Search

US-12619750-B2 - Ingestion layer for improved security of distributed information

US12619750B2US 12619750 B2US12619750 B2US 12619750B2US-12619750-B2

Abstract

Aspects of the disclosure relate to information security. A computing platform may configure a connector framework to: preconfigure identities of data production systems without involvement of a third party system, and ingest information, received from the data production systems, directly into a storage layer at each of a plurality of data recipient systems, where the information may be received in a plurality of different programming languages, and the plurality of data production systems may be located in different geographic regions. The computing platform may receive, at the connector framework and from a first data production system of the data production systems, first information. The computing platform may ingest the first information by: replicating, using the connector framework, the first information, and making available, to the plurality of data recipient systems, the first information, which may cause storage of the replicated first information in real time.

Inventors

  • Pradeep Jahagirdar
  • Christopher Edwards
  • Sanjay Dua

Assignees

  • BANK OF AMERICA CORPORATION

Dates

Publication Date
20260505
Application Date
20221018

Claims (18)

  1. 1 . A computing platform comprising: at least one processor; a communication interface communicatively coupled to the at least one processor; and memory storing computer-readable instructions that, when executed by the at least one processor, cause the computing platform to: configure a connector framework at the computing platform, wherein the connector framework is configured to: preconfigure identities of a plurality of data production systems without involvement of a third party system, and ingest information, received from the data production systems, directly into a storage layer at each of a plurality of data recipient systems, wherein the information is received in a plurality of different programming languages, wherein the plurality of data production systems are located in different geographic regions, and wherein the ingesting the information further comprises centrally ingesting the information in the plurality of different programming languages based on the preconfigured identities of the data production systems; receive, at the connector framework and from a first data production system of the data production systems, first information, wherein the first data production system is located in a first geographic region; and ingest the first information, wherein ingesting the first information comprises: replicating, using the connector framework, the first information, and making available, to the plurality of data recipient systems, the first information, wherein making available the first information to the plurality of data recipient systems causes the plurality of data recipient systems to store the replicated first information in real time as the first information is received at the connector framework, wherein: the data production systems are located in geographic locations other than the first geographic region, wherein: the connector framework causes the first information to be available to the plurality of data recipient systems in a first period of time, a second computing platform is configured to use a third party system to perform distributed storage, wherein performing the distributed storage using the third party system occurs in a second period of time, and wherein the second period of time is larger than the first period of time.
  2. 2 . The computing platform of claim 1 , wherein storing the replicated first information at the plurality of data recipient systems causes the first information to be resilient against data loss due to failure of the first data production system.
  3. 3 . The computing platform of claim 1 , wherein the first information is received via a secure sockets layer (SSL) connection between the computing platform and the first data production system.
  4. 4 . The computing platform of claim 1 , wherein the ingesting the information is further based on a schema list corresponding to the preconfigured identities of the data production systems.
  5. 5 . The computing platform of claim 1 , wherein the computing platform comprises a multi-site storage system.
  6. 6 . The computing platform of claim 1 , wherein the plurality of data recipient systems includes all data recipient systems connected to the computing platform.
  7. 7 . The computing platform of claim 1 , wherein the information includes message queue (MQ) messages, comma-separated values (CSV) files, and JavaScript Object Notation (JSON) format files.
  8. 8 . A method comprising: at a computing platform comprising at least one processor, a communication interface, and memory: configuring a connector framework at the computing platform, wherein the connector framework is configured to: preconfigure identities of a plurality of data production systems without involvement of a third party system, and ingest information, received from the data production systems, directly into a storage layer at each of a plurality of data recipient systems, wherein the information is received in a plurality of different programming languages, wherein the plurality of data production systems are located in different geographic regions, and wherein the ingesting the information further comprises centrally ingesting the information in the plurality of different programming languages based on the preconfigured identities of the data production systems; receiving, at the connector framework and from a first data production system of the data production systems, first information, wherein the first data production system is located in a first geographic region; and ingesting the first information, wherein ingesting the first information comprises: replicating, using the connector framework, the first information, and making available, to the plurality of data recipient systems, the first information, wherein making available the first information to the plurality of data recipient systems causes the plurality of data recipient systems to store the replicated first information in real time as the first information is received at the connector framework, wherein: the data production systems are located in geographic locations other than the first geographic region, wherein: the connector framework causes the first information to be available to the plurality of data recipient systems in a first period of time, a second computing platform is configured to use a third party system to perform distributed storage, wherein performing the distributed storage using the third party system occurs in a second period of time, and wherein the second period of time is larger than the first period of time.
  9. 9 . The method of claim 8 , wherein storing the replicated first information at the plurality of data recipient systems causes the first information to be resilient against data loss due to failure of the first data production system.
  10. 10 . The method of claim 8 , wherein the first information is received via a secure sockets layer (SSL) connection between the computing platform and the first data production system.
  11. 11 . The method of claim 8 , wherein the ingesting the information is further based on a schema list corresponding to the preconfigured identities of the data production systems.
  12. 12 . The method of claim 8 , wherein the computing platform comprises a multi-site storage system.
  13. 13 . The method of claim 8 , wherein the plurality of data recipient systems includes all data recipient systems connected to the computing platform.
  14. 14 . One or more non-transitory computer-readable media storing instructions that, when executed by a computing platform comprising at least one processor, a communication interface, and memory, cause the computing platform to: configure a connector framework at the computing platform, wherein the connector framework is configured to: preconfigure identities of a plurality of data production systems without involvement of a third party system, and ingest information, received from the data production systems, directly into a storage layer at each of a plurality of data recipient systems, wherein the information is received in a plurality of different programming languages, wherein the plurality of data production systems are located in different geographic regions, and wherein the ingesting the information further comprises centrally ingesting the information in the plurality of different programming languages based on the preconfigured identities of the data production systems; receive, at the connector framework and from a first data production system of the data production systems, first information, wherein the first data production system is located in a first geographic region; and ingest the first information, wherein ingesting the first information comprises: replicating, using the connector framework, the first information, and making available, to the plurality of data recipient systems, the first information, wherein making available the first information to the plurality of data recipient systems causes the plurality of data recipient systems to store the replicated first information in real time as the first information is received at the connector framework, wherein: the data production systems are located in geographic locations other than the first geographic region, wherein: the connector framework causes the first information to be available to the plurality of data recipient systems in a first period of time, a second computing platform is configured to use a third party system to perform distributed storage, wherein performing the distributed storage using the third party system occurs in a second period of time, and wherein the second period of time is larger than the first period of time.
  15. 15 . The one or more non-transitory computer-readable media of claim 14 , wherein storing the replicated first information at the plurality of data recipient systems causes the first information to be resilient against data loss due to failure of the first data production system.
  16. 16 . The one or more non-transitory computer-readable media of claim 14 , wherein the first information is received via a secure sockets layer (SSL) connection between the computing platform and the first data production system.
  17. 17 . The one or more non-transitory computer-readable media of claim 14 , wherein the ingesting the information is further based on a schema list corresponding to the preconfigured identities of the data production systems.
  18. 18 . The one or more non-transitory computer-readable media of claim 14 , wherein the computing platform comprises a multi-site storage system.

Description

BACKGROUND Aspects of the disclosure relate to improved security of distributed information. In some instances, information storage systems may fail or become otherwise unavailable, thus causing a loss of any information stored at that system. To make information resilient to such failures, information may be stored in a distributed manner, thus making the information available at additional storage locations in the event of a single failure. Such distributed storage methods, however, may create security concerns, as the information may be intercepted during transmission and/or otherwise obtained by third parties involved in the distributed storage. Accordingly, it may be advantageous to develop methods to enhance the security of information transmitted for distributed storage. SUMMARY Aspects of the disclosure provide effective, efficient, scalable, and convenient technical solutions that address and overcome the technical problems associated with information security. In accordance with one or more embodiments of the disclosure, a computing platform comprising at least one processor, a communication interface, and memory storing computer-readable instructions may configure a connector framework at the computing platform, wherein the connector framework is configured to: preconfigure identities of a plurality of data production systems without involvement of a third party system, and ingest information, received from the data production systems, directly into a storage layer at each of a plurality of data recipient systems, where the information may be received in a plurality of different programming languages, and the plurality of data production systems may be located in different geographic regions. The computing platform may receive, at the connector framework and from a first data production system of the data production systems, first information, where the first data production system may be located in a first geographic region. The computing platform may ingest the first information, by: 1) replicating, using the connector framework, the first information, and 2) making available, to the plurality of data recipient systems, the first information, which may cause the plurality of data recipient systems to store the replicated first information in real time as the first information is received at the connector framework, where the data production systems may be located in geographic locations other than the first geographic region. In one or more instances, storing the replicated first information at the plurality of data recipient systems may cause the first information to be resilient against data loss due to failure of the first data production system. In one or more instances, the first information may be received via a secure sockets layer (SSL) connection between the computing platform and the first data production system. In one or more examples, ingesting the information may include centrally ingesting the information in the plurality of different programming languages based on the preconfigured identities of the data production systems. In one or more examples, ingesting the information may be further based on a schema list corresponding to the preconfigured identities of the data production systems. In one or more instances, the computing platform may be a multi-site storage system. In one or more instances, the connector framework may cause the information to be available to the plurality of data recipient systems in a first period of time, a second computing platform may be configured to use the third party system to perform distributed storage in a second period of time, and the second period of time may be larger than the first period of time. In one or more instances, the plurality of data recipient systems may include all data recipient systems connected to the computing platform. These features, along with many others, are discussed in greater detail below. BRIEF DESCRIPTION OF THE DRAWINGS The present disclosure is illustrated by way of example and not limited in the accompanying figures in which like reference numerals indicate similar elements and in which: FIGS. 1A-1B depict an illustrative computing environment for improved security of distributed information in accordance with one or more example embodiments; FIGS. 2A-2B depict an illustrative event sequence for improved security of distributed information in accordance with one or more example embodiments; and FIG. 3 depicts an illustrative method for improved security of distributed information in accordance with one or more example embodiments. DETAILED DESCRIPTION In the following description of various illustrative embodiments, reference is made to the accompanying drawings, which form a part hereof, and in which is shown, by way of illustration, various embodiments in which aspects of the disclosure may be practiced. In some instances, other embodiments may be utilized, and structural and functional modifications may be m