SYSTEM AND METHOD FOR REAL-TIME ASYNCHRONOUS MULTITENANT GATEWAY SECURITY
First Claim
1. A system, comprising:
- at least one processor; and
a memory operatively coupled to the at least one processor, the at least one processor configured to;
receive, by a management component from a global event stream, an event via a stream listener component, wherein the event includes event type information and event content information,determine, by the management component, that the event content information includes at least a portion of service transaction information and the at least portion of the service transaction information partially matches service transaction information that is registered with the management component by a reverse proxy component,determine, by the management component, that the event is a security event based on the event type information, wherein the security event indicates that an internal service request generated by the reverse proxy component based at least on the external service request and transmitted to a service of an application has been identified as a security threat,determine, by the management component, whether at least a portion of an external content response has been transmitted to a client device via a validated connection having associated service transaction information that partially matches at least a portion of the service transaction information received in the security event and the validated connection has not been disconnected, andinterrupt, by the management component, the reverse proxy component to invalidate the external content response based on protocol specific rules and disconnect the validated connection, after determining that at least a portion of the external content response has been transmitted to the client device and the validated connection has not been disconnected.
3 Assignments
0 Petitions
Accused Products
Abstract
Disclosed herein are system, apparatus, article of manufacture, method, and/or computer program product embodiments for real-time asynchronous multitenant gateway security with respect to one or more client devices. An embodiment operates by receiving an event and determining that event content information includes at least a portion of service transaction information and the at least portion of the service transaction information is registered. The embodiment may further operate by determining that the event is a security event based on event type information. The embodiment may then determine whether at least a portion of an external content response has been transmitted to the client device and that a validated connection associated with the service transaction information has not yet been disconnected. Based on those determinations, the embodiment may then interrupt the reverse proxy component to invalidate the external content response and disconnect the validated connection.
98 Citations
20 Claims
-
1. A system, comprising:
-
at least one processor; and a memory operatively coupled to the at least one processor, the at least one processor configured to; receive, by a management component from a global event stream, an event via a stream listener component, wherein the event includes event type information and event content information, determine, by the management component, that the event content information includes at least a portion of service transaction information and the at least portion of the service transaction information partially matches service transaction information that is registered with the management component by a reverse proxy component, determine, by the management component, that the event is a security event based on the event type information, wherein the security event indicates that an internal service request generated by the reverse proxy component based at least on the external service request and transmitted to a service of an application has been identified as a security threat, determine, by the management component, whether at least a portion of an external content response has been transmitted to a client device via a validated connection having associated service transaction information that partially matches at least a portion of the service transaction information received in the security event and the validated connection has not been disconnected, and interrupt, by the management component, the reverse proxy component to invalidate the external content response based on protocol specific rules and disconnect the validated connection, after determining that at least a portion of the external content response has been transmitted to the client device and the validated connection has not been disconnected. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A computer-implemented method, comprising:
-
receiving, by a management component from a global event stream, an event via a stream listener component, wherein the event includes event type information and event content information, determining, by the management component, that the event content information includes at least a portion of service transaction information that is associated with an external service request received by a reverse proxy component and the at least portion of the service transaction information partially matches service transaction information that is registered with the management component by the reverse proxy component, determining, by the management component, that the event is a security event based on the event type information, wherein the security event indicates that an internal service request generated by the reverse proxy component based at least on the external service request and transmitted to a service of an application has been identified as a security threat; determining, by the management component, whether at least a portion of an external content response has been transmitted via a validated connection having associated service transaction information that partially matches at least a portion of the service transaction information received in the security event and the validated connection has not been disconnected; and interrupting, by the management component, the reverse proxy component to invalidate the external content response based on protocol specific rules and disconnect the validated connection, after determining that the at least portion of the external content response has been transmitted to the client device and the validated connection has not been disconnected. - View Dependent Claims (17, 18)
-
-
19. A tangible computer-readable device having instructions stored thereon that, when executed by at least one computing device, causes the at least one computing device to perform operations comprising:
-
receiving, by a management component from a global event stream, an event via a stream listener component, wherein the event includes event type information and event content information, determining, by the management component, that the event content information includes at least a portion of service transaction information that is associated with an external service request received by a reverse proxy component and the at least portion of the service transaction information partially matches service transaction information that is registered with the management component by the reverse proxy component, determining, by the management component, that the event is a security event based on the event type information, wherein the security event indicates that an internal service request generated by the reverse proxy component based at least on the external service request and transmitted to a service of an application has been identified as a security threat; determining, by the management component, whether at least a portion of an external content response has been transmitted via a validated connection having associated service transaction information that partially match the at least portion of the service transaction information received in the security event and the validated connection has not been disconnected; and interrupting, by the management component, the reverse proxy component to invalidate the external content response based on protocol specific rules and disconnect the validated connection, after determining that the at least portion of the external content response has been transmitted to the client device and the validated connection has not been disconnected. - View Dependent Claims (20)
-
Specification