Patent
1995-09-27
1998-01-27
Black, Thomas G.
395600, 395606, G06F 1730
Patent
active
057130183
ABSTRACT:
A distributed computer system has an information server and a plurality of client computers coupled by one or more communication paths to the information server. The information server includes a database management system (DBMS) with an interface procedure for receiving and responding to SQL statements from client computers. At least one client computer has a database access procedure for sending SQL statements to the DBMS in the information server. The database access procedure includes embedded encrypted SQL statements, representing a predefined subset of a predefined full set of SQL statements recognized as legal SQL statements by the DBMS. For instance, the predefined subset of SQL statement might include only SQL statements for reading data in the DBMS, but not include SQL statements for modifying and adding data to the DBMS. Each of the SQL statements sent by the database access procedure to the DBMS includes a corresponding one of the encrypted SQL statements. The DBMS in the information server includes an interface procedure for processing all SQL statements received from client computers, including a decoding procedure for decoding the encrypted SQL statement included in the SQL statements sent by the database access procedure in the one client computer. The received SQL statement is executed by the DBMS only if the decoded SQL statement is a legal SQL statement. In addition, the interface procedure rejects received SQL statements that do not include an encrypted SQL statement.
REFERENCES:
patent: 5388196 (1995-02-01), Pajak et al.
patent: 5410598 (1995-04-01), Shear
patent: 5410693 (1995-04-01), Yu et al.
patent: 5495533 (1996-02-01), Linehan et al.
patent: 5546583 (1996-08-01), Shriver
patent: 5596718 (1997-01-01), Boebert et al.
patent: 5596745 (1997-01-01), Lai et al.
patent: 5600831 (1997-02-01), Levy et al.
Black Thomas G.
Corrielus Jean M.
Sun Microsystems Inc.
Williams Gary S.
LandOfFree
System and method for providing safe SQL-level access to a datab does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for providing safe SQL-level access to a datab, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for providing safe SQL-level access to a datab will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-350031