METHOD AND SYSTEM FOR PROVIDING MASKING SERVICES
First Claim
1. A method for providing application data to a user requesting an application hosted on a computing device, wherein the user is connected to the computing device through a communication network, the method comprising:
- receiving application access request from the user;
validating credentials of the user requesting the application, wherein validation is performed to determine whether the user is authorized to access the requested application data;
determining type of user based on the user credentials;
fetching application data stored in a database utility and providing unmasked data to the user if the user is a privileged user;
transferring application data access request by the application to a subscribed data masking service, wherein the masking service fetches application data from the database utility, masks the data based on pre-configured masking rules and provides masked data to the application; and
providing masked application data to the user by the application.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method for presenting on-demand masking of data as a software service in a distributed environment is provided. An application hosted on a computing device receives request for access to application data from a user. Credentials of the user are first validated in order to determine whether the user is authorized to access the requested application data. For an authorized user, a category of the user is determined to ascertain whether the user is privileged to obtain full access. In case the user is a privileged user, unmasked application data is fetched from a database utility and provided to the user. In case the user is not a privileged user, application data access request is transferred to a data masking service. Application data is fetched from database utility, masked based on pre-defined masking rules and provided to the user.
30 Citations
26 Claims
-
1. A method for providing application data to a user requesting an application hosted on a computing device, wherein the user is connected to the computing device through a communication network, the method comprising:
-
receiving application access request from the user; validating credentials of the user requesting the application, wherein validation is performed to determine whether the user is authorized to access the requested application data; determining type of user based on the user credentials; fetching application data stored in a database utility and providing unmasked data to the user if the user is a privileged user; transferring application data access request by the application to a subscribed data masking service, wherein the masking service fetches application data from the database utility, masks the data based on pre-configured masking rules and provides masked data to the application; and providing masked application data to the user by the application. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of providing data masking as a software service, the method comprising:
-
receiving request for subscription to data masking service from an application owner hosting a software application; authenticating credentials of the application owner; facilitating configuration of one or more masking rules corresponding to the software application; receiving request for performing data masking on data associated with the software application; and executing one or more data masking algorithms for performing data masking according to the one or more masking rules. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A system for provisioning application data in a secure form, the system comprising:
-
a computing device being part of an organization providing one or more applications to requesting users and configured to host software application requested by a user, wherein the user is operationally connected to the computing device through a communication network; a credential check module configured to validate credentials of the user requesting application data; a subscription module configured to manage subscription of one or more applications requesting access to the one or more data masking services; a masking services provider operationally connected to the computing device and configured to perform masking of data and provide one or more data masking services, wherein the one or more data masking services are requested by the software application in order to provision application data to the user in a secure form; and a database utility operationally connected to the computing device and data masking services provider, and configured to store data associated with the software application. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A computer product comprising a computer usable medium having a computer readable program code embodied therein for providing application data to a user requesting an application hosted on a computing device, wherein the user is connected to the computing device through a communication network, the computer program product comprising:
-
program instruction means for receiving application access request from the user; program instruction means for validating credentials of the user requesting the application; program instruction means for determining type of user based on the user credentials; program instruction means for fetching application data stored in a database utility and providing unmasked data to the user if the user is a privileged user; program instruction means for transferring application data access request by the application to a subscribed data masking service, wherein the masking service fetches application data from the database utility, masks the data based on pre-configured masking rules and provides masked data to the application; and program instruction means for providing masked application data to the user by the application. - View Dependent Claims (23, 24)
-
-
25. A computer product comprising a computer usable medium having a computer readable program code embodied therein for providing data masking as a software service, the computer program product comprising:
-
program instruction means for receiving request for subscription to data masking service from an application owner hosting a software application; program instruction means for authenticating credentials of the application owner; program instruction means for facilitating configuration of one or more masking rules corresponding to the software application; program instruction means for receiving request for performing data masking on data associated with the software application; and program instruction means for executing one or more data masking algorithms for performing data masking according to the one or more masking rules. - View Dependent Claims (26)
-
Specification