Skip to content

serverless ☁️ πŸš€ , pseudonymizing proxy between Worklytics and your workplace πŸ’Ό SaaS data sources' APIs. Data Loss Prevention (DLP) πŸ›‘οΈπŸ”’ and compliance layer deployable to AWS Lambda or GCP Cloud Functions.

License

Notifications You must be signed in to change notification settings

Worklytics/psoxy

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation

PSOXY - A pseudonymizing DLP layer between Worklytics and your data

Latest Release java build terraform examples build

A serverless, pseudonymizing, DLP layer between Worklytics and the REST API of your data sources.

Psoxy replaces PII in your organization's data with hash tokens to enable Worklytics's analysis to be performed on anonymized data which we cannot map back to any identifiable individual.

Psoxy is a pseudonymization service that acts as a Security / Compliance layer, which you can deploy between your data sources (SaaS tool APIs, Cloud storage buckets, etc) and the tools that need to access those sources.

Psoxy ensures more secure, granular data access than direct connections between your tools will offer - and enforces access rules to fulfill your Compliance requirements.

Psoxy functions as API-level Data Loss Prevention layer (DLP), by blocking sensitive fields / values / endpoints that would otherwise be exposed when you connect a data sources API to a 3rd party service. It can ensure that data which would otherwise be exposed to a 3rd party service, due to granularity of source API models/permissions, is not accessed or transfered to the service.

Objectives:

  • serverless - we strive to minimize the moving pieces required to run psoxy at scale, keeping your attack surface small and operational complexity low. Furthermore, we define infrastructure-as-code to ease setup.
  • transparent - psoxy's source code is available to customers, to facilitate code review and white box penetration testing.
  • simple - psoxy's functionality will focus on performing secure authentication with the 3rd party API and then perform minimal transformation on the response (pseudonymization, field redaction) to ease code review and auditing of its behavior.

Documentation

For full documentation, visit https://docs.worklytics.co/psoxy.

For development purposes, latest docs are also accessible at GitHub docs/.

Support

Psoxy is maintained by Worklytics, Co. Support as well as professional services to assist with configuration and customization are available. Please contact [email protected] for more information or visit www.worklytics.co.

About

serverless ☁️ πŸš€ , pseudonymizing proxy between Worklytics and your workplace πŸ’Ό SaaS data sources' APIs. Data Loss Prevention (DLP) πŸ›‘οΈπŸ”’ and compliance layer deployable to AWS Lambda or GCP Cloud Functions.

Topics

Resources

License

Stars

Watchers

Forks