US 11,949,680 B2
Framework for customer control and auditing of operator access to infrastructure in a cloud service
Prasanna Ramamurthi, Bangalore (IN); Joydip Kundu, Nashua, NH (US); Binoy Sukumaran, Foster City, CA (US); Krishna Chander, San Ramon, CA (US); and Jeffrey Wright, Superior, CO (US)
Assigned to Oracle International Corporation, Redwood Shores (CA)
Filed by Oracle International Corporation, Redwood Shores, CA (US)
Filed on Apr. 30, 2021, as Appl. No. 17/245,943.
Prior Publication US 2022/0353266 A1, Nov. 3, 2022
Int. Cl. H04L 9/40 (2022.01); G06Q 10/105 (2023.01); G06Q 30/01 (2023.01); H04L 9/30 (2006.01)
CPC H04L 63/102 (2013.01) [G06Q 10/105 (2013.01); G06Q 30/01 (2013.01); H04L 9/30 (2013.01); H04L 63/20 (2013.01)] 29 Claims
OG exemplary drawing
 
1. A method, comprising:
configuring a customer access control mechanism for a computing resource of a cloud infrastructure, wherein the computing resource is managed by a cloud provider, and the customer access control mechanism comprises:
a set of access control profiles pertaining to access by the cloud provider operator to the computing resource; and
an access policy that comprises one or more customer access control profiles;
processing the access request from the cloud provider operator to access the computing resource of the cloud infrastructure; and
permitting the cloud provider operator to access the computing resource according to an approved access control profile at least by:
modifying an operating system environment for the cloud provider operator into a modified operating system environment in which the access request is executed; and
creating a temporary user account for the cloud provider operator based at least in part upon the modified operating system environment; and
logging one or more activities by the temporary user account in the cloud infrastructure resource.