Abstract:
The article is devoted to the issues of data protection in business intelligence systems and the use of depersonalized data for analytical purposes, which allows to increase their protection in case of unauthorized access to analytical information storage systems or the organization as a whole. It is shown that depersonalization of data in the perimeter of the organization, although it reduces the risk of data leakage, but does not exclude it in case of unauthorized access to many systems of the organization including the depersonalization system. The issue of delegating the procedure of personal identifiers depersonalization to the third, trusted, party called a trusted depersonalization center is considered. The algorithm of receiving depersonalized data from clients of information systems in already depersonalized form using the trusted center of personal identifiers depersonalization is given. The recommendations are given on how to improve data security when using a trusted depersonalization center as well as recommendations on depersonalization, which allow minimizing changes in business intelligence systems when switching from processing personal user data to processing depersonalization user identifiers.
Keywords:data depersonalization, trusted depersonalization center, personal identifiers, data protection, data leakage.
Fulltext:
PDF file (369 kB)