公开(公告)号：US20200019728A1

公开(公告)日：2020-01-16

申请号：US16032067

申请日：2018-07-10

Applicant: SAP SE

Inventor： Benny Rolle

IPC: G06F21/62 ,  G06F21/56 ,  G06F17/30 ,  G06F11/30

Abstract: Dynamic data anonymization utilizes the introduction, tracking, and checking of taint information. During taint introduction, taint information relevant to a source of input data is bound with that data, and the taint information stored as metadata. During taint tracking, the taint information is maintained with the original data over its lifespan, and is also propagated with any derivative data generated from the original data. An anonymization procedure considers the taint information as semantic content to covert the data into anonymous form. Taint checking during anonymization determines whether a data object or a variable is tainted, and identifies the relevant taint information to allow the output of data in anonymous form. Introduction, tracking, and checking of semantic taint information permits embodiments to dynamically calculate anonymization metrics (e.g., k-anonymization, l-diversity) on the basis of the semantics of taint metadata that is actually present. This imparts resilience against accidental disclosure of privacy data.

公开(公告)号：US20250124173A1

公开(公告)日：2025-04-17

申请号：US18487484

申请日：2023-10-16

Applicant: SAP SE

Inventor： Benny Rolle ,  Matthias Vogel

IPC: G06F21/64 ,  G06F21/62

Abstract: The present disclosure involves systems, software, and computer implemented methods for data privacy. One example method includes receiving normalized and hashed object data for multiple landscape systems in a multi-system landscape. The normalized and hashed object data from different landscape systems is compared to identify at least one difference between normalized and hashed object data between landscape systems for at least one object. At least one misconfiguration in the multi-system landscape is identified based on the at least one difference between normalized and hashed object data between landscape systems. A reconfiguration of the multi-system landscape is identified for correcting the misconfiguration; and the reconfiguration is applied in the multi-system landscape to correct the misconfiguration.

公开(公告)号：US12210897B2

公开(公告)日：2025-01-28

申请号：US17457802

申请日：2021-12-06

Applicant: SAP SE

Inventor： Benny Rolle ,  Ufuoma Ighoroje ,  Matthias Vogel

IPC: G06F9/46 ,  G06F9/448 ,  G06F11/07 ,  G06F16/28

Abstract: The present disclosure involves systems, software, and computer implemented methods for integrated data privacy services. An example method includes receiving a request to initiate an aligned purpose disassociation protocol for a purpose for an object instance. A determination is made as to whether a timestamp is stored for the purpose and the object instance that indicates an earliest time that the purpose can be disassociated from the object instance. The request is accepted in response to determining that no timestamp is stored for the purpose and the object instance that is greater than the current time. A status request is sent to applications that requests a status response that indicates whether an application can disassociate the purpose from the object instance. Status responses are received from at least some of the applications. A disassociation decision for the purpose and the object instance is determined based on the received status responses.

公开(公告)号：US20250013602A1

公开(公告)日：2025-01-09

申请号：US18347065

申请日：2023-07-05

Applicant: SAP SE

Inventor： Stefan Hesse ,  Matthias Vogel ,  Benny Rolle ,  Carsten Pluder ,  Volker Lehnert ,  Diane Schmidt ,  Martina Knoedler

IPC: G06F16/11 ,  G06F16/182

Abstract: The present disclosure involves systems, software, and computer implemented methods for data privacy. One example method includes performing a processing action for a data subject for a purpose using a set of data categories that are associated with the purpose. The purpose has a retention period and is a parent purpose in a purpose hierarchy with at least one dependent purpose as a child purpose of the purpose. Dependent purpose retention periods and dependent purpose data categories are determined for each dependent purposes as respective subsets of the set of data categories. In response to an end of purpose for the purpose, data of the set of data categories is blocked. Data in the set of data categories that are not dependent purpose data categories is retained according to the retention period and data of each dependent purpose data category is retained according to a corresponding dependent retention period.

公开(公告)号：US12182284B2

公开(公告)日：2024-12-31

申请号：US17680759

申请日：2022-02-25

Applicant: SAP SE

Inventor： Benny Rolle ,  Matthias Vogel

IPC: G06F21/62

Abstract: The present disclosure involves systems, software, and computer implemented methods for integrated data privacy services. An example method includes determining, by a data privacy integration service, a condition that has occurred from performing a data privacy integration protocol that indicates that a first object is to be redistributed to applications in a multiple-application landscape. Application responder group configurations are identified that group the applications into multiple redistribution responder groups for performing redistribution operations for an object type of the first object in response to redistribution requests. A redistribution command to redistribute the first object is sent to each application in a first redistribution responder group. If all redistribution statuses received from applications in the first redistribution responder group indicate successful redistribution of the first object, the redistribution command is sent to each application in a second redistribution responder group.

公开(公告)号：US20240370582A1

公开(公告)日：2024-11-07

申请号：US18772470

申请日：2024-07-15

Applicant: SAP SE

Inventor： Benny Rolle ,  Ufuoma Ighoroje ,  Matthias Vogel

IPC: G06F21/62 ,  G06F16/903

Abstract: The present disclosure involves systems, software, and computer implemented methods for integrated data privacy services. An example method includes determining to initiate an integrated end of purpose protocol for an object. An end-of-purpose query is provided to multiple applications that requests each application to determine whether the application is able to block the object. End-of-purpose statuses are received, in response to the end-of-purpose query, that each indicate whether a respective application is able to block the object. The end-of-purpose statuses are evaluated to determine whether an aligned end of purpose has been reached for the object. In response to determining that the aligned end of purpose has been reached for the object, a block command is provided to each application that instructs the application to locally block the object in the application.

公开(公告)号：US12067139B2

公开(公告)日：2024-08-20

申请号：US17702013

申请日：2022-03-23

Applicant: SAP SE

Inventor： Benny Rolle ,  Ufuoma Ighoroje ,  Matthias Vogel

IPC: G06F21/62 ,  G06F16/903

CPC classification number: G06F21/6218 ,  G06F16/90335

Abstract: The present disclosure involves systems, software, and computer implemented methods for integrated data privacy services. An example method includes determining to initiate an integrated end of purpose protocol for an object. An end-of-purpose query is provided to multiple applications that requests each application to determine whether the application is able to block the object. End-of-purpose statuses are received, in response to the end-of-purpose query, that each indicate whether a respective application is able to block the object. The end-of-purpose statuses are evaluated to determine whether an aligned end of purpose has been reached for the object. In response to determining that the aligned end of purpose has been reached for the object, a block command is provided to each application that instructs the application to locally block the object in the application.

公开(公告)号：US20240184913A1

公开(公告)日：2024-06-06

申请号：US18073142

申请日：2022-12-01

Applicant: SAP SE

Inventor： Benny Rolle

IPC: G06F21/62 ,  G06F16/2457

CPC classification number: G06F21/6245 ,  G06F16/24575

Abstract: The present disclosure involves systems, software, and computer implemented methods for automatic generation of implicit information. One example method includes receiving a request for data for a system. Explicitly-stored data stored in the system is identified and added to a data repository used for the request. Function information is identified and stored in a function repository for functions used in the system that accept at least one parameter having a parameter data type and return a return value having a return data type. Implicitly-known data implicitly known by the system is determined by comparing each explicitly-stored data item in the data repository to each identified function included in the function repository. The explicitly-stored data and the implicitly-known data is provided in response to the request.

公开(公告)号：US20240184895A1

公开(公告)日：2024-06-06

申请号：US18074745

申请日：2022-12-05

Applicant: SAP SE

Inventor： Matthias Vogel ,  Benny Rolle

IPC: G06F21/60 ,  H04L67/10

CPC classification number: G06F21/60 ,  H04L67/10

Abstract: The present disclosure involves systems, software, and computer implemented methods for using asynchronous ping messages for determining capability of systems for executing asynchronous protocols. One example method includes sending a work package to at least one application in a multiple-application landscape to determine capabilities of each application for participating in a data privacy integration protocol. Application responses to the sending of the work package are evaluated to determine capabilities of each application for participating in the protocol. A determination is made regarding whether each application is capable of participating in the protocol. In response to determining that at least one application is not capable of participating in the protocol, at least one corrective action regarding the protocol is performed. In response to determining that each application is capable of participating in the protocol, at least one protocol action is performed for the protocol.

公开(公告)号：US11714828B2

公开(公告)日：2023-08-01

申请号：US17186934

申请日：2021-02-26

Applicant: SAP SE

Inventor： Benny Rolle ,  Matthias Vogel ,  Carsten Pluder ,  Ufuoma Ighoroje ,  Carlo Fuerst ,  Iwona Luther

IPC: G06F16/00 ,  G06F16/27

CPC classification number: G06F16/273

Abstract: The present disclosure involves systems, software, and computer implemented methods for aligned purpose disassociation in a multi-system landscape. One example method includes receiving, from multiple systems, a can-disassociate status for a purpose for an object instance. The status from a respective system can be an affirmative status that indicates that the system can disassociate the purpose from the instance or a negative status that indicates that the system cannot disassociate the purpose from the instance. The received statuses are evaluated to determine a central disassociate purpose decision for the purpose for the instance. The central disassociate purpose decision can be to disassociate the purpose from the instance when no system has the negative status and to not disassociate the purpose from the instance when at least one system has the negative status. The central disassociate purpose decision is provided to at least some of the multiple systems.