IBM Research - Haifa has developed software that more efficiently and hides sensitive or personal information that might otherwise appear on the computer screens of unauthorized personnel.
It could prove particularly useful for security conscious fields such as healthcare, insurance, government or financial services.
When refined and fully developed, this technology -- dubbed MAGEN (Masking Gateway for Enterprises), the Hebrew word for "shield" -- might help organizations better comply with privacy laws, and lessen the vulnerability of information to theft.
In the course of developing the MAGEN proof-of-concept, IBM applied for at least two U.S. patents, including one for unique ways of manipulating images, and one for scrambling words. MAGEN treats information on the screen as a picture, and relies on optical character-recognition technology to determine which onscreen fields need to be blanked out or replaced with random values. Unlike other solutions, MAGEN does not change the software program or the data itself -- it filters the information before it ever reaches the PC screen -- and does not force companies to create modified copies of electronic records where information is masked, scrambled, or eliminated.
This results in a fast and flexible system. If companies had to create and store modified copies, the process would be relatively expensive and slow, as well as take up valuable electronic storage space. MAGEN's rules can also be easily modified as confidentiality regulations change, or for different types of users. The solution can be deployed in any environment where screen images are delivered -- no matter which operating system, application, or protocols are used.
When fully fleshed out, MAGEN will have very practical applications. For example, it might be used by a health insurance company that outsources customer service and claims processing functions to a third-party. Although private medical information in the patient records can't be shared with the contractors, customer service representatives need access to patient records. In these kinds of cases, MAGEN can hide private information so that it never appears on the agents' screens. Or, it can partially hide data, such as for the screens of call center customer service representatives, who only need enough identifying data to access, confirm or update an account.