Search

EP-4738216-A1 - DATA CONTROL ASSISTANCE SYSTEM, DATA CONTROL SYSTEM, AND DATA CONTROL ASSISTANCE METHOD

EP4738216A1EP 4738216 A1EP4738216 A1EP 4738216A1EP-4738216-A1

Abstract

[Object] To assist enabling of appropriate control of transmission/reception of data among systems even when a determination criterion for control of transmission/reception of data differs among such systems. [Solution] A data control assistance system includes a storage device configured to store one or more evaluation categories for data and a control device configured to acquire respective evaluation rules from a plurality of data transmission/reception control systems. The data transmission/reception control systems include a plurality of information processing devices and each storing an evaluation rule for determining control content for data to be transmitted and received among the plurality of information processing devices. The control device also generates a new evaluation rule based on each of the acquired evaluation rules and the evaluation categories. The new evaluation rule includes each of the acquired evaluation rules and is based on the evaluation categories. The control device also transmits the generated new evaluation rule to each of the data transmission/reception control systems.

Inventors

  • KONO, MISAKO
  • UCHIYAMA, HIROKI
  • KATO, ATSUYA

Assignees

  • Hitachi, Ltd.

Dates

Publication Date
20260506
Application Date
20240603

Claims (9)

  1. A data control assistance system comprising: a storage device configured to store one or more evaluation categories for data; and a control device configured to execute an evaluation rule acquisition process that acquires respective evaluation rules, from a plurality of data transmission/reception control systems, the data transmission/reception control systems including a plurality of information processing devices each storing an evaluation rule for determining control content for data to be transmitted and received among the plurality of information processing devices, an evaluation rule analysis and generation process that generates a new evaluation rule based on each of the acquired evaluation rules and the evaluation categories, the new evaluation rule including each of the acquired evaluation rules and being based on the evaluation categories, and an evaluation rule transmission process that transmits the generated new evaluation rule to each of the data transmission/reception control systems.
  2. The data control assistance system according to claim 1, wherein the storage device includes, as the evaluation category relative to trustworthiness of the data, an evaluation item for at least one of evaluation targets including an entity managing the data, a system managing the data, and an attribute of the data, and wherein, in the evaluation rule analysis and generation process, the control device generates the new evaluation rule based on the evaluation item for the evaluation target.
  3. The data control assistance system according to claim 2, wherein the storage device includes, as the evaluation category related to the trustworthiness of the data, at least one evaluation item of the evaluation target including transparency, quality, certainty, safety, responsibility content, and sincerity, and wherein, in the evaluation rule analysis and generation process, the control device generates the new evaluation rule based on the evaluation item for the evaluation target.
  4. The data control assistance system according to claim 1, wherein the control device executes a missing information analysis process that identifies, in the generated new evaluation rule, information that is missing in the evaluation rule received from the data transmission/reception control system and which is required to determine control content for the data, the missing information analysis process transmitting the identified information to the data transmission/reception control system.
  5. A data control system comprising: a plurality of data transmission/reception control systems that include a plurality of information processing devices, the plurality of data transmission/reception control systems each storing an evaluation rule for determining control content for data to be transmitted and received among the plurality of information processing devices; a storage device configured to store one or more evaluation categories for data; and a data control assistance system including a control device configured to execute an evaluation rule acquisition process that acquires, from each of the plurality of data transmission/reception control systems, the evaluation rule, an evaluation rule analysis and generation process that generates a new evaluation rule based on each of the acquired evaluation rules and the evaluation categories, the new evaluation rule including each of the acquired evaluation rules and being based on the evaluation categories, and an evaluation rule transmission process that transmits the generated new evaluation rule to each of the data transmission/reception control systems.
  6. The data control system according to claim 5, wherein the data transmission/reception control system calculates a score related to the new evaluation rule based on the information received.
  7. The data control system according to claim 5, wherein the data transmission/reception control system controls the transmission/reception of data based on the calculated score.
  8. The data control system according to claim 5, wherein the data transmission/reception control system accepts input of the evaluation rule and executes an evaluation rule input process that stores the input evaluation rule.
  9. A data control assistance method, wherein an information processing device is configured to store one or more evaluation categories for data and execute: an evaluation rule acquisition process that acquires respective evaluation rules from a plurality of data transmission/reception control systems, the data transmission/reception control systems including a plurality of information processing devices and each storing an evaluation rule for determining control content for data to be transmitted and received among the plurality of information processing devices, an evaluation rule analysis and generation process that generates a new evaluation rule based on each of the acquired evaluation rules and the evaluation categories, the new evaluation rule including each of the acquired evaluation rules and being based on the evaluation categories, and an evaluation rule transmission process that transmits the generated new evaluation rule to each of the data transmission/reception control systems.

Description

Technical Field The present invention relates to a data control assistance system, a data control system, and a data control assistance method. Background Art Recently, various types of data such as industrial data, personal data, or the like are used and utilized in business services so as to allow a plurality of fields, lines of business, or enterprises to cooperate with each other. However, when the business services are performed across a plurality of groups as described above, data is shared among groups having a predetermined relationship such as an alliance or a partnership. Thus, for a service or an application used in the service, in some cases, respective data cooperation bases (systems) are built so as to set policies (policies related to handling of the data) different from one group to another to control transmission/reception of the data. Even when such data cooperation bases are built, it is desirable that the provider and the user of the data can safely exchange data in accordance with their own business policies. For example, it is required that the data user utilize data in compliance with a purpose of use or terms of use of data, that accurate data be transmitted from a data provider, and that trustworthiness among enterprises or of the data be maintained. In this regard, as a technique to assist control of transmission/reception of data, for example, means for matching metadata on the device side and metadata on the data user side for a plurality of devices is described in PTL 1 (Japanese Unexamined Patent Application Publication No. 2017-167747). Furthermore, a technique to control access by calculating a risk index from a risk element of data itself, an attribute of a data user, and the relationship between a data provider and the data user is described in PTL 2 (Japanese Unexamined Patent Application Publication No. 2018-142284). Citation List Patent Literature PTL 1: Japanese Unexamined Patent Application Publication No. 2017-167747PTL 2: Japanese Unexamined Patent Application Publication No. 2018-142284 SUMMARY OF INVENTION Technical Problem When distribution of data is controlled using these techniques, it is considered possible to perform matching between a data user and a data provider by checking metadata of the data, and to control distribution of the data in consideration of risks of the data. However, such techniques do not particularly assume a case where a data cooperation base to which the data user belongs and a data cooperation base to which the data provider belongs are different. In particular, when the data evaluation methods (policies) differ from one data cooperation base to another, such as a case where the business fields differ from one group to another, it is difficult to perform appropriate data cooperation in accordance with respective policies. The present invention has been made in view of such a background and has an object to provide a data control assistance system, a data control system, and a data control assistance method that can assist in enabling appropriate transmission/reception control of data among systems even when determination criteria for control of transmission/reception of data differ among systems. Solution to Problem In order to solve the above-described problem, a data control assistance system according to an aspect of the present invention includes a storage device configured to store one or more evaluation categories for data and a control device. The control device is configured to execute an evaluation rule acquisition process that acquires, from a plurality of data transmission/reception control systems, respective evaluation rules. The data transmission/reception control systems include a plurality of information processing devices and each stores an evaluation rule for determining control content for data to be transmitted and received among the plurality of information processing devices. The control device also executes an evaluation rule analysis and generation process that generates a new evaluation rule based on each of the acquired evaluation rules and the evaluation categories. The new evaluation rule includes each of the acquired evaluation rules and is based on the evaluation categories. The control device also executes an evaluation rule transmission process that transmits the generated new evaluation rule to each of the data transmission/reception control systems. Advantageous Effects of Invention According to the present invention, even when determination criteria for control of transmission/reception of data differ among systems, enabling appropriate control of transmission/reception of data among such systems can be assisted. Configurations, effects, and the like other than the above description are clarified by the following description of embodiments. BRIEF DESCRIPTION OF DRAWINGS [Fig. 1] Fig. 1 illustrates an example of the configuration of a data control system according to an embodiment.[Fig. 2] Fig. 2 exempl