any method or technology for storage of information. Information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), static random access memory (SRAM), dynamic random access memory (DRAM), other types of random access memory (RAM), read only memory (ROM), Electrically Erasable Programmable Read-Only Memory (EEPROM), Flash memory or other memory technology, Compact Disc Read-Only Memory (CD-ROM), Digital Versatile Disc (DVD) or other optical storage, Magnetic tape cartridge, tape magnetic disk storage or other magnetic storage device or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, computer-readable media excludes transitory computer-readable media, such as modulated data signals and carrier waves.

还需要说明的是,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、商品或者设备不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、商品或者设备所固有的要素。在没有更多限制的情况下,由语句“包括一个……”限定的要素,并不排除在包括所述要素的过程、方法、商品或者设备中还存在另外的相同要素。It should also be noted that the term "comprises", "comprises" or any other variation thereof is intended to cover a non-exclusive inclusion such that a process, method, article, or apparatus comprising a set of elements includes not only those elements, but also includes Other elements not expressly listed, or elements inherent in the process, method, commodity, or apparatus are also included. Without further limitations, an element defined by the phrase "comprising a ..." does not exclude the presence of additional identical elements in the process, method, article or apparatus comprising said element.

本领域技术人员应明白,本申请的实施例可提供为方法、系统或计算机程序产品。因此,本申请可采用完全硬件实施例、完全软件实施例或结合软件和硬件方面的实施例的形式。而且,本申请可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质(包括但不限于磁盘存储器、CD-ROM、光学存储器等)上实施的计算机程序产品的形式。Those skilled in the art should understand that the embodiments of the present application may be provided as methods, systems or computer program products. Accordingly, the present application can take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) having computer-usable program code embodied therein.

本申请可以在由计算机执行的计算机可执行指令的一般上下文中描述,例如程序模块。一般地,程序模块包括执行特定任务或实现特定抽象数据类型的例程、程序、对象、组件、数据结构等等。也可以在分布式计算环境中实践本申请,在这些分布式计算环境中,由通过通信网络而被连接的远程处理设备来执行任务。在分布式计算环境中,程序模块可以位于包括存储设备在内的本地和远程计算机存储介质中。This application may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. The application may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer storage media including storage devices.

本说明书中的各个实施例均采用递进的方式描述,各个实施例之间相同相似的部分互相参见即可,每个实施例重点说明的都是与其他实施例的不同之处。尤其,对于系统实施例而言,由于其基本相似于方法实施例,所以描述的比较简单,相关之处参见方法实施例的部分说明即可。Each embodiment in this specification is described in a progressive manner, the same and similar parts of each embodiment can be referred to each other, and each embodiment focuses on the differences from other embodiments. In particular, for the system embodiment, since it is basically similar to the method embodiment, the description is relatively simple, and for relevant parts, refer to part of the description of the method embodiment.

以上所述仅为本申请的实施例而已,并不用于限制本申请。对于本领域技术人员来说,本申请可以有各种更改和变化。凡在本申请的精神和原理之内所作的任何修改、等同替换、改进等,均应包含在本申请的权利要求范围之内。The above descriptions are only examples of the present application, and are not intended to limit the present application. For those skilled in the art, various modifications and changes may occur in this application. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present application shall be included within the scope of the claims of the present application.

Claims (18)

1.一种信息脱敏方法,应用于业务系统对应的信息脱敏装置,所述方法包括:1. An information desensitization method applied to an information desensitization device corresponding to a business system, the method comprising: 接收业务系统发送的脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;receiving the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs; 根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;Searching for a desensitization rule corresponding to the field to be desensitized according to the target service type and the field to be desensitized; 使用所述脱敏规则对所述待脱敏字段进行脱敏处理。The desensitization process is performed on the field to be desensitized by using the desensitization rule. 2.如权利要求1所述的方法,所述根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则,包括:2. The method according to claim 1, said searching the desensitization rule corresponding to the field to be desensitized according to the target service type and the field to be desensitized, comprising: 根据所述目标业务类型和所述待脱敏字段,从建立的业务类型、敏感字段与脱敏规则的对应关系中,查找所述目标业务类型下的所述待脱敏字段对应的脱敏规则。According to the target business type and the field to be desensitized, search for the desensitization rule corresponding to the field to be desensitized under the target business type from the established correspondence between the business type, sensitive field and desensitization rule . 3.如权利要求2所述的方法,所述接收业务系统发送的脱敏请求之前,所述方法还包括:3. The method according to claim 2, before receiving the desensitization request sent by the business system, the method further comprises: 确定所述业务系统下的各个业务类型对应的敏感字段,以及每个敏感字段对应的脱敏规则;Determine the sensitive fields corresponding to each business type under the business system, and the desensitization rules corresponding to each sensitive field; 建立所述业务类型、所述敏感字段与所述脱敏规则的对应关系。A correspondence relationship between the service type, the sensitive field, and the desensitization rule is established. 4.如权利要求2所述的方法,所述方法还包括:4. The method of claim 2, further comprising: 获取新增加的敏感字段;Obtain newly added sensitive fields; 确定所述新增加的敏感字段所属的业务类型以及所述新增加的敏感字段对应的脱敏规则;Determine the business type to which the newly added sensitive field belongs and the desensitization rule corresponding to the newly added sensitive field; 根据新增加的敏感字段、所述新增加的敏感字段所属的业务类型以及所述新增加的敏感字段所对应的脱敏规则,更新所述对应关系。The corresponding relationship is updated according to the newly added sensitive field, the service type to which the newly added sensitive field belongs, and the desensitization rule corresponding to the newly added sensitive field. 5.如权利要求1-4任一项所述的方法,所述方法还包括:5. The method of any one of claims 1-4, further comprising: 若未查找到所述待脱敏字段对应的脱敏规则,向所述业务系统发送提示信息;其中,所述提示信息用于提示不存在所述待脱敏字段对应的脱敏规则。If no desensitization rule corresponding to the field to be desensitized is found, a prompt message is sent to the business system; wherein the prompt message is used to prompt that there is no desensitization rule corresponding to the field to be desensitized. 6.如权利要求1所述的方法,所述脱敏规则使用正则表达式表示;6. The method according to claim 1, wherein the desensitization rule is represented by a regular expression; 所述使用所述脱敏规则对所述待脱敏字段进行脱敏处理,包括:The desensitization of the field to be desensitized by using the desensitization rule includes: 对所述正则表达式进行解析,确定所述正则表达式所表示的含义;Analyzing the regular expression to determine the meaning represented by the regular expression; 按照解析得到的所述含义对所述待脱敏字段进行脱敏。The field to be desensitized is desensitized according to the meaning obtained by parsing. 7.如权利要求1所述的方法,所述使用所述脱敏规则对所述待脱敏字段进行脱敏处理之后,所述方法还包括:7. The method according to claim 1, after using the desensitization rule to desensitize the field to be desensitized, the method further comprises: 向所述业务系统发送经过脱敏处理后的字段。Send the desensitized fields to the business system. 8.一种信息脱敏装置,所述装置包括:8. An information desensitization device, said device comprising: 接收模块,接收业务系统发送的脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;所述信息脱敏装置与所述业务系统对应;The receiving module receives the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target business type to which the field to be desensitized belongs; the information desensitization device corresponds to the business system ; 查找模块,根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;A search module, searching for a desensitization rule corresponding to the field to be desensitized according to the target business type and the field to be desensitized; 脱敏模块,使用所述脱敏规则对所述待脱敏字段进行脱敏处理。A desensitization module, which uses the desensitization rule to desensitize the field to be desensitized. 9.如权利要求8所述的装置,所述查找模块,具体用于:9. The device according to claim 8, the search module is specifically used for: 根据所述目标业务类型和所述待脱敏字段,从建立的业务类型、敏感字段与脱敏规则的对应关系中,查找所述目标业务类型下的所述待脱敏字段对应的脱敏规则。According to the target business type and the field to be desensitized, search for the desensitization rule corresponding to the field to be desensitized under the target business type from the established correspondence between the business type, sensitive field and desensitization rule . 10.如权利要求9所述的装置,所述装置还包括:10. The apparatus of claim 9, further comprising: 第一确定模块,确定所述业务系统下的各个业务类型对应的敏感字段,以及每个敏感字段对应的脱敏规则;The first determination module determines the sensitive fields corresponding to each business type under the business system, and the desensitization rules corresponding to each sensitive field; 建立模块,建立所述业务类型、所述敏感字段与所述脱敏规则的对应关系。The establishment module is used to establish the corresponding relationship between the service type, the sensitive field and the desensitization rule. 11.如权利要求9所述的装置,所述装置还包括:11. The apparatus of claim 9, further comprising: 获取模块,获取新增加的敏感字段;Get the module and get the newly added sensitive fields; 第二确定模块,确定所述新增加的敏感字段所属的业务类型以及所述新增加的敏感字段对应的脱敏规则;The second determination module determines the business type to which the newly added sensitive field belongs and the desensitization rule corresponding to the newly added sensitive field; 更新模块,根据新增加的敏感字段、所述新增加的敏感字段所属的业务类型以及所述新增加的敏感字段所对应的脱敏规则,更新所述对应关系。The update module is configured to update the corresponding relationship according to the newly added sensitive field, the business type to which the newly added sensitive field belongs, and the desensitization rule corresponding to the newly added sensitive field. 12.一种信息脱敏系统,包括:业务系统以及信息脱敏装置;12. An information desensitization system, comprising: a business system and an information desensitization device; 所述业务系统,用于向所述信息脱敏装置发送脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;The business system is configured to send a desensitization request to the information desensitization device; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs; 信息脱敏装置,用于接收所述脱敏请求,以及根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;并使用所述脱敏规则对所述待脱敏字段进行脱敏处理。An information desensitization device, configured to receive the desensitization request, and according to the target service type and the field to be desensitized, find a desensitization rule corresponding to the field to be desensitized; and use the desensitization rule to The field to be desensitized is desensitized. 13.如权利要求12所述的系统,所述信息脱敏装置,具体用于:13. The system according to claim 12, the information desensitization device is specifically used for: 根据所述目标业务类型和所述待脱敏字段,从建立的业务类型、敏感字段与脱敏规则的对应关系中,查找所述目标业务类型下的所述待脱敏字段对应的脱敏规则。According to the target business type and the field to be desensitized, search for the desensitization rule corresponding to the field to be desensitized under the target business type from the established correspondence between the business type, sensitive field and desensitization rule . 14.如权利要求13所述的系统,所述信息脱敏装置,还用于:14. The system according to claim 13, the information desensitization device is also used for: 确定所述业务系统下的各个业务类型对应的敏感字段,以及每个敏感字段对应的脱敏规则;建立所述业务类型、所述敏感字段与所述脱敏规则的对应关系。Determining the sensitive fields corresponding to each business type under the business system, and the desensitization rules corresponding to each sensitive field; establishing the corresponding relationship between the business type, the sensitive fields and the desensitization rules. 15.如权利要求13所述的系统,所述信息脱敏装置,还用于:15. The system according to claim 13, the information desensitization device is also used for: 获取新增加的敏感字段;确定所述新增加的敏感字段所属的业务类型以及所述新增加的敏感字段对应的脱敏规则;根据新增加的敏感字段、所述新增加的敏感字段所属的业务类型以及所述新增加的敏感字段所对应的脱敏规则,更新所述对应关系。Obtain the newly added sensitive field; determine the business type to which the newly added sensitive field belongs and the desensitization rule corresponding to the newly added sensitive field; according to the newly added sensitive field, the business type to which the newly added sensitive field belongs type and the desensitization rule corresponding to the newly added sensitive field, and update the corresponding relationship. 16.如权利要求12-15任一项所述的系统,所述信息脱敏装置,还用于:16. The system according to any one of claims 12-15, the information desensitization device is also used for: 若未查找到所述待脱敏字段对应的脱敏规则,向所述业务系统发送提示信息;其中,所述提示信息用于提示不存在所述待脱敏字段对应的脱敏规则。If no desensitization rule corresponding to the field to be desensitized is found, a prompt message is sent to the business system; wherein the prompt message is used to prompt that there is no desensitization rule corresponding to the field to be desensitized. 17.一种信息脱敏设备,包括:17. An information desensitization device, comprising: 处理器;以及processor; and 被安排成存储计算机可执行指令的存储器,所述可执行指令在被执行时使所述处理器:A memory arranged to store computer-executable instructions that, when executed, cause the processor to: 接收业务系统发送的脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;receiving the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs; 根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;Searching for a desensitization rule corresponding to the field to be desensitized according to the target service type and the field to be desensitized; 使用所述脱敏规则对所述待脱敏字段进行脱敏处理。The desensitization process is performed on the field to be desensitized by using the desensitization rule. 18.一种存储介质,用于存储计算机可执行指令,所述可执行指令在被执行时实现以下流程:18. A storage medium for storing computer-executable instructions that, when executed, implement the following processes: 接收业务系统发送的脱敏请求;其中,所述脱敏请求中携带有待脱敏字段和所述待脱敏字段所属的目标业务类型;receiving the desensitization request sent by the business system; wherein, the desensitization request carries the field to be desensitized and the target service type to which the field to be desensitized belongs; 根据所述目标业务类型和所述待脱敏字段,查找所述待脱敏字段对应的脱敏规则;Searching for a desensitization rule corresponding to the field to be desensitized according to the target service type and the field to be desensitized; 使用所述脱敏规则对所述待脱敏字段进行脱敏处理。The desensitization process is performed on the field to be desensitized by using the desensitization rule.
CN201810456793.6A 2018-05-14 2018-05-14 Information desensitization method, device and system Active CN108664812B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201810456793.6A CN108664812B (en) 2018-05-14 2018-05-14 Information desensitization method, device and system
CN202211730981.6A CN115935428A (en) 2018-05-14 2018-05-14 Information desensitization method, device and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810456793.6A CN108664812B (en) 2018-05-14 2018-05-14 Information desensitization method, device and system

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN202211730981.6A Division CN115935428A (en) 2018-05-14 2018-05-14 Information desensitization method, device and system

Publications (2)

Publication Number Publication Date
CN108664812A true CN108664812A (en) 2018-10-16
CN108664812B CN108664812B (en) 2023-03-10

Family

ID=63779420

Family Applications (2)

Application Number Title Priority Date Filing Date
CN202211730981.6A Pending CN115935428A (en) 2018-05-14 2018-05-14 Information desensitization method, device and system
CN201810456793.6A Active CN108664812B (en) 2018-05-14 2018-05-14 Information desensitization method, device and system

Family Applications Before (1)

Application Number Title Priority Date Filing Date
CN202211730981.6A Pending CN115935428A (en) 2018-05-14 2018-05-14 Information desensitization method, device and system

Country Status (1)

Country Link
CN (2) CN115935428A (en)

Cited By (25)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109583226A (en) * 2018-10-26 2019-04-05 平安科技(深圳)有限公司 Data desensitization process method, apparatus and electronic equipment
CN109726590A (en) * 2018-12-24 2019-05-07 平安普惠企业管理有限公司 System log desensitization method, desensitization system, computer equipment and storage medium
CN109815742A (en) * 2019-02-22 2019-05-28 蔷薇智慧科技有限公司 Data desensitization method and device
CN109981619A (en) * 2019-03-13 2019-07-05 泰康保险集团股份有限公司 Data capture method, device, medium and electronic equipment
CN110084065A (en) * 2019-04-29 2019-08-02 北京口袋时尚科技有限公司 Data desensitization method and device
CN110110588A (en) * 2019-03-21 2019-08-09 平安普惠企业管理有限公司 The method, apparatus computer equipment of business is handled on line based on recognition of face
CN110289059A (en) * 2019-06-13 2019-09-27 北京百度网讯科技有限公司 Medical data processing method, device, storage medium and electronic equipment
CN110348239A (en) * 2019-06-13 2019-10-18 平安普惠企业管理有限公司 Desensitize regular configuration method and data desensitization method, system, computer equipment
CN110990866A (en) * 2019-11-28 2020-04-10 中国银行股份有限公司 Information processing method, device and system
CN111177785A (en) * 2019-12-31 2020-05-19 广东鸿数科技有限公司 Desensitization processing method for private data of enterprise-based business system
CN111274610A (en) * 2020-01-21 2020-06-12 京东数字科技控股有限公司 Data desensitization method and device and desensitization service platform
CN111737746A (en) * 2020-06-24 2020-10-02 四川长虹电器股份有限公司 Method for desensitizing dynamic configuration data based on java annotation
CN112131027A (en) * 2020-09-29 2020-12-25 中国银行股份有限公司 Distributed application cluster and data desensitization method
CN112131598A (en) * 2020-07-17 2020-12-25 中信银行股份有限公司 Data desensitization method and device, electronic equipment and storage medium
CN112182643A (en) * 2020-09-07 2021-01-05 珠海格力电器股份有限公司 Data privacy protection method and device, electronic equipment and storage medium
CN112307509A (en) * 2020-10-20 2021-02-02 北京三快在线科技有限公司 Desensitization processing method, equipment, medium and electronic equipment
CN112347741A (en) * 2020-10-26 2021-02-09 长沙市到家悠享网络科技有限公司 Information editing method, device, equipment and storage medium
CN112491816A (en) * 2020-11-12 2021-03-12 支付宝(杭州)信息技术有限公司 Service data processing method and device
CN112818383A (en) * 2021-01-14 2021-05-18 内蒙古蒙商消费金融股份有限公司 Table registration method and device
CN112825096A (en) * 2019-11-21 2021-05-21 北京沃东天骏信息技术有限公司 Data desensitization method and device
CN113127919A (en) * 2019-12-30 2021-07-16 航天信息股份有限公司 Data processing method and device, computing equipment and storage medium
CN113127929A (en) * 2021-04-30 2021-07-16 平安普惠企业管理有限公司 Data desensitization method, desensitization rule processing method, device, equipment and storage medium
CN114025358A (en) * 2020-07-15 2022-02-08 成都鼎桥通信技术有限公司 Data desensitization method, device, equipment and storage medium
CN114896628A (en) * 2022-05-16 2022-08-12 中国银行股份有限公司 Data desensitization method and device
CN115495769A (en) * 2022-11-16 2022-12-20 江苏曼荼罗软件股份有限公司 Data desensitization method, system, readable storage medium and device

Citations (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100250918A1 (en) * 2009-03-27 2010-09-30 Neuralitc Systems Method and system for identifying an application type of encrypted traffic
US20120151597A1 (en) * 2010-12-14 2012-06-14 International Business Machines Corporation De-Identification of Data
US20140369271A1 (en) * 2013-06-14 2014-12-18 Netgear, Inc. Method and apparatus for implementing coexistence of multiple homogeneous radios and traffic management therein
CN106203145A (en) * 2016-08-04 2016-12-07 北京网智天元科技股份有限公司 Data desensitization method and relevant device
CN106611129A (en) * 2016-12-27 2017-05-03 东华互联宜家数据服务有限公司 Data desensitization method, device and system
WO2017088683A1 (en) * 2015-11-24 2017-06-01 阿里巴巴集团控股有限公司 Data desensitization method and system
CN107145799A (en) * 2017-05-04 2017-09-08 山东浪潮云服务信息科技有限公司 A kind of data desensitization method and device
CN107292183A (en) * 2017-06-29 2017-10-24 国信优易数据有限公司 A kind of data processing method and equipment
CN107315968A (en) * 2017-06-29 2017-11-03 国信优易数据有限公司 A kind of data processing method and equipment
CN107563218A (en) * 2017-08-23 2018-01-09 北京明朝万达科技股份有限公司 A kind of data desensitization method and Hbase desensitization process systems based on big data
CN107679418A (en) * 2017-09-30 2018-02-09 武汉汉思信息技术有限责任公司 Data desensitization method, server and storage medium
CN107766741A (en) * 2017-10-23 2018-03-06 中恒华瑞(北京)信息技术有限公司 Data desensitization system and method
CN107871083A (en) * 2017-11-07 2018-04-03 平安科技(深圳)有限公司 Desensitize regular collocation method, application server and computer-readable recording medium

Patent Citations (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100250918A1 (en) * 2009-03-27 2010-09-30 Neuralitc Systems Method and system for identifying an application type of encrypted traffic
US20120151597A1 (en) * 2010-12-14 2012-06-14 International Business Machines Corporation De-Identification of Data
US20140369271A1 (en) * 2013-06-14 2014-12-18 Netgear, Inc. Method and apparatus for implementing coexistence of multiple homogeneous radios and traffic management therein
WO2017088683A1 (en) * 2015-11-24 2017-06-01 阿里巴巴集团控股有限公司 Data desensitization method and system
CN106203145A (en) * 2016-08-04 2016-12-07 北京网智天元科技股份有限公司 Data desensitization method and relevant device
CN106611129A (en) * 2016-12-27 2017-05-03 东华互联宜家数据服务有限公司 Data desensitization method, device and system
CN107145799A (en) * 2017-05-04 2017-09-08 山东浪潮云服务信息科技有限公司 A kind of data desensitization method and device
CN107292183A (en) * 2017-06-29 2017-10-24 国信优易数据有限公司 A kind of data processing method and equipment
CN107315968A (en) * 2017-06-29 2017-11-03 国信优易数据有限公司 A kind of data processing method and equipment
CN107563218A (en) * 2017-08-23 2018-01-09 北京明朝万达科技股份有限公司 A kind of data desensitization method and Hbase desensitization process systems based on big data
CN107679418A (en) * 2017-09-30 2018-02-09 武汉汉思信息技术有限责任公司 Data desensitization method, server and storage medium
CN107766741A (en) * 2017-10-23 2018-03-06 中恒华瑞(北京)信息技术有限公司 Data desensitization system and method
CN107871083A (en) * 2017-11-07 2018-04-03 平安科技(深圳)有限公司 Desensitize regular collocation method, application server and computer-readable recording medium

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
XIAOFENG LU 等: "Terminal Sensitive Data Protection by Adjusting Access Time Bidirectionally and Automatically", 《2018 27TH INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATION AND NETWORKS(ICCCN)》 *
吕军 等: "基于多业务场景的大数据脱敏技术研究及其在电力用户隐私信息保护中的应用", 《电力大数据》 *
黄海军: "大数据时代的安防应用", 《中国公共安全》 *

Cited By (34)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109583226A (en) * 2018-10-26 2019-04-05 平安科技(深圳)有限公司 Data desensitization process method, apparatus and electronic equipment
CN109726590A (en) * 2018-12-24 2019-05-07 平安普惠企业管理有限公司 System log desensitization method, desensitization system, computer equipment and storage medium
WO2020134657A1 (en) * 2018-12-24 2020-07-02 平安普惠企业管理有限公司 System log desensitization method, desensitization system, computer device, and storage medium
CN109815742A (en) * 2019-02-22 2019-05-28 蔷薇智慧科技有限公司 Data desensitization method and device
CN109981619A (en) * 2019-03-13 2019-07-05 泰康保险集团股份有限公司 Data capture method, device, medium and electronic equipment
CN110110588A (en) * 2019-03-21 2019-08-09 平安普惠企业管理有限公司 The method, apparatus computer equipment of business is handled on line based on recognition of face
CN110084065A (en) * 2019-04-29 2019-08-02 北京口袋时尚科技有限公司 Data desensitization method and device
CN110084065B (en) * 2019-04-29 2021-07-30 北京口袋时尚科技有限公司 Data desensitization method and device
CN110348239B (en) * 2019-06-13 2023-10-27 张建军 Desensitization rule configuration method, data desensitization method, system and computer equipment
CN110289059A (en) * 2019-06-13 2019-09-27 北京百度网讯科技有限公司 Medical data processing method, device, storage medium and electronic equipment
CN110348239A (en) * 2019-06-13 2019-10-18 平安普惠企业管理有限公司 Desensitize regular configuration method and data desensitization method, system, computer equipment
CN112825096A (en) * 2019-11-21 2021-05-21 北京沃东天骏信息技术有限公司 Data desensitization method and device
CN110990866A (en) * 2019-11-28 2020-04-10 中国银行股份有限公司 Information processing method, device and system
CN113127919A (en) * 2019-12-30 2021-07-16 航天信息股份有限公司 Data processing method and device, computing equipment and storage medium
CN111177785B (en) * 2019-12-31 2023-04-11 广东鸿数科技有限公司 Desensitization processing method for private data of enterprise-based business system
CN111177785A (en) * 2019-12-31 2020-05-19 广东鸿数科技有限公司 Desensitization processing method for private data of enterprise-based business system
CN111274610A (en) * 2020-01-21 2020-06-12 京东数字科技控股有限公司 Data desensitization method and device and desensitization service platform
CN111737746A (en) * 2020-06-24 2020-10-02 四川长虹电器股份有限公司 Method for desensitizing dynamic configuration data based on java annotation
CN114025358A (en) * 2020-07-15 2022-02-08 成都鼎桥通信技术有限公司 Data desensitization method, device, equipment and storage medium
CN114025358B (en) * 2020-07-15 2024-02-13 成都鼎桥通信技术有限公司 Data desensitization method, device, equipment and storage medium
CN112131598B (en) * 2020-07-17 2024-12-03 中信银行股份有限公司 Data desensitization method, device, electronic device and storage medium
CN112131598A (en) * 2020-07-17 2020-12-25 中信银行股份有限公司 Data desensitization method and device, electronic equipment and storage medium
CN112182643A (en) * 2020-09-07 2021-01-05 珠海格力电器股份有限公司 Data privacy protection method and device, electronic equipment and storage medium
CN112182643B (en) * 2020-09-07 2024-08-02 珠海格力电器股份有限公司 Data privacy protection method and device, electronic equipment and storage medium
CN112131027A (en) * 2020-09-29 2020-12-25 中国银行股份有限公司 Distributed application cluster and data desensitization method
CN112307509A (en) * 2020-10-20 2021-02-02 北京三快在线科技有限公司 Desensitization processing method, equipment, medium and electronic equipment
CN112347741A (en) * 2020-10-26 2021-02-09 长沙市到家悠享网络科技有限公司 Information editing method, device, equipment and storage medium
CN112491816A (en) * 2020-11-12 2021-03-12 支付宝(杭州)信息技术有限公司 Service data processing method and device
CN112818383A (en) * 2021-01-14 2021-05-18 内蒙古蒙商消费金融股份有限公司 Table registration method and device
CN113127929A (en) * 2021-04-30 2021-07-16 平安普惠企业管理有限公司 Data desensitization method, desensitization rule processing method, device, equipment and storage medium
CN113127929B (en) * 2021-04-30 2024-03-01 天翼安全科技有限公司 Data desensitization method, desensitization rule processing method, device, equipment and storage medium
CN114896628A (en) * 2022-05-16 2022-08-12 中国银行股份有限公司 Data desensitization method and device
CN115495769B (en) * 2022-11-16 2023-03-10 江苏曼荼罗软件股份有限公司 Data desensitization method, system, readable storage medium and device
CN115495769A (en) * 2022-11-16 2022-12-20 江苏曼荼罗软件股份有限公司 Data desensitization method, system, readable storage medium and device

Also Published As

Publication number Publication date
CN115935428A (en) 2023-04-07
CN108664812B (en) 2023-03-10

Similar Documents

Publication Publication Date Title
CN108664812B (en) Information desensitization method, device and system
CN110990804B (en) Resource access method, device and device
US11677686B2 (en) Packet forwarding method, apparatus, device, and system
CN106663111B (en) Evaluating semantic interpretations of search queries
US11928139B2 (en) System for routing of requests
US9311286B2 (en) Intelligent automatic expansion/contraction of abbreviations in text-based electronic communications
CN104703125B (en) Information recommendation method, device and terminal based on instant messaging
TWI736123B (en) BLE communication method, device, equipment and storage medium
CN110457578B (en) Method and device for identifying customer service needs
CA3078148C (en) Search method and apparatus, and non-temporary computer-readable storage medium
CN110781192B (en) Verification method, device and equipment of block chain data
WO2013134287A1 (en) Automatic input signal recognition using location based language modeling
CN109241026B (en) Method, device and system for data management
CN107580013B (en) Method and device for requesting data across domains
CN107402945B (en) Word stock generation method and device and short text detection method and device
CN109615423B (en) Service processing method and device
US20180011933A1 (en) Method, apparatus, and server for generating hotspot content
CN105493079A (en) Apparatus and method for providing connections to contacts based on associations with content
CN106156050B (en) Data processing method and device
CN115221523A (en) Data processing method, device and equipment
US11163953B2 (en) Natural language processing and candidate response evaluation
CN111858864B (en) Method, device, electronic device and readable medium for implementing slot filling
CN109495464A (en) Track method, apparatus, equipment and the system of application access
CN105653713B (en) It is a kind of to determine the method and device that EIC equipment identification code is present
US11429789B2 (en) Natural language processing and candidate response identification

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right
TA01 Transfer of patent application right

Effective date of registration: 20200925

Address after: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman, British Islands

Applicant after: Innovative advanced technology Co.,Ltd.

Address before: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman, British Islands

Applicant before: Advanced innovation technology Co.,Ltd.

Effective date of registration: 20200925

Address after: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman, British Islands

Applicant after: Advanced innovation technology Co.,Ltd.

Address before: A four-storey 847 mailbox in Grand Cayman Capital Building, British Cayman Islands

Applicant before: Alibaba Group Holding Ltd.

GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20240226

Address after: Guohao Times City # 20-01, 128 Meizhi Road, Singapore

Patentee after: Advanced Nova Technology (Singapore) Holdings Ltd.

Country or region after: Singapore

Address before: Ky1-9008 business centre, 27 Hospital Road, Georgetown, grand caiman, UK

Patentee before: Innovative advanced technology Co.,Ltd.

Country or region before: Cayman Islands