Patent attributes
Aspects of the present disclosure relate to detecting and protecting a class of data in an API call including determining a plurality of field names and identifying a field name to search for in the data. The technique further includes generating, in response to the identifying the field name, an encryption key and an expiration, wherein the encryption key is configured to encrypt the data. The technique also comprises encrypting the data, sending the API call to an application server, wherein the application server is configured to process the API call. The technique also includes receiving, from the application server, a request for the encryption key and validating that the encryption key has not expired. The technique also includes, sending, in response to being valid, the encryption key to the application server, and storing, in a database, a set of usage data associated with the encryption key.
