公开(公告)号：US11277263B2

公开(公告)日：2022-03-15

申请号：US16694265

申请日：2019-11-25

Applicant: Google LLC

Inventor： Joseph Valente ,  Nicole Jones ,  David Lee

IPC: H04L9/08 ,  G06F21/60 ,  G06F21/64 ,  H04L9/32

Abstract: A method for accessing customer data includes receiving an access request requesting access to customer data stored on a storage abstraction. The access request includes a justification that specifies a purpose/reason for requesting access to the customer data. The method also includes validating the justification, and after validating the justification, transmitting the justification to an external key management service associated with a customer of the customer data. The external key management service is configured to grant or deny access to the customer data based on the justification. The method also includes receiving an approved access token from the external key management service when the external key management service grants access to the customer data and accessing the customer data stored on the storage abstraction using the approved access token received from the external key management service.

公开(公告)号：US20210067324A1

公开(公告)日：2021-03-04

申请号：US16694265

申请日：2019-11-25

Applicant: Google LLC

Inventor： Joseph Valente ,  Nicole Jones ,  David Lee

IPC: H04L9/08 ,  H04L9/32 ,  G06F21/64 ,  G06F21/60

Abstract: A method for accessing customer data includes receiving an access request requesting access to customer data stored on a storage abstraction. The access request includes a justification that specifies a purpose/reason for requesting access to the customer data. The method also includes validating the justification, and after validating the justification, transmitting the justification to an external key management service associated with a customer of the customer data. The external key management service is configured to grant or deny access to the customer data based on the justification. The method also includes receiving an approved access token from the external key management service when the external key management service grants access to the customer data and accessing the customer data stored on the storage abstraction using the approved access token received from the external key management service.

公开(公告)号：US11924344B2

公开(公告)日：2024-03-05

申请号：US18301201

申请日：2023-04-14

Applicant: Google LLC

Inventor： Joseph Valente ,  Nicole Jones ,  David Lee

IPC: H04L9/08 ,  G06F21/60 ,  G06F21/64 ,  H04L9/32

CPC classification number: H04L9/088 ,  G06F21/602 ,  G06F21/645 ,  H04L9/0866 ,  H04L9/3213 ,  H04L9/3228

Abstract: A method for accessing customer data includes receiving an access request requesting access to customer data stored on a storage abstraction. The access request includes a justification that specifies a purpose/reason for requesting access to the customer data. The method also includes validating the justification, and after validating the justification, transmitting the justification to an external key management service associated with a customer of the customer data. The external key management service is configured to grant or deny access to the customer data based on the justification. The method also includes receiving an approved access token from the external key management service when the external key management service grants access to the customer data and accessing the customer data stored on the storage abstraction using the approved access token received from the external key management service.

公开(公告)号：US20230254140A1

公开(公告)日：2023-08-10

申请号：US18301201

申请日：2023-04-14

Applicant: Google LLC

Inventor： Joseph Valente ,  Nicole Jones ,  David Lee

IPC: H04L9/08 ,  G06F21/60 ,  G06F21/64 ,  H04L9/32

CPC classification number: H04L9/088 ,  G06F21/602 ,  G06F21/645 ,  H04L9/0866 ,  H04L9/3213 ,  H04L9/3228

Abstract: A method for accessing customer data includes receiving an access request requesting access to customer data stored on a storage abstraction. The access request includes a justification that specifies a purpose/reason for requesting access to the customer data. The method also includes validating the justification, and after validating the justification, transmitting the justification to an external key management service associated with a customer of the customer data. The external key management service is configured to grant or deny access to the customer data based on the justification. The method also includes receiving an approved access token from the external key management service when the external key management service grants access to the customer data and accessing the customer data stored on the storage abstraction using the approved access token received from the external key management service.

公开(公告)号：US11652624B2

公开(公告)日：2023-05-16

申请号：US17652789

申请日：2022-02-28

Applicant: Google LLC

Inventor： Joseph Valente ,  Nicole Jones ,  David Lee

IPC: H04L9/08 ,  G06F21/60 ,  G06F21/64 ,  H04L9/32

CPC classification number: H04L9/088 ,  G06F21/602 ,  G06F21/645 ,  H04L9/0866 ,  H04L9/3213 ,  H04L9/3228

Abstract: A method for accessing customer data includes receiving an access request requesting access to customer data stored on a storage abstraction. The access request includes a justification that specifies a purpose/reason for requesting access to the customer data. The method also includes validating the justification, and after validating the justification, transmitting the justification to an external key management service associated with a customer of the customer data. The external key management service is configured to grant or deny access to the customer data based on the justification. The method also includes receiving an approved access token from the external key management service when the external key management service grants access to the customer data and accessing the customer data stored on the storage abstraction using the approved access token received from the external key management service.

公开(公告)号：US20220182225A1

公开(公告)日：2022-06-09

申请号：US17652789

申请日：2022-02-28

Applicant: Google LLC

Inventor： Joseph Valente ,  Nicole Jones ,  David Lee

IPC: H04L9/08 ,  G06F21/60 ,  G06F21/64 ,  H04L9/32

Abstract: A method for accessing customer data includes receiving an access request requesting access to customer data stored on a storage abstraction. The access request includes a justification that specifies a purpose/reason for requesting access to the customer data. The method also includes validating the justification, and after validating the justification, transmitting the justification to an external key management service associated with a customer of the customer data. The external key management service is configured to grant or deny access to the customer data based on the justification. The method also includes receiving an approved access token from the external key management service when the external key management service grants access to the customer data and accessing the customer data stored on the storage abstraction using the approved access token received from the external key management service.