US 12,445,495 B2
Secure infrastructure as code (IAC) solution for deploying cloud resources
Arn Hyndman, Ottawa (CA)
Assigned to INTERNATIONAL BUSINESS MACHINES CORPORATION, Armonk, NY (US)
Filed by INTERNATIONAL BUSINESS MACHINES CORPORATION, Armonk, NY (US)
Filed on Mar. 27, 2023, as Appl. No. 18/190,368.
Prior Publication US 2024/0333769 A1, Oct. 3, 2024
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/20 (2013.01) 20 Claims
OG exemplary drawing
 
1. A computer-implemented method, comprising operations for:
receiving a signed Infrastructure as Code (IaC) solution, wherein the signed IaC solution is selected from a group consisting of a signed public IaC solution, a signed private IaC solution, and a signed combined IaC solution;
performing a policy check to determine that the signed IaC solution conforms to one or more policies;
performing an automated validation of the signed IaC solution to check for one or more compliance or security issues;
performing a signature check of the signed IaC solution to determine that the signed IaC solution has not been tampered with;
determining that the signed IaC solution is authorized to be deployed by checking a trusted profile;
validating one or more configuration parameters; and
executing the signed IaC solution using the one or more configuration parameters to deploy cloud resources.