Just-in-time encryption
US-10628597-B2 · Apr 21, 2020 · US
System for monitoring networked computing devices with integrated electronic data encryption and decryption mechanism
US11593494B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-11593494-B2 |
| Application number | US-202016891933-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jun 3, 2020 |
| Priority date | Jun 3, 2020 |
| Publication date | Feb 28, 2023 |
| Grant date | Feb 28, 2023 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A system for monitoring networked computing devices with integrated electronic data encryption and decryption mechanism is provided. In particular, the system may comprise one or more host applications which may interact with an API layer to transmit encrypted host-related data through a secure data rails to a consolidated data repository. One or more downstream monitoring applications may retrieve and decrypt the host-related data from the consolidated data repository for analysis. In this way, the system may provide a secure, scalable way to monitor host computing systems and flow of sensitive electronic data.
First claim
Opening claim text (preview).
What is claimed is: 1. A system for monitoring networked computing devices with integrated electronic data encryption and decryption mechanism, the system comprising: a memory device with computer-readable program code stored thereon; a communication device; and a processing device operatively coupled to the memory device and the communication device, wherein the processing device is configured to execute the computer-readable program code to: receive, from a host computing system via an application programming interface (“API”) layer, host data and metadata; encrypt, using an encryption module, the host data and metadata; transmit the host data and metadata to a consolidated data sink; receive a request from a monitoring computing system to decrypt the host data and metadata; decrypt, using a decryption module, the host data and metadata, wherein decrypting the host data and metadata comprises: generating a decrypted copy of the host data and metadata using a symmetric cryptographic key; and presenting the decrypted copy of the host data on a graphical interface of a display of the monitoring computing system; detect that the monitoring computing system has stopped viewing the decrypted copy of the host data; and automatically delete the decrypted copy of the host data. 2. The system according to claim 1 , wherein the decrypted copy of the host data is stored on a web server, wherein the graphical interface of the display of the monitoring computing system comprises a web browser. 3. The system according to claim 1 , wherein the consolidated data sink is a relational database comprising a table, the table comprising entries for an identity of a user associated with the host computing system, types of data processed by the host computing system, and processes executed by the host computing system. 4. The system according to claim 1 , wherein decrypting the host data and metadata comprises performing a batch decryption of encrypted data within the consolidated data sink. 5. The system according to claim 1 , wherein receiving the host data and metadata comprises establishing a Hypertext Transfer Protocol Secure (“HTTPS”) connection with the host computing system. 6. A computer program product for monitoring networked computing devices with integrated electronic data encryption and decryption mechanism, the computer program product comprising at least one non-transitory computer readable medium having computer-readable program code portions embodied therein, the computer-readable program code portions comprising executable code portions for: receiving, from a host computing system via an application programming interface (“API”) layer, host data and metadata; encrypting, using an encryption module, the host data and metadata; transmitting the host data and metadata to a consolidated data sink; receiving a request from a monitoring computing system to decrypt the host data and metadata; decrypting, using a decryption module, the host data and metadata, wherein decrypting the host data and metadata comprises: generating a decrypted copy of the host data and metadata using a symmetric cryptographic key; and presenting the decrypted copy of the host data on a graphical interface of a display of the monitoring computing system; detecting that the monitoring computing system has stopped viewing the decrypted copy of the host data; and automatically deleting the decrypted copy of the host data. 7. The computer program product according to claim 6 , wherein the decrypted copy of the host data is stored on a web server, wherein the graphical interface of the display of the monitoring computing system comprises a web browser. 8. The computer program product according to claim 6 , wherein the consolidated data sink is a relational database comprising a table, the table comprising entries for an identity of a user associated with the host computing system, types of data processed by the host computing system, and processes executed by the host computing system. 9. The computer program product according to claim 6 , wherein decrypting the host data and metadata comprises performing a batch decryption of encrypted data within the consolidated data sink. 10. A computer-implemented method for monitoring networked computing devices with integrated electronic data encryption and decryption mechanism, wherein the computer-implemented method comprises: receiving, from a host computing system via an application programming interface (“API”) layer, host data and metadata; encrypting, using an encryption module, the host data and metadata; transmitting the host data and metadata to a consolidated data sink; receiving a request from a monitoring computing system to decrypt the host data and metadata; decrypting, using a decryption module, the host data and metadata, wherein decrypting the host data and metadata comprises: generating a decrypted copy of the host data and metadata using a symmetric cryptographic key; and presenting the decrypted copy of the host data on a graphical interface of a display of the monitoring computing system; detecting that the monitoring computing system has stopped viewing the decrypted copy of the host data; and automatically deleting the decrypted copy of the host data. 11. The computer-implemented method according to claim 10 , wherein the decrypted copy of the host data is stored on a web server, wherein the graphical interface of the display of the monitoring computing system comprises a web browser. 12. The computer-implemented method according to claim 10 , wherein the consolidated data sink is a relational database comprising a table, the table comprising entries for an identity of a user associated with the host computing system, types of data processed by the host computing system, and processes executed by the host computing system. 13. The computer-implemented method according to claim 10 , wherein decrypting the host data and metadata comprises performing a batch decryption of encrypted data within the consolidated data sink. 14. The computer-implemented method according to claim 10 , wherein receiving the host data and metadata comprises establishing a Hypertext Transfer Protocol Secure (“HTTPS”) connection with the host computing system.
Assignees
Inventors
Classifications
- G06F21/602Primary
Providing cryptographic facilities or services · CPC title
Remote procedure calls [RPC]; Web services · CPC title
Tablespace storage structures; Management thereof · CPC title
wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption (cryptographic mechanisms or cryptographic arrangements for symmetric key encryption H04L9/06) · CPC title
where the computing system is distributed, e.g. networked systems, clusters, multiprocessor systems (multiprogramming arrangements G06F9/46; allocation of resources G06F9/50) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US11593494B2 cover?
- A system for monitoring networked computing devices with integrated electronic data encryption and decryption mechanism is provided. In particular, the system may comprise one or more host applications which may interact with an API layer to transmit encrypted host-related data through a secure data rails to a consolidated data repository. One or more downstream monitoring applications may retr…
- Who is the assignee on this patent?
- Bank Of America
- What technology area does this patent fall under?
- Primary CPC classification G06F21/602. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Feb 28 2023 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 5 related publications on this page (citations in our corpus or others sharing the same primary CPC).