inm7/inm7-concepts
9
0
Fork 0
Code Issues 15 Pull requests 3 Projects Releases Packages Activity Actions

PID setup for personal data #14

New issue
Open
opened 2025-04-21 15:04:37 +00:00 by mih · 1 comment
mih commented 2025-04-21 15:04:37 +00:00
Owner
Copy link

We should not be using the same PIDs for person(al) data for internal and public records. Doing so would make it easier to deduce information from internal records, even if the actual person records are inaccessible (because a public record with the same PID would reveal other public information, such as the author name from a publication record).

We are considering to use a truncated hash of a person's name and their starting date as the (internal) PID. Those could be prefix like inm7:person/<hash>. For any to-be-exported record, we could generate a public identifier from this information by adding a "salt" and rehashing it.

This could also be just a fallback, and we could, by default, use an ORCID, if that is on record for a person.

We should not be using the same PIDs for person(al) data for internal and public records. Doing so would make it easier to deduce information from internal records, even if the actual person records are inaccessible (because a public record with the same PID would reveal other public information, such as the author name from a publication record). We are considering to use a truncated hash of a person's name and their starting date as the (internal) PID. Those could be prefix like `inm7:person/<hash>`. For any to-be-exported record, we could generate a public identifier from this information by adding a "salt" and rehashing it. This could also be just a fallback, and we could, by default, use an ORCID, if that is on record for a person.
mih commented 2025-04-28 11:19:29 +00:00
Author
Owner
Copy link

https://concepts.inm7.de/about/ now shows that filter and transformation operations are possible for metadata being exported to other scopes/models. This would be the place where arbitrary ID mappings could take place. The sibling operation for metadata intake is also included in the design, and would allows for the inverse mapping to take place.

https://concepts.inm7.de/about/ now shows that filter and transformation operations are possible for metadata being exported to other scopes/models. This would be the place where arbitrary ID mappings could take place. The sibling operation for metadata intake is also included in the design, and would allows for the inverse mapping to take place.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
contr
grant
contribute
make-invalid
make-invalid-wildcard
author
contrib
readme
test-file-upload
short-link
studyact
reorder
No results found.
Labels
Clear labels   
bug
Something isn't working

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
question
Further information is requested

  
wontfix
This will not be worked on

No labels
bug
documentation
duplicate
enhancement
good first issue
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
inm7/inm7-concepts#14
No description provided.