Fine granularity control of data access and usage across multi-tenant systems

Grant US12598193B2 Kind: B2 Apr 07, 2026

Assignee

Salesforce, Inc.

Inventors

Chi Wang, Eugene Wayne Becker, Nidhi Chaudhary, Kishore Chaganti, Prasad Nimmakayala, Qingbo Cai, Linwei Zhu, Hsiang-Yun Lee, Amit Zohar, Raghu Setty, Bhavesh Doshi

Abstract

System and method for fine granularity control of data access and usage for across multi-tenant systems. A user makes a request to access a particular set of data from a particular remote data source for a specific purpose. The system authorizes the user to validate whether the user is qualified to make the request. The data source is checked to see if the particular data has been granted access for that particular purpose. A cloud neutral token is created and converted into a cloud specific token upon reaching the remote data source. The cloud specific token is used to create a temporary IAM role and IAM policy with a predetermined time to live. After the time to live expires, the IAM role and IAM policy are deleted.

CPC Classifications

H04L 63/108 H04L 63/083 H04L 63/102 H04L 63/105 H04L 63/0807 H04L 9/3213 H04L 9/3226 G06F 21/6218 G06F 21/6245 H04W 12/069

Filing Date

2024-01-31

Application No.

18429187

Claims

View original document →