System and method for automatically securing sensitive data in public cloud using a serverless architecture
First Claim
1. A system comprising a file receipt location for processing a job immediately upon receipt of a file, the file receipt location comprising:
- one or more memory units for storing instructions; and
one or more processors configured to execute the instructions to perform operations comprising;
receiving, from a client device, a file comprising sensitive information;
tagging the file with a tag identifying a vendor or service provider;
transmitting a notification, comprising the tag, to a cloud compute service;
receiving, from the cloud compute service, a request to access the tagged file;
transmitting the tagged file to the cloud compute service based on the request; and
destroying the tagged file.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods are provided executing jobs immediately upon receipt of a notification. The systems and methods may include receiving, at a cloud compute service, a notification that a sensitive file comprising sensitive data has been received at a file receipt location, the sensitive file being sent by a client device; generating, by the cloud compute service, a container instance in response to the notification; retrieving, by the container instance, the sensitive file from the file receipt location; generating, by the container instance, a stripped file by stripping the sensitive data from the sensitive file based on a configuration file; transmitting, by the container instance, the stripped file to a storage location; deleting the sensitive file and associated file pointers from the file receipt location; and terminating the container instance, wherein terminating the container instance comprises deleting files comprising sensitive data and associated file pointers.
17 Citations
18 Claims
-
1. A system comprising a file receipt location for processing a job immediately upon receipt of a file, the file receipt location comprising:
-
one or more memory units for storing instructions; and one or more processors configured to execute the instructions to perform operations comprising; receiving, from a client device, a file comprising sensitive information; tagging the file with a tag identifying a vendor or service provider; transmitting a notification, comprising the tag, to a cloud compute service; receiving, from the cloud compute service, a request to access the tagged file; transmitting the tagged file to the cloud compute service based on the request; and destroying the tagged file. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method for processing a job immediately upon receipt of a file, the method comprising:
-
receiving, at a file receipt location and from a client device, a file comprising sensitive information; tagging the file with a tag relating to a vendor or service provider; transmitting a notification, comprising the tag, to a cloud compute service; receiving, from the cloud compute service, a request to access the tagged file; transmitting the tagged file to the cloud compute service based on the request; and destroying the tagged file.
-
Specification