US 12,380,241 B2
Scanning and masking data at a source device
Tao Xu, Clarksburg, MD (US); Nesreen Mansour, Great Falls, VA (US); and Joseph Robert Sacchini, Reston, VA (US)
Assigned to Capital One Services, LLC, McLean, VA (US)
Filed by Capital One Services, LLC, McLean, VA (US)
Filed on Apr. 14, 2021, as Appl. No. 17/230,540.
Prior Publication US 2022/0335158 A1, Oct. 20, 2022
Int. Cl. G06F 21/62 (2013.01); G06N 20/00 (2019.01)
CPC G06F 21/6254 (2013.01) [G06F 21/6227 (2013.01); G06N 20/00 (2019.01)] 20 Claims
OG exemplary drawing
 
1. A source device for scanning and masking data at the source device, the source device comprising:
one or more memories; and
one or more processors, communicatively coupled to the one or more memories, configured to:
receive, from a management server, a masking configuration that indicates one or more code modules for scanning log data for sensitive information,
wherein each of the one or more code modules identify code that enables the source device to intercept data that is to be transmitted to a first destination device of one or more destination devices,
wherein each of the one or more code modules enable the source device to scan the data for the sensitive information and to mask identified sensitive information to generate masked data,
wherein each of the one or more code modules generate a corresponding different masked data, each of the corresponding different masked data being configured in a corresponding different format unique to the corresponding different masked data wherein the each of the one or more code modules correspond to only one or more destination devices, and
wherein each of the one or more code modules correspond to a different one of the one or more destination devices in accordance with a corresponding security level selected from a plurality of security levels determined for the each of the one or more destination devices;
generate the log data that includes information associated with an application of the source device;
scan the log data for the sensitive information based on the one or more code modules, wherein scanning the log data enables the source device to identify the sensitive information included in the log data;
modify the log data to remove the sensitive information from the log data and to generate first masked log data if the sensitive information is identified in the log data based on scanning the log data, wherein modifying the log data includes replacing the sensitive information in the log data with a mask string;
transmit, to the first destination device of the one or more destination devices, the first masked log data, wherein transmitting the first masked log data includes transmitting the first masked log data in a first data format associated with the first destination device; and
transmit, to the management server, telemetry information that enables the management server to monitor use of the masking configuration,
wherein the telemetry information further enables the management server to identify servers configured with the masking configuration, and
wherein transmission of the telemetry information further enables a feedback loop of the telemetry information to be created that enables management of the usage of the masking configuration by multiple servers to enable the management server to verify that each of the multiple servers has a correct and intended masking configuration.