Abstract: Aspects of the present disclosure relate to detecting and protecting a class of data in an API call including determining a plurality of field names and identifying a field name to search for in the data. The technique further includes generating, in response to the identifying the field name, an encryption key and an expiration, wherein the encryption key is configured to encrypt the data. The technique also comprises encrypting the data, sending the API call to an application server, wherein the application server is configured to process the API call. The technique also includes receiving, from the application server, a request for the encryption key and validating that the encryption key has not expired. The technique also includes, sending, in response to being valid, the encryption key to the application server, and storing, in a database, a set of usage data associated with the encryption key.

Abstract: Aspects of the present disclosure relate to detecting and protecting a class of data in an API call including determining a plurality of field names and identifying a field name to search for in the data. The technique further includes generating, in response to the identifying the field name, an encryption key and an expiration, wherein the encryption key is configured to encrypt the data. The technique also comprises encrypting the data, sending the API call to an application server, wherein the application server is configured to process the API call. The technique also includes receiving, from the application server, a request for the encryption key and validating that the encryption key has not expired. The technique also includes, sending, in response to being valid, the encryption key to the application server, and storing, in a database, a set of usage data associated with the encryption key.

Abstract: A method, computer program product, and system for identifying provenance of a software product are provided. The method includes: (i) identifying a software product having a set of interdependent software components; (ii) for each software component of the set of interdependent software components, defining an associated verification record, wherein each verification record includes: a first verification value that verifies output data of the associated software component, and a second verification value that verifies input data of the associated software component; (iii) determining an authentication value for the software product based, at least in part, on output data of the software product; and (iv) verifying authenticity of the software product based, at least in part, on a comparison between the authentication value and a verification record associated with a software component of the software product.

Abstract: Aspects of the present disclosure relate to detecting and protecting a class of data in an API call including determining a plurality of field names and identifying a field name to search for in the data. The technique further includes generating, in response to the identifying the field name, an encryption key and an expiration, wherein the encryption key is configured to encrypt the data. The technique also comprises encrypting the data, sending the API call to an application server, wherein the application server is configured to process the API call. The technique also includes receiving, from the application server, a request for the encryption key and validating that the encryption key has not expired. The technique also includes, sending, in response to being valid, the encryption key to the application server, and storing, in a database, a set of usage data associated with the encryption key.

Abstract: Aspects of the present disclosure relate to detecting and protecting a class of data in an API call including determining a plurality of field names and identifying a field name to search for in the data. The technique further includes generating, in response to the identifying the field name, an encryption key and an expiration, wherein the encryption key is configured to encrypt the data. The technique also comprises encrypting the data, sending the API call to an application server, wherein the application server is configured to process the API call. The technique also includes receiving, from the application server, a request for the encryption key and validating that the encryption key has not expired. The technique also includes, sending, in response to being valid, the encryption key to the application server, and storing, in a database, a set of usage data associated with the encryption key.