System and method for automatically securing sensitive data in public cloud using a serverless architecture
First Claim
1. A cloud compute service system comprising:
- one or more hardware processors; and
a memory unit storing instructions executable by the one or more hardware processors to perform operations comprising;
receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location;
generating a first container instance in response to the notification;
receiving, from the first container instance, a report to the cloud compute serviceterminating the first container instance based on the report; and
generating a second container instance in response to the notification.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods are provided executing jobs immediately upon receipt of a notification. The systems and methods may include receiving, at a cloud compute service, a notification that a sensitive file comprising sensitive data has been received at a file receipt location, the sensitive file being sent by a client device; generating, by the cloud compute service, a container instance in response to the notification; retrieving, by the container instance, the sensitive file from the file receipt location; generating, by the container instance, a stripped file by stripping the sensitive data from the sensitive file based on a configuration file; transmitting, by the container instance, the stripped file to a storage location; deleting the sensitive file and associated file pointers from the file receipt location; and terminating the container instance, wherein terminating the container instance comprises deleting files comprising sensitive data and associated file pointers.
-
Citations
20 Claims
-
1. A cloud compute service system comprising:
-
one or more hardware processors; and a memory unit storing instructions executable by the one or more hardware processors to perform operations comprising; receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; generating a first container instance in response to the notification; receiving, from the first container instance, a report to the cloud compute service terminating the first container instance based on the report; and generating a second container instance in response to the notification. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method for executing jobs immediately upon receipt of a notification, the method comprising:
-
receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; generating a first container instance in response to the notification; receiving, from the first container instance, a report to the cloud compute service terminating the first container instance based on the report; and generating a second container instance in response to the notification. - View Dependent Claims (16, 17, 18, 19)
-
-
20. A cloud compute service system comprising:
-
one or more hardware processors; and a memory unit storing instructions executable by the one or more hardware processors to perform operations comprising; receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; generating a first container instance in response to the notification; assigning, to the first container instance, a job comprising stripping the sensitive data from the first sensitive file, wherein the assigning comprises providing, to the first container instance, a file identifier of the sensitive file; receiving, from the first container instance, a report comprising at least one of a job status or an error message; and terminating the first container instance based on the report.
-
Specification