Method and system for providing masking services
First Claim
1. A method for providing application data to a user device requesting data from an application hosted on an application server, wherein the user device is connected to the application server through a communication network, the method comprising:
- receiving at the application server hosting the application, an application data request from the user device, the application data request comprising a request for application data from the application hosted on said application server;
validating credentials of a user requesting the application data, wherein validation is performed to determine whether the user is authorized to access the requested application data;
determining type of user based on the user credentials;
responsive to determining that the user is not a privileged user;
transferring the application data request from the application server hosting the application to a masking server;
communicating the requested application data from a database utility to the masking server;
masking the application data received at the masking server, based on pre-configured masking rules, andcommunicating the masked application data from the masking server to the application server hosting the application from which application data has been requested by the user device over the communication network; and
communicating the masked application data from the application server hosting the application from which application data has been requested by the user device over the communication network, to the user device.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method for presenting on-demand masking of data as a software service in a distributed environment is provided. An application hosted on a computing device receives request for access to application data from a user. Credentials of the user are first validated in order to determine whether the user is authorized to access the requested application data. For an authorized user, a category of the user is determined to ascertain whether the user is privileged to obtain full access. In case the user is a privileged user, unmasked application data is fetched from a database utility and provided to the user. In case the user is not a privileged user, application data access request is transferred to a data masking service. Application data is fetched from database utility, masked based on pre-defined masking rules and provided to the user.
9 Citations
26 Claims
-
1. A method for providing application data to a user device requesting data from an application hosted on an application server, wherein the user device is connected to the application server through a communication network, the method comprising:
-
receiving at the application server hosting the application, an application data request from the user device, the application data request comprising a request for application data from the application hosted on said application server; validating credentials of a user requesting the application data, wherein validation is performed to determine whether the user is authorized to access the requested application data; determining type of user based on the user credentials; responsive to determining that the user is not a privileged user; transferring the application data request from the application server hosting the application to a masking server; communicating the requested application data from a database utility to the masking server; masking the application data received at the masking server, based on pre-configured masking rules, and communicating the masked application data from the masking server to the application server hosting the application from which application data has been requested by the user device over the communication network; and communicating the masked application data from the application server hosting the application from which application data has been requested by the user device over the communication network, to the user device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of providing data masking as a software service, the method comprising:
-
receiving request for subscription to data masking service from an application owner hosting a software application; authenticating credentials of the application owner; facilitating configuration of one or more masking rules corresponding to the software application; receiving at an application server hosting the software application, an application data request from a user device, wherein the application data request comprises a request for application data from the software application; and transmitting a request for performing data masking from the application server hosting the software application to a data masking server; communicating the requested application data from a database utility associated with the software application, to the data masking server; executing at the data masking server, one or more data masking algorithms for masking the requested application data according to the one or more masking rules; transmitting masked data from the data masking service to the application server hosting the software application from which application data has been requested by the user device over the communicating network; and transmitting the masked data from the application server hosting the software application from which application data has been requested by the user device over the communication network, to the user device. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A system for provisioning application data in a secure form, the system comprising:
-
an application server hosting a software application and configured to; operationally connect to a user device through a communication network; and receive an application data request from a user through the user device, the application data request comprising a request for application data from the software application hosted on the application server; a credential check module configured to validate credentials of the user requesting the application data; a subscription module configured to manage subscription of the software application to a data masking service; a masking server operationally connected to the application server hosting the software application and configured to; receive the application data request from the application server hosting the software application; receive the requested application data from a database utility; perform masking of the requested application data based on pre-configured masking rules; and communicate the masked application data to the application server hosting the software application from which application data has been requested by the user device over the communication network, for onward transmission to the user device. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A computer program product comprising a non-transitory computer usable medium having a computer readable program code embodied therein for providing application data to a user device requesting an application hosted on an application server, wherein the user device is connected to the application server through a communication network, the computer program product comprising:
-
program instructions for receiving at the application server hosting the application, an application data access request from the user device, the application data request comprising a request for application data from the application hosted on said application server; program instructions for validating credentials of a user requesting the application data; program instructions for determining type of user based on the user credentials; program instructions for responding to determining that the user is not a privileged user by;
transferring the application data request from the application server hosting the application to a masking server;communicating the requested application data from a database utility to the masking server; masking the application data received at the masking server based on pre-configured masking rules; and communicating the masked application data from the masking server to the application server hosting the application from which application data has been requested by the user device over the communication network; and program instructions for communicating the masked application data from the application server hosting the application from which application data has been requested by the user device over the communication network, to the user device. - View Dependent Claims (23, 24, 25, 26)
-
Specification