	US 12,355,837 B2
	Preventing data spillage in multi-tenant services via request and response containerization with provenance checks
Raghvendra Maloo, Sammamish, WA (US); Vivek Roy, Vancouver (CA); and Mohammad Tajvidi Reza, Vancouver (CA)
Assigned to MICROSOFT TECHNOLOGY LICENSING, LLC, Redmond, WA (US)
Filed by MICROSOFT TECHNOLOGY LICENSING, LLC, Redmond, WA (US)
Filed on Sep. 13, 2023, as Appl. No. 18/368,011.
Application 18/368,011 is a continuation of application No. 17/840,088, filed on Jun. 14, 2022, granted, now 11,799,951.
Prior Publication US 2024/0080360 A1, Mar. 7, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 67/1014 (2022.01); G06F 9/50 (2006.01); H04L 67/51 (2022.01); H04L 67/63 (2022.01)

CPC H04L 67/1014 (2013.01) [G06F 9/5027 (2013.01); H04L 67/51 (2022.05); H04L 67/63 (2022.05)]

18 Claims

9. A non-transitory computer-readable storage medium having computer-executable instructions stored thereupon which, when executed by a processing device, cause the processing device to:

receive a request;

extract an identifier from the request;

initialize, with the identifier, a read-only property of a request container, wherein the request container comprises an immutable in-memory object used while processing the request;

obtain the identifier from the read-only property of the request container;

invoke a data access API with the obtained identifier;

generate a response that includes raw user data received from the data access API; and

transmit the response.