Data processing: database and file management or data structures – Database design – Data structure types
Reexamination Certificate
2007-04-03
2009-10-06
Truong, Cam Y T (Department: 2169)
Data processing: database and file management or data structures
Database design
Data structure types
C707S793000, C707S793000, C707S793000, C707S793000, C709S225000, C713S165000, C713S152000, C713S166000
Reexamination Certificate
active
07599937
ABSTRACT:
A system and method for facilitating secure access to database(s) is provided. The system relates to authorizing discriminatory access to relational database data. More particularly, the invention provides for an innovative technique of defining secured access to rows in relational database tables in a way that cannot be spoofed while preserving various optimization techniques. The invention affords a persistent scheme via providing for a security architecture whereby discriminatory access policies on persistent entities can be defined and enforced while preserving set based associative query capabilities.A particular aspect of the invention relates to the specification of such policies and the technique by which those policies are enforced. With respect to one particular implementation of the invention, creation, modification and deletion of access control lists called security descriptors is provided. The security descriptors can be provisioned independent of rows in tables of the database and can be shared and embody the policy on what permissions are granted to whom when associated with a row.
REFERENCES:
patent: 5734887 (1998-03-01), Kingberg et al.
patent: 5911143 (1999-06-01), Deinhart et al.
patent: 5941947 (1999-08-01), Brown et al.
patent: 5943671 (1999-08-01), Kleewein et al.
patent: 5956715 (1999-09-01), Glasser et al.
patent: 6085191 (2000-07-01), Fisher et al.
patent: 6275818 (2001-08-01), Subramanian et al.
patent: 6289458 (2001-09-01), Garg et al.
patent: 6308173 (2001-10-01), Glasser et al.
patent: 6334128 (2001-12-01), Norcott et al.
patent: 6356889 (2002-03-01), Lohman et al.
patent: 6412070 (2002-06-01), Van Dyke et al.
patent: 6625603 (2003-09-01), Garg et al.
patent: 6715081 (2004-03-01), Attwood et al.
patent: 6754656 (2004-06-01), Cornwell et al.
patent: 6757670 (2004-06-01), Inohara et al.
patent: 6801903 (2004-10-01), Brown et al.
patent: 7233939 (2007-06-01), Ziauddin
patent: 2002/0063154 (2002-05-01), Hoyos et al.
patent: 2003/0229625 (2003-12-01), Melchior et al.
patent: 2004/0019587 (2004-01-01), Fuh et al.
patent: 2004/0243555 (2004-12-01), Bolsius et al.
patent: 2005/0055355 (2005-03-01), Murthy et al.
Jim Czuprynski, Oracle Label Security, Part 1: Overview, DBAsupport.com:Oracle 9i Central: Oracle Label Security, Part 1:Overview, http://www.dbasupport.com/oracle/ora9i/OLS01.shtml, 2005.
International Search Report dated Nov. 8, 2005 for PCT Application Serial No. US04/24161, 4 pages.
Written Opinion dated Nov. 15, 2000 and mailed Nov. 30, 2005 PCT Application Serial No. US04/24161, 7 pages.
Ueli Maurer, the Role of Cryptography in Database Security, SIGMOD 2004, Jun. 13-18, 2004, 6 pages, ACM.
Marianne Winslett, et al., Formal Query Languages for Secure Relational Databases, ACM Transactions on Database Systems, 1994, pp. 626-662, vol. 19 No. 4.
Sushil Jajodia, Database Security and Privacy, ACM Computing Surveys, Mar. 1996, pp. 129-131, vol. 28 No. 1, CRC Press.
Linda M. Null, et al., A Unified Approach For Multilevel Database Security Based on Inference Engines, 1989, pp. 108-111, ACM.
Elisa Bertino, et al., A Logical Framework for Reasoning About Access Control Models, ACM Transactions on Information and System Security, Feb. 2003, pp. 71-127, vol. 6 No. 1, ACM.
Shariq Rizvi, et al., Extending Query Rewriting Techniques for Fine-Grained Access Control, SIGMOD 2004, Jun. 13-18, 2004, 12 pages, ACM.
Tor Didriksen, Rule Based Database Access Control - A Practical Approach, RBAC '97, 1997, pp. 143-151, ACM.
M. Jaishankar Menon, et al., The Access Control Mechanism of a Database Computer (DBC), 5th Workshop on Computer Architecture for Non-numeric Processing, 1980, pp. 17-28, ACM.
Chander Girish
Cunningham Conor
Dutta Tanmoy
Hanson Eric N.
Stefani Stefano
Microsoft Corporation
Truong Cam Y T
Workman Nydegger
LandOfFree
Systems and methods for fine grained access control of data... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Systems and methods for fine grained access control of data..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Systems and methods for fine grained access control of data... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4116066