Data processing: database and file management or data structures – Data integrity – Policy – rule-based management of records – files – and documents
Reexamination Certificate
2007-10-09
2011-12-13
Cottingham, John R. (Department: 2167)
Data processing: database and file management or data structures
Data integrity
Policy, rule-based management of records, files, and documents
C707S702000, C707S757000
Reexamination Certificate
active
08078595
ABSTRACT:
Techniques for implementing secure normal forms are provided. In one embodiment, in response to a request for data from a client, a database server is operable to enforce a column-level security policy that is defined for a particular column of some, but not necessarily all, rows of a table stored in a database. After retrieving a set of rows from the table and before returning a result set of rows to the client, the database server modifies the retrieved set of rows into the result set of rows by applying the security policy to each row of the retrieved set of rows, where applying the security policy to a row comprises: determining whether the security policy is satisfied for the particular column of that row; replacing, in the result set of rows, a data value in the particular column of that row with a security-NULL value when the security policy is not satisfied; and including the data value in the particular column of that row into the result set of rows when the security policy is satisfied. After generating the result set of rows, the database server returns the result set of rows to the client.
REFERENCES:
patent: 5133075 (1992-07-01), Risch
patent: 5241305 (1993-08-01), Fascenda et al.
patent: 5276901 (1994-01-01), Howell et al.
patent: 5335346 (1994-08-01), Fabbio
patent: 5499368 (1996-03-01), Tate et al.
patent: 5748899 (1998-05-01), Aldrich
patent: 5787428 (1998-07-01), Hart
patent: 5832226 (1998-11-01), Suzuki et al.
patent: 5864842 (1999-01-01), Pederson et al.
patent: 5940818 (1999-08-01), Malloy et al.
patent: 5963932 (1999-10-01), Jakobsson et al.
patent: 6098081 (2000-08-01), Heidom et al.
patent: 6134549 (2000-10-01), Regnier et al.
patent: 6253203 (2001-06-01), O'flaherty et al.
patent: 6275824 (2001-08-01), O'Flaherty et al.
patent: 6275825 (2001-08-01), Kobayashi et al.
patent: 6308273 (2001-10-01), Goertzel et al.
patent: 6363387 (2002-03-01), Ponnekanti et al.
patent: 6449609 (2002-09-01), Witkowski
patent: 6487552 (2002-11-01), Lei et al.
patent: 6493722 (2002-12-01), Daleen et al.
patent: 6539398 (2003-03-01), Hannan et al.
patent: 6578037 (2003-06-01), Wing et al.
patent: 6587854 (2003-07-01), Guthrie et al.
patent: 6609121 (2003-08-01), Ambrosini et al.
patent: 6618721 (2003-09-01), Lee
patent: 6631371 (2003-10-01), Lei et al.
patent: 6678822 (2004-01-01), Morar et al.
patent: 6684227 (2004-01-01), Duxbury
patent: 6757670 (2004-06-01), Inohara et al.
patent: 6763344 (2004-07-01), Osentoski et al.
patent: 6820082 (2004-11-01), Cook et al.
patent: 6847998 (2005-01-01), Arcieri et al.
patent: 6920457 (2005-07-01), Pressmar
patent: 6986060 (2006-01-01), Wong
patent: 6996557 (2006-02-01), Leung et al.
patent: 7155612 (2006-12-01), Licis
patent: 7240046 (2007-07-01), Cotner et al.
patent: 7243097 (2007-07-01), Agrawal et al.
patent: 7266699 (2007-09-01), Newman et al.
patent: 2001/0021929 (2001-09-01), Lin et al.
patent: 2002/0095405 (2002-07-01), Fujiwara
patent: 2003/0014394 (2003-01-01), Fujiwara et al.
patent: 2003/0236781 (2003-12-01), Lei et al.
patent: 2003/0236782 (2003-12-01), Wong et al.
patent: 2004/0139043 (2004-07-01), Lei et al.
patent: 2004/0254948 (2004-12-01), Yao
patent: 2005/0050046 (2005-03-01), Puz et al.
patent: 2005/0177570 (2005-08-01), Dutta et al.
patent: 2005/0188421 (2005-08-01), Arbajian
patent: 2005/0246338 (2005-11-01), Bird
patent: 1 089 194 (2001-04-01), None
patent: 2002312220 (2002-10-01), None
patent: 2002-312220 (2002-10-01), None
Stonebraker, Michael, et al., “Access Control in a Relational Data Base Management System by Query Modification”, ACM Press, Proceedings of the 1974 Annual Conference, 1974, 8 pages.
State Intellectual Property Office of P.R.C., “Notification of the First Office Action”, Application No. 200380108699.3, mailed Oct. 26, 2007, 9 pages.
State Intellectual Property Office of P.R.C., “Notification of the Second Office Action”, Application No. 200380108699.3, mailed Feb. 1, 2008, 9 pages.
Claims, Application No. 200380108699.3, 4 pages.
Oracle Corporation, “Oracle9iR2 Database Security for E-Business”, An Oracle White Paper, Jan. 2002.
WHATIS.COM, “The Most Misunderstood Terms in IT”, Tech Target, retrieved from www.archive.org, dated Jun. 27, 2002, 5 pages.
Stonebraker, M., et al., “Access Control in a Relational Data Base Management System by Query Modification” XP-002319462, pp. 180-186.
Motro, A., “An Access Authorization Model for Relational Databases Based on Algebraic Manipulation of View Definitions” (1989) IEEE, pp. 339-347.
Buzsaki George
King Nigel
Wigenstam Roger
Allen Nicholas E
Cottingham John R.
Hickman Palermo & Truong & Becker LLP
Oracle International Corporation
LandOfFree
Secure normal forms does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Secure normal forms, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Secure normal forms will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4298229