-
公开(公告)号:US11714828B2
公开(公告)日:2023-08-01
申请号:US17186934
申请日:2021-02-26
Applicant: SAP SE
Inventor: Benny Rolle , Matthias Vogel , Carsten Pluder , Ufuoma Ighoroje , Carlo Fuerst , Iwona Luther
CPC classification number: G06F16/273
Abstract: The present disclosure involves systems, software, and computer implemented methods for aligned purpose disassociation in a multi-system landscape. One example method includes receiving, from multiple systems, a can-disassociate status for a purpose for an object instance. The status from a respective system can be an affirmative status that indicates that the system can disassociate the purpose from the instance or a negative status that indicates that the system cannot disassociate the purpose from the instance. The received statuses are evaluated to determine a central disassociate purpose decision for the purpose for the instance. The central disassociate purpose decision can be to disassociate the purpose from the instance when no system has the negative status and to not disassociate the purpose from the instance when at least one system has the negative status. The central disassociate purpose decision is provided to at least some of the multiple systems.
-
52.发明公开公开(公告)号:US20230179602A1
公开(公告)日:2023-06-08
申请号:US17680741
申请日:2022-02-25
Applicant: SAP SE
Inventor: Benny Rolle , Matthias Vogel
IPC: H04L9/40
CPC classification number: H04L63/102 , H04L63/105 , H04L63/205
Abstract: The present disclosure involves systems, software, and computer implemented methods for integrated data privacy services. An example method includes receiving a request to initiate a data privacy integration protocol for applications in a multiple-application landscape. Voting responder group configurations are identified that group the applications into multiple voting responder groups for performing voting for the protocol. A voting request for the protocol is sent to applications in a first voting responder group. Data privacy integration protocol votes are received from the applications in the first voting responder group and a determination is made as to whether any application in the first voting responder group provided a veto vote for the protocol. If at least one application in the first voting responder group provided a veto vote for an object, the protocol is ended for the object without sending a voting request to applications in a second voting responder group.
-
Patent Agency Ranking
53.发明公开公开(公告)号:US20230177206A1
公开(公告)日:2023-06-08
申请号:US17718770
申请日:2022-04-12
Applicant: SAP SE
Inventor: Benny Rolle , Matthias Vogel , Iwona Luthor , Girish Sainath
CPC classification number: G06F21/6245 , G06F21/64 , G06F16/2365 , G06F16/2358
Abstract: The present disclosure involves systems, software, and computer implemented methods for integrated data privacy services. An example method includes providing ticket details for a data privacy integration protocol to each application in a multiple-application landscape. Each application has a relevant object type list and is included in a particular voting responder group for providing votes for the data privacy integration protocol. A first voting work package is created that includes a first subset of object identifiers included in the ticket. A work package object list is generated for each application based on the first subset of object identifiers. Object identifiers are removed from the work package object list for an application that have an associated object type that is not included in the relevant object type list for the application. Votes for the protocol are received from the first set of applications for a second subset of object identifiers.
-
公开(公告)号:US20230177186A1
公开(公告)日:2023-06-08
申请号:US17457797
申请日:2021-12-06
Applicant: SAP SE
Inventor: Ufuoma Ighoroje , Benny Rolle , Matthias Vogel , Carsten Pluder
IPC: G06F21/62 , G06F16/903
CPC classification number: G06F21/6218 , G06F16/90335
Abstract: The present disclosure involves systems, software, and computer implemented methods for integrated data privacy services. An example method includes determining to initiate an integrated end of purpose protocol for an object. An end-of-purpose query is provided to multiple applications that requests each application to determine whether the application is able to block the object. End-of-purpose statuses are received, in response to the end-of-purpose query, that each indicate whether a respective application is able to block the object. The end-of-purpose statuses are evaluated to determine whether an aligned end of purpose has been reached for the object. In response to determining that the aligned end of purpose has been reached for the object, a block command is provided to each application that instructs the application to locally block the object in the application.
-
公开(公告)号:US20230176894A1
公开(公告)日:2023-06-08
申请号:US17457802
申请日:2021-12-06
Applicant: SAP SE
Inventor: Benny Rolle , Ufuoma Ighoroje , Matthias Vogel
CPC classification number: G06F9/466 , G06F9/4488 , G06F16/289 , G06F11/0718
Abstract: The present disclosure involves systems, software, and computer implemented methods for integrated data privacy services. An example method includes receiving a request to initiate an aligned purpose disassociation protocol for a purpose for an object instance. A determination is made as to whether a timestamp is stored for the purpose and the object instance that indicates an earliest time that the purpose can be disassociated from the object instance. The request is accepted in response to determining that no timestamp is stored for the purpose and the object instance that is greater than the current time. A status request is sent to applications that requests a status response that indicates whether an application can disassociate the purpose from the object instance. Status responses are received from at least some of the applications. A disassociation decision for the purpose and the object instance is determined based on the received status responses.
-
公开(公告)号:US11657034B2
公开(公告)日:2023-05-23
申请号:US17216367
申请日:2021-03-29
Applicant: SAP SE
Inventor: Benny Rolle
CPC classification number: G06F16/2365 , G06F9/3865 , G06F9/4488 , G06F16/2308 , G06F16/289
Abstract: An update system may be used to update referenced data objects that are used by multiple applications. In some cases incorrect data may be entered and later corrected. Data consistency techniques are described herein to help avoid use of incorrect data before the data is corrected. A communication from the update system may include updated master data objects and an indication that there are further updates queued. A flag may be set for each of the updated master data objects as they are stored in a database. Then when a request to access those objects is received, the request may be denied when the flag set, thereby preventing access to potentially incorrect or outdated data.
-
公开(公告)号:US11113417B2
公开(公告)日:2021-09-07
申请号:US16032067
申请日:2018-07-10
Applicant: SAP SE
Inventor: Benny Rolle
Abstract: Dynamic data anonymization utilizes the introduction, tracking, and checking of taint information. During taint introduction, taint information relevant to a source of input data is bound with that data, and the taint information stored as metadata. During taint tracking, the taint information is maintained with the original data over its lifespan, and is also propagated with any derivative data generated from the original data. An anonymization procedure considers the taint information as semantic content to covert the data into anonymous form. Taint checking during anonymization determines whether a data object or a variable is tainted, and identifies the relevant taint information to allow the output of data in anonymous form. Introduction, tracking, and checking of semantic taint information permits embodiments to dynamically calculate anonymization metrics (e.g., k-anonymization, l-diversity) on the basis of the semantics of taint metadata that is actually present. This imparts resilience against accidental disclosure of privacy data.
-
-
-
-
-
-
Search Results
57
records
(took 0.019 seconds)
