×

Systems and methods for enforcing enterprise data access control policies in cloud computing environments

  • US 9,407,664 B1
  • Filed: 12/23/2013
  • Issued: 08/02/2016
  • Est. Priority Date: 12/23/2013
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method for enforcing enterprise data access control policies in cloud computing environments, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising:

  • intercepting, at a proxy, an attempt to configure a computing instance that provides virtualized access to computing resources on a cloud computing platform and that provides third-party processing for an enterprise with a permission that would provide the computing instance with access to secured data on the cloud computing platform;

    identifying, at the proxy, a user within the enterprise that initiated the attempt to configure the computing instance with the permission;

    determining, at the proxy, based on a data access control policy for the enterprise, that the user is not entitled to access the secured data;

    blocking, at the proxy, the attempt to configure the computing instance with the permission based on determining that the user is not entitled to access the secured data;

    identifying, subsequent to blocking the attempt, an entitled user within the enterprise that is entitled to access the secured data;

    initiating a request to the entitled user to approve the attempt to configure the computing instance with the permission that would provide the computing instance with access to secured data on the cloud computing platform;

    receiving, in response to the request, approval from the entitled user to configure the computing instance with the permission;

    forwarding the attempt to configure the computing instance to the cloud computing platform.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×