Skip to content

Commit

Permalink
upgraded versions to latest
Browse files Browse the repository at this point in the history
  • Loading branch information
@sunitparekh
sunitparekh committed Feb 1, 2018
1 parent ae41ffe commit 8158296
Show file tree
Hide file tree
Showing 5 changed files with 172 additions and 18 deletions.
174 changes: 159 additions & 15 deletions README.md
View file
Original file line number Diff line number Diff line change
@@ -1,10 +1,12 @@
# Data::Anonymization
Data Anonymization tool helps build anonymized production data dumps,
which you can use for performance testing, security testing, debugging and development.
Tool is implemented in Kotlin, and works with Java & Kotlin.
Tool is implemented in Kotlin, and works with Java 8 & Kotlin.

[![Build Status](https://travis-ci.org/dataanon/data-anon.svg?branch=master)](https://travis-ci.org/dataanon/data-anon)

----------------------

## Getting started

```kotlin
Expand All @@ -13,32 +15,30 @@ fun main(args: Array<String>) {
val source = DbConfig("jdbc:h2:tcp://localhost/~/movies_source", "sa", "")
val dest = DbConfig("jdbc:h2:tcp://localhost/~/movies_dest", "sa", "")

Whitelist(source,dest) // choose Whitelist or Blacklist strategy for anonymization
Whitelist(source, dest) // choose Whitelist or Blacklist strategy for anonymization
.table("MOVIES") { // start with table
where("GENRE = 'Drama'") // allows to select only desired rows
limit(1_00_000) // useful for testing
whitelist("MOVIE_ID","RELEASE_DATE") // pass through fields
// field by field decide the anonymization strategy
where("GENRE = 'Drama'") // allows to select only desired rows (optional)
limit(1_00_000) // useful for testing (optional)

// pass through fields, leave it as is (do not anonymize)
whitelist("MOVIE_ID","RELEASE_DATE")

// field by field decide the anonymization strategy
anonymize("GENRE").using(FixedString("Action"))

// write your own in-line strategy
anonymize("TITLE").using(object: AnonymizationStrategy<String>{
// write your own in-line strategy
override fun anonymize(field: Field<String>, record: Record): String = "MY MOVIE ${record.rowNum}"
})
}
.table("RATINGS") { // continue with more tables
.table("RATINGS") { // continue with multiple tables
whitelist("MOVIE_ID","USER_ID","CREATED_AT")
anonymize("RATING").using(FixedDouble(4.3))
}
.execute()
}
```

Sample Maven based project are available at...

* [Kotlin](https://github.com/dataanon/dataanon-kotlin-sample)
* [Java](https://github.com/dataanon/dataanon-java-sample)

### Running
## Running

$ mvn compile exec:java

Expand All @@ -47,6 +47,150 @@ Sample Maven based project are available at...
$ mvn package
$ java -jar target/data-anon.jar
## Examples

Sample Maven based project are available at...

* [Kotlin](https://github.com/dataanon/dataanon-kotlin-sample)
* [Java](https://github.com/dataanon/dataanon-java-sample)

----------------------

## Roadmap

1. Support for anonymization strategy for Date and DateTime/Timestamp related data type.
1. Support default strategy based on data type.
2. MongoDB database.

## Share feedback

Please use Github [issues](https://github.com/dataanon/data-anon/issues) to share feedback, feature suggestions and report issues.

## Changelog

#### 0.9.0 (Feb ?, 2018)

1. First initial release with RDBMS support

----------------------

## What is data anonymization?

For almost all projects there is a need for production data dump in order to run performance tests, rehearse production releases and debug production issues.
However, getting production data and using it is not feasible due to multiple reasons, primary being privacy concerns for user data. And thus the need for data anonymization.
This tool helps you to get anonymized production data dump using either Blacklist or Whitelist strategies.

Read more about [data anonymization here](http://sunitspace.blogspot.in/2012/09/data-anonymization.html)

## Anonymization Strategies

### Blacklist
Blacklist approach essentially leaves all fields unchanged with the exception of those specified by the user, which are scrambled/anonymized.
For `Blacklist` create a copy of prod database and chooses the fields to be anonymized like e.g. username, password, email, name, geo location etc. based on user specification. Most of the fields have different rules e.g. password should be set to same value for all users, email needs to be valid.

The problem with this approach is that when new fields are added they will not be anonymized by default. Human error in omitting users personal data could be damaging.

```kotlin
Blacklist(database)
.table("RATINGS") {
anonymize("RATING").using(FixedDouble(4.3))
}
.execute()
```

### Whitelist
Whitelist approach, by default scrambles/anonymizes all fields except a list of fields which are allowed to copied as is.
By default all data needs to be anonymized. So from production database data is sanitized record by record and inserted as anonymized data into destination database. Source database needs to be readonly.
All fields would be anonymized using default anonymization strategy which is based on the datatype, unless a special anonymization strategy is specified. For instance special strategies could be used for emails, passwords, usernames etc.
A whitelisted field implies that it's okay to copy the data as is and anonymization isn't required.
This way any new field will be anonymized by default and if we need them as is, add it to the whitelist explicitly. This prevents any human error and protects sensitive information.

```kotlin
Whitelist(source, dest)
.table("RATINGS") {
whitelist("MOVIE_ID","USER_ID","CREATED_AT")
anonymize("RATING").using(FixedDouble(4.3))
}
.execute()
```

Read more about [blacklist and whitelist here](http://sunitspace.blogspot.in/2012/09/data-anonymization-blacklist-whitelist.html)


----------------------
## Tips

1. In Whitelist approach make source database connection READONLY.
2. Use skip and continue to apply different strategies for records.
3. Use 'where' and ''limit' to limit the number of rows during anonymization. Very useful for testing purpose.

## Anonymization Strategies

| DataType | Stratergy | Description |
| :--- | :--- | :--- |
| Boolean | RandomBooleanTrueFalse | random selection of boolean true and false value |
| Boolean | RandomBooleanOneZero | random selection of 1 and 0 value representing boolean |
| Boolean | RandomBooleanYN | random selection of Y and N value representing boolean |
| String (Email) | RandomEmail | generates emailId using one of random picked values defined in first_names.dat appended with row number with given host and tld |
| String (First Name) | RandomFirstName | generates first name using one of random picked values from specified file. default file is (first_names.dat) |
| String (Last Name) | RandomLastName | generates last name using one of random picked values from specified file. default file is (last_names.dat) |
| Integer | FixedInt | replace all records with the same specified fixed integer value (default to 100) |
| Integer | RandomInt | generate random integer value between specified range (default range from 0 to 100) |
| Integer | RandomIntDelta | generate new integer value within random delta value (default is 10) on existing value |
| Float | FixedFloat | replace all records with the same specified fixed float value (default to 100.0f) |
| Float | RandomFloat | generate random float value between specified range (default range from 0.0f to 100.0f) |
| Float | RandomFloatDelta | generate new float value within random delta value (default is 10.0f) on existing value |
| Double | FixedDouble | replace all records with the same specified fixed double value (default to 100.0) |
| Double | RandomDouble | generate random double value between specified range (default range from 0.0 to 100.0) |
| Double | RandomDoubleDelta | generate new double value within random delta value (default is 10.0) on existing value |
| String | FixedString | replace all records with the same specified fixed string value |
| String | LoremIpsum | replace with same length (size) Lorem Ipsum string |


## Write your own Anonymization strategy

Implement 'AnonymizationStrategy' interface to write your own strategy.

```kotlin
class RandomString: AnonymizationStrategy<String> {
override fun anonymize(field: Field<String>, record: Record): String = "Record Number ${record.rowNum}"
}
```

*Field* class represents data related to the field getting processed for anonymization

```kotlin
class Field<T: Any>(val name: String, val oldValue: T, var newValue: T = oldValue)
```

*Record* class represents the current record getting processed with row number and all the fields of the record.
Other fields data is useful in case if there is any dependent field value which needs to be derived or calculated.

```kotlin
class Record(private val fields: List<Field<Any>>, val rowNum: Int) {
fun find(name: String): Field<Any> = fields.first {name.equals(it.name, true)}
}
```

It is very easy to write inline strategy as well. See examples

* [Kotlin](https://github.com/dataanon/dataanon-kotlin-sample/blob/master/src/main/kotlin/com/github/dataanon/Anonymizer.kt#L20)
* [Java](https://github.com/dataanon/dataanon-java-sample/blob/master/src/main/java/com/github/dataanon/Anonymizer.java#L20)


## Want to contribute?

1. Fork it
2. Create your feature branch (`git checkout -b my-new-feature`)
3. Commit your changes (`git commit -am 'Add some feature'`)
4. Push to the branch (`git push origin my-new-feature`)
5. Create new Pull Request

## License

[MIT License](https://github.com/sunitparekh/data-anonymization/blob/master/LICENSE.txt)


## Credits

- [ThoughtWorks Inc](http://www.thoughtworks.com), for allowing us to build this tool and make it open source.
2 changes: 1 addition & 1 deletion pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@

<properties>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<kotlin.version>1.2.10</kotlin.version>
<kotlin.version>1.2.21</kotlin.version>
<kotlin.test.version>2.0.7</kotlin.test.version>
<version.jacoco>0.8.0</version.jacoco>
</properties>
Expand Down
2 changes: 1 addition & 1 deletion src/main/kotlin/com/github/dataanon/strategy/email/RandomEmail.kt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,5 +14,5 @@ class RandomEmail(private val host: String = "data-anonymization", private val t

val pickFromFile = PickFromFile<String>(filePath = this::class.java.getResource("/data/first_names.dat").path)

override fun anonymize(field: Field<String>, record: Record): String = "${pickFromFile.anonymize(field, record)}@$host.$tld"
override fun anonymize(field: Field<String>, record: Record): String = "${pickFromFile.anonymize(field, record)}${record.rowNum}@$host.$tld"
}
2 changes: 1 addition & 1 deletion src/main/kotlin/com/github/dataanon/strategy/number/FixedDouble.kt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ import com.github.dataanon.model.Field
import com.github.dataanon.model.Record
import com.github.dataanon.strategy.AnonymizationStrategy

class FixedDouble(private val value: Double) : AnonymizationStrategy<Double> {
class FixedDouble(private val value: Double = 100.0) : AnonymizationStrategy<Double> {

override fun anonymize(field: Field<Double>, record: Record): Double = value
}
10 changes: 10 additions & 0 deletions src/main/kotlin/com/github/dataanon/strategy/number/FixedFloat.kt
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
package com.github.dataanon.strategy.number

import com.github.dataanon.model.Field
import com.github.dataanon.model.Record
import com.github.dataanon.strategy.AnonymizationStrategy

class FixedFloat(private val value: Float = 100.0f) : AnonymizationStrategy<Float> {

override fun anonymize(field: Field<Float>, record: Record): Float = value
}

0 comments on commit 8158296

Please sign in to comment.