research-article

Single-Setup Privacy Enforcement for Heterogeneous Data Ecosystems

Authors:
Issac Buenrostro

LinkedIn, Sunnyvale, CA, USA

LinkedIn, Sunnyvale, CA, USA
View Profile

,
Abhishek Tiwari

LinkedIn, Sunnyvale, CA, USA

LinkedIn, Sunnyvale, CA, USA
View Profile

,
Vasanth Rajamani

LinkedIn, Sunnyvale, CA, USA

LinkedIn, Sunnyvale, CA, USA
View Profile

,
Erman Pattuk

LinkedIn, Sunnyvale, CA, USA

LinkedIn, Sunnyvale, CA, USA
View Profile

,
Zhixiong Chen

LinkedIn, Sunnyvale, CA, USA

LinkedIn, Sunnyvale, CA, USA
View Profile

CIKM '18: Proceedings of the 27th ACM International Conference on Information and Knowledge ManagementOctober 2018Pages 1943–1946https://doi.org/10.1145/3269206.3269228

Published:17 October 2018Publication History

CIKM '18: Proceedings of the 27th ACM International Conference on Information and Knowledge Management

Pages 1943–1946

ABSTRACT

Strong member privacy in technology enterprises involves, among other objectives, deleting or anonymizing various kinds of data that a company controls. Those requirements are complicated in a heterogeneous data ecosystem where data is stored in multiple stores with different semantics: different indexing or update capabilities require processes specific to a store or even schema. In this demo we showcase a method to enforce record controls of arbitrary data stores via a three step process: generate an offline snapshot, run a policy mechanism to select rows to delete/update, and apply the changes to the original store. The first and third steps work on any store by leveraging Apache Gobblin, an open source data integration framework. The policy computation step runs as a batch Gobblin job where each table can be customized via a dataset metadata tracking system and SQL expressions providing table-specific business logic. This setup allows enforcement of highly-customizable privacy requirements in a variety of systems from hosted databases to third party data storage systems.

References

Issac Buenrostro and Anthony Hsu. 2018. Data Privacy at Scale. Dataworks Summit 2018.Google Scholar
Lin Qiao et al. 2015. Gobblin: Unifying Data Ingestion for Hadoop. In Proceedings of the VLDB Endowment, Vol. 8. Kohala Coast, Hawaii, 1764--1769. https://doi.org/2150-8097/15/08 Google ScholarDigital Library
Eric Sun. 2016. Open Sourcing WhereHows: A Data Discovery and Lineage Portal. https://engineering.linkedin.com/blog/2016/03/open-sourcing-wherehows--a-data-discovery-and-lineage-portalGoogle Scholar

Index Terms

Single-Setup Privacy Enforcement for Heterogeneous Data Ecosystems
1. Information systems
  1. Information systems applications
    1. Computing platforms
2. Security and privacy
  1. Database and storage security
    1. Data anonymization and sanitization
  2. Human and societal aspects of security and privacy
    1. Privacy protections

Recommendations

Privacy policy enforcement in enterprises with identity management solutions
PST '06: Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services

People are usually asked by enterprises and other organizations to disclose their personal information to access web services and engage in business interactions. Enterprises need this information to enable their business processes. This is unlikely to ...
Read More
A systemic approach to automate privacy policy enforcement in enterprises
PET'06: Proceedings of the 6th international conference on Privacy Enhancing Technologies

It is common practice for enterprises and other organisations to ask people to disclose their personal data in order to grant them access to services and engage in transactions. This practice is not going to disappear, at least in the foreseeable ...
Read More
Cross-application data provenance and policy enforcement

We present a new technique that can trace data provenance and enforce data access policies across multiple applications and machines. We have developed Garm, a tool that uses binary rewriting to implement this technique on arbitrary binaries. Users can ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
CIKM '18: Proceedings of the 27th ACM International Conference on Information and Knowledge Management
October 2018
2362 pages
ISBN:9781450360142
DOI:10.1145/3269206
General Chair:
Alfredo Cuzzocrea
University of Trieste, Italy
,
Program Chairs:
James Allan
University of Massachusetts, USA
,
Norman Paton
University of Manchester, United Kingdom
,
Divesh Srivastava
AT&T Labs Research, USA
,
Rakesh Agrawal
Data Insights Lab, USA
,
Andrei Broder
Google Research, USA
,
Mohammed Zaki
Rensselaer Polytechnic Institute, USA
,
Selcuk Candan
Arizona State University, USA
,
Alexandros Labrinidis
University of Pittsburgh, USA
,
Assaf Schuster
Technion, Israel
,
Haixun Wang
Google Research, USA
Copyright © 2018 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 17 October 2018
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
apache gobblin
hive
offline processing
policy enforcement
privacy
wherehows
Qualifiers
- research-article
Conference

Acceptance Rates
CIKM '18 Paper Acceptance Rate147of826submissions,18%Overall Acceptance Rate1,861of8,427submissions,22%
More
Upcoming Conference
CIKM '24

Sponsor:

sigir

sigir

The 33rd ACM International Conference on Information and Knowledge Management

October 21 - 25, 2024

Boise , ID , USA
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 0
  Total Citations
  View Citations
- 98
  Total Downloads
- Downloads (Last 12 months)2
- Downloads (Last 6 weeks)0
Other Metrics
View Author Metrics
Cited By
This publication has not been cited yet

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Single-Setup Privacy Enforcement for Heterogeneous Data Ecosystems

CIKM '18: Proceedings of the 27th ACM International Conference on Information and Knowledge Management

ABSTRACT

References

Cited By

Index Terms

Recommendations

Privacy policy enforcement in enterprises with identity management solutions

A systemic approach to automate privacy policy enforcement in enterprises

Cross-application data provenance and policy enforcement