Data processing: database and file management or data structures – Database design – Data structure types
Reexamination Certificate
1999-11-18
2003-04-29
Robinson, Greta (Department: 2177)
Data processing: database and file management or data structures
Database design
Data structure types
C707S793000, C707S793000, C707S793000
Reexamination Certificate
active
06556995
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Technical Field
The present invention relates to the field of computer software and, more particularly, to methods and apparatus to manage multiple user identities such that the user need only maintain a single user identity.
2. Description of Related Art
As computers have infiltrated society over the past several decades and become more important in all aspects of modern life, more and more confidential information has been stored on computer databases. However, computers and networks such as the Internet allow multitudes of users to access databases. Many times multiple databases may be accessed via the same network, but not all users on the network need or should have access to every database. Therefore, security devices have been implemented to prevent unauthorized access to a database.
One method of preventing unauthorized access is to require the user to provide user identification information to verify that that user is entitled to the information contained in the database. Thus, many database applications require a user to provide identification information, such as a user ID and password, in order to access a protected database. These applications may have this information fixed within the application (i.e., “hard coded”), the application may be configured with the information, or, in some cases, the application may prompt the user for this information at run time.
However, databases are not the only computer resources requiring a user to provide identifying information. Other resources such as servers and networks may also require users to provide identifying information. Because different resources have different security requirements and because some resources assign identities rather than allowing a user to choose, many users may have multiple identities depending on the particular resource that they are accessing. The database identity is yet another one that the user must maintain.
Global Sign-on (GSO) technology attempts to manage this set of multiple identities on behalf of a user so that the user only needs to maintain a single user identity. The user then allows the GSO to manage the other identities automatically whenever the user attempts to access a particular protected resource.
Current versions of GSO use a product technology referred to as Open Horizon to provide a single sign-on capability for databases. Open Horizon forwards all requests through a DCE client RPC mechanism to an Open Horizon server. The actual database request is then issued by the Open Horizon server. This technique requires a DCE client to be installed and configured on the client machine as well as the Open Horizon server to be installed and configured on the database server machine. However, it is desirable to have a global sign-on system that does not require any additional special client software to be installed and configured on the client machine. It is also desirable to have a global sign-on system that does not require an additional server.
SUMMARY OF THE INVENTION
The present invention provides a method in a data processing system for managing multiple identities for a single user. In a preferred embodiment, a request for content from a database, a service, or an application and a first user identity entered by a user is received at a database server. Responsive to a determination that retrieval of the content from the database requires providing the database with user information, the user's database identity or other information associated with the database is retrieved from a library of database identities on the GSO server. The retrieved user identity information is then inserted into the request and the request is forwarded to the database.
REFERENCES:
patent: 4714992 (1987-12-01), Gladney et al.
patent: 5349642 (1994-09-01), Kingdon
patent: 5455945 (1995-10-01), VanderDrift
patent: 5572709 (1996-11-01), Fowler et al.
patent: 5577241 (1996-11-01), Spencer
patent: 5689698 (1997-11-01), Jones et al.
patent: 5706427 (1998-01-01), Tabuki
patent: 5710918 (1998-01-01), Lagarde et al.
patent: 5721908 (1998-02-01), Lagarde et al.
patent: 5818936 (1998-10-01), Mashayekhi
patent: 5873083 (1999-02-01), Jones et al.
patent: 5913025 (1999-06-01), Higley et al.
patent: 5987454 (1999-11-01), Hobbs
patent: 6023698 (2000-02-01), Lavey, Jr. et al.
patent: 6085223 (2000-07-01), Carino, Jr. et al.
patent: 6092196 (2000-07-01), Reiche
patent: 6115744 (2000-09-01), Robins et al.
patent: 6237023 (2001-05-01), Yoshimoto
patent: 6275941 (2001-08-01), Saito et al.
Welcome to the ODBC Section of the Microsoft Universal Data Access Web Site; www.microsoft.com; pp. 1.
Data Access Roadmap; A Technology report from Ken North; http://cbr.nc.us.mensa.org pp. 1-2.
ODBC Reality and Developer Experiences; DBMS Online; Mar. 1994; pp. 1-3.
ODBC (Open Database Connectivity); www.whatis.com; pp 1.
Understanding Multidatbase APIs and ODBC; DBMS Online; Mar. 1994; pp. 1-8.
Child Garry Lee
Janakiraman Janani
Black Linh
International Business Machines - Corporation
Leeuwen Leslie A. Van
Robinson Greta
Walder, Jr. Stephen J.
LandOfFree
Method to provide global sign-on for ODBC-based database... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method to provide global sign-on for ODBC-based database..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method to provide global sign-on for ODBC-based database... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3084265