公开(公告)号：US20240362187A1

公开(公告)日：2024-10-31

申请号：US18631660

申请日：2024-04-10

Applicant: Huazhong University of Science and Technology

Inventor： Peng XU ,  Shuning XU ,  Wei WANG ,  Runze XU ,  Tingting RAO ,  Hai JIN

IPC: G06F16/16 ,  G06F21/60

CPC classification number: G06F16/162 ,  G06F21/60 ,  G06F2221/2143

Abstract: A method and system for overwriting-based deletion of information and verification of deletion is provided, wherein the method at least includes: receiving a deletion request and/or a random seed; performing fine-grained overwriting on the information by means of random overwriting; in response to an extraction request for a post-deletion state, making a master node in a source domain of the information broadcast the extraction request to at least one slave node; and sending the post-deletion state fed back by the slave node and a related state-verification parameter to a verifying terminal, so that the verifying terminal verifies an overwriting result based on a verifiable pseudo-random function. Thus, the present application can effectively prevent information recovery after being logically deleted, and efficaciously ensure verifiability as well as non-recoverability of deleted information, thereby assuring non-recoverable deletion and providing verifiability of deletion to information subjects.

公开(公告)号：US20240330506A1

公开(公告)日：2024-10-03

申请号：US18603202

申请日：2024-03-12

Applicant: HUAZHONG UNIVERSITY OF SCIENCE AND TECHNOLOGY

Inventor： Peng XU ,  Runze XU ,  Wei WANG ,  Yinjia PI ,  Tianyang CHEN ,  Hai JIN

IPC: G06F21/62 ,  H04L9/08 ,  H04L9/32

CPC classification number: G06F21/6245 ,  H04L9/088 ,  H04L9/3247

Abstract: A method and system for deleting multi-copy personal data efficiently and securely is provided, wherein the personal data and its subject identifier are signed and uploaded to data domains and stored as personal data copies; the personal data copies along with its source and destination data are circulated among the data domains; the data domain receiving a deletion instruction transmits the deletion instruction to every relevant data domains based on the identifier of the personal data subject and the destination data and then performs deletion; and after completing the deletion, the data domain deposit its domain identifier and feedback data it receives into a log, and feed the log back to its superior data domain. And the system of the present disclosure includes a plurality of data domains that can perform the above operations, thereby realizing association-based storage, association-based deletion and verification of association-based deletion of multi-copy personal data.