SYSTEM AND METHOD FOR AUTOMATICALLY SECURING SENSITIVE DATA IN PUBLIC CLOUD USING A SERVERLESS ARCHITECTURE
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods are provided executing jobs immediately upon receipt of a notification. The systems and methods may include receiving, at a cloud compute service, a notification that a sensitive file comprising sensitive data has been received at a file receipt location, the sensitive file being sent by a client device; generating, by the cloud compute service, a container instance in response to the notification; retrieving, by the container instance, the sensitive file from the file receipt location; generating, by the container instance, a stripped file by stripping the sensitive data from the sensitive file based on a configuration file; transmitting, by the container instance, the stripped file to a storage location; deleting the sensitive file and associated file pointers from the file receipt location; and terminating the container instance, wherein terminating the container instance comprises deleting files comprising sensitive data and associated file pointers.
2 Citations
40 Claims
-
1-20. -20. (canceled)
-
21. A cloud compute service system comprising:
-
one or more hardware processors; and a memory unit storing instructions executable by the one or more hardware processors to perform operations comprising; receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; selecting a first warm container instance for completing a job comprising stripping the sensitive data from the first sensitive file; receiving, from the first warm container instance, a report to the cloud compute service; terminating the first warm container instance based on the report; and selecting a second warm container instance for completing the job. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
-
-
35. A method for stripping sensitive data from files, comprising:
-
receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; selecting a first warm container instance for completing a job comprising stripping the sensitive data from the first sensitive file; receiving, from the first warm container instance, a report to the cloud compute service; terminating the first warm container instance based on the report; and selecting a second warm container instance for completing the job. - View Dependent Claims (36, 37, 38, 39)
-
-
40. A cloud compute service system comprising:
-
one or more hardware processors; and a memory unit storing instructions executable by the one or more hardware processors to perform operations comprising; receiving a notification that a sensitive file comprising sensitive data has been received at a file receipt location; selecting a first warm container instance in response to the notification; assigning, to the first warm container instance, a job comprising stripping the sensitive data from the first sensitive file, wherein the assigning comprises providing to the first warm container instance a file identifier of the sensitive file; receiving, from the first warm container instance, a report comprising at least one of a job status or an error message; and terminating the first warm container instance based on the report.
-
Specification