×

Leveraging security as a service for cloud-based file sharing

  • US 10,135,826 B2
  • Filed: 09/04/2015
  • Issued: 11/20/2018
  • Est. Priority Date: 09/04/2015
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • at a cloud-based file sharing server external to an enterprise network and having connectivity to the enterprise network, receiving instructions from the enterprise network to validate files uploaded by users associated with the enterprise network before allowing the files to be downloaded;

    receiving an encrypted file from a first user, the encrypted file specifying at least one second user authorized to download the encrypted file;

    determining that the first user is associated with the enterprise network and, thus, that any files received from the first user should be validated;

    based on the determining, forwarding the encrypted file from the file sharing server to a cloud-based security-as-a-service (SECaaS) server with which the cloud-based file sharing server is authenticated so that the cloud-based SECaaS server can decrypt the encrypted file and determine whether the file is malicious, the cloud-based SECaaS server being external to the cloud-based file sharing server and the enterprise network;

    receiving a determination of maliciousness from the cloud-based SECaaS server, wherein the cloud-based SECaaS server generates the determination based on a decrypted version of the encrypted file, but does not provide the file sharing server with access to the decrypted version, regardless of whether the encrypted file is determined to be malicious or non-malicious; and

    allowing the at least one second user to download the encrypted file based on the determination.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×