US 12,093,377 B2
System and method for providing data security using software library containers
Tomas M. Castrejon, III, Fort Mill, SC (US); Michael Robert Young, Davidson, NC (US); David Nardoni, Sierra Madre, CA (US); Joel Townsend, Spring Church, PA (US); and Manu Jacob Kurian, Dallas, TX (US)
Assigned to BANK OF AMERICA CORPORATION, Charlotte, NC (US)
Filed by BANK OF AMERICA CORPORATION, Charlotte, NC (US)
Filed on Apr. 27, 2022, as Appl. No. 17/730,744.
Prior Publication US 2023/0351012 A1, Nov. 2, 2023
Int. Cl. G06F 21/55 (2013.01); G06F 21/57 (2013.01)
CPC G06F 21/554 (2013.01) [G06F 21/552 (2013.01); G06F 21/577 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system for providing data security using software library containers, the system comprising:
at least one non-transitory storage device; and
at least one processing device coupled to the at least one non-transitory storage device, wherein the at least one processing device is configured to:
identify a software library used by a first application with a potential vulnerability;
determine a software library permission for the software library used by the first application based on the potential vulnerability, wherein the software library permission for the software library defines a level of functionality of at least a portion of the software library;
identify one or more additional applications that use the software library;
cause the software library permission to be applied to the software library installed on the first application and at least one of the one or more additional applications limiting the operations of the software library and the one or more additional applications including limiting data that the software library and the one or more additional applications can receive or send; and
segment the software library permissions into portions of software library functionality, without completely sandboxing applications.