Systems and method for automatically securing sensitive data in public cloud using a serverless architecture
First Claim
1. A cloud compute service system comprising:
- one or more hardware processors; and
a memory unit storing instructions executable by the one or more hardware processors to perform operations comprising;
receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location;
selecting a first warm container instance for completing a job comprising stripping the sensitive data from the first sensitive file;
receiving, from the first warm container instance, a report to the cloud compute service;
terminating the first warm container instance based on the report; and
selecting a second warm container instance for completing the job.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods are provided executing jobs immediately upon receipt of a notification. The systems and methods may include receiving, at a cloud compute service, a notification that a sensitive file comprising sensitive data has been received at a file receipt location, the sensitive file being sent by a client device; generating, by the cloud compute service, a container instance in response to the notification; retrieving, by the container instance, the sensitive file from the file receipt location; generating, by the container instance, a stripped file by stripping the sensitive data from the sensitive file based on a configuration file; transmitting, by the container instance, the stripped file to a storage location; deleting the sensitive file and associated file pointers from the file receipt location; and terminating the container instance, wherein terminating the container instance comprises deleting files comprising sensitive data and associated file pointers.
14 Citations
20 Claims
-
1. A cloud compute service system comprising:
-
one or more hardware processors; and a memory unit storing instructions executable by the one or more hardware processors to perform operations comprising; receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; selecting a first warm container instance for completing a job comprising stripping the sensitive data from the first sensitive file; receiving, from the first warm container instance, a report to the cloud compute service; terminating the first warm container instance based on the report; and selecting a second warm container instance for completing the job. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for stripping sensitive data from files performed at a cloud compute service, comprising:
-
receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; selecting a first warm container instance for completing a job comprising stripping the sensitive data from the first sensitive file; receiving, from the first warm container instance, a report to the cloud compute service; terminating the first warm container instance based on the report; and selecting a second warm container instance for completing the job. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A cloud compute service system comprising:
-
one or more hardware processors; and a memory unit storing instructions executable by the one or more hardware processors to perform operations comprising; receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; selecting a first warm container instance in response to the notification; assigning, to the first warm container instance, a job comprising stripping the sensitive data from the first sensitive file, wherein the assigning comprises providing to the first warm container instance a file identifier of the sensitive file; receiving, from the first warm container instance, a report comprising at least one of a job status or an error message; and terminating the first warm container instance based on the report. - View Dependent Claims (18, 19, 20)
-
Specification