CPC G06F 21/6218 (2013.01) [H04L 63/20 (2013.01); H04L 67/1095 (2013.01); H04L 67/306 (2013.01); G06F 2221/2111 (2013.01); H04L 63/102 (2013.01); H04L 67/10 (2013.01); H04W 4/021 (2013.01)] | 20 Claims |
1. A method, comprising:
receiving, at a node of a distributed service system, a request for a service from a user of an enterprise, the service provided by the distributed service system and implemented on the node, the request received through an interface of the service;
determining, by a data sovereignty module on the node, whether the user is subject to data sovereignty enforcement;
responsive to the user being subject to the data sovereignty enforcement, identifying, by the data sovereignty module on the node, a region associated with the user;
determining, by the data sovereignty module on the node based on the region thus identified, whether the node on which the service is implemented is data sovereign for the region;
responsive to the node on which the service is implemented not being data sovereign for the region, determining a response based on a response configuration of the data sovereignty module, wherein the response includes a location of an other node of the distributed service system that is data sovereign for the region and that implements a corresponding service of the distributed service system; and
communicating the response to the user.
|