Method and apparatus for multi-tenancy secrets management in multiple data security jurisdiction zones
US10021143B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Feb 3, 2016 |
| Grant date | Jul 10, 2018 |
| Priority date | — |
| Expiry date | Dec 24, 2036 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/20
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A service provider computing environment includes a service provider computing device, which receives tenant secrets policies from tenants. The tenants are tenants of multi-tenant assets of a service provider. One or more data security zones in which the multi-tenant assets are located are identified. A service provider secrets policy includes data security jurisdiction zone secrets policy data for the one or more data security jurisdiction zones. The data security jurisdiction zone secrets policy data is analyzed to determine allowed secrets data with respect to each of the identified data security jurisdiction zones. The service provider computing environment determines of the tenant secrets policies satisfy the requirements of the service provider secrets policy. If the tenant secrets policies satisfy the requirements of the service provider secrets policy, the service provider computing environment allows the tenant secrets policies to be applied to tenant data or information in the multi-tenant assets.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.