Data processing: database and file management or data structures – Database design – Data structure types
Patent
1998-03-25
2000-07-04
Breene, John E.
Data processing: database and file management or data structures
Database design
Data structure types
707 10, 707 1, G06F 1730
Patent
active
060851910
ABSTRACT:
An access control database has access control objects that collectively store information that specifies access rights by users to specified sets of the managed objects. The specified access rights include access rights to obtain management information from the network. An access control server provides users access to the managed objects in accordance with the access rights specified by the access control database. An information transfer mechanism sends management information from the network to a database management system (DBMS) for storage in a set of database tables. Each database table stores management information for a corresponding class of managed objects. A set of views limits access to the management information stored in the database tables. Each view defines a subset of rows in the database tables that are accessible when using this view. The set of database table rows that are accessible when using each view in the set corresponds to the managed object access rights specified by the access control database for at least one the users. A view access control means specifies which views in the set of views are useable by specified ones of the users. The database access engine accesses information in the set of database tables using the set of views such that each user is allowed access only to management information in the set of database tables that the user would be allowed by the access control database to access.
REFERENCES:
patent: 4956769 (1990-09-01), Smith
patent: 5012405 (1991-04-01), Nishikado et al.
patent: 5263158 (1993-11-01), Janis
patent: 5787428 (1998-07-01), Hart
patent: 5826010 (1998-10-01), Joseph et al.
Amihai Moto, "An Access Authorization model for relational Databases based on Algebraic Manipulation of View Definations", IEEE electronic library online, pp. 339-347, Feb. 1989.
Xiaolei Qian, "View-Based Access Control with High Assurance", IEEE electronic library online, pp. 85-93, May 1996.
International Telecommunications Union (CCITT), "Data Networks and Open System Communications, OSI Management, Information Technology-Open Systems Interconnection--Systems Management: Objects and Attributes for Access Control, ITU-T X.741,"(1995).
International Telecommunications Union (CCITT), "Data Communication Networks, Information Technology--Open Systems Interconnection--Systems Management: Security Audit Trail Function, X.740," (1992).
International Telecommunications Union (CCITT), "Data Networks and Open System Communications Security, Information Technology--Open Systems Interconnection--Security Frameworks for Open Systems: Access Control Framework, X.812," (1995).
Bapat Subodh
Fisher Bart Lee
Breene John E.
Robinson Greta
Sun Microsystems Inc.
LandOfFree
System and method for providing database access control in a sec does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for providing database access control in a sec, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for providing database access control in a sec will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1495311