Patent · US Active

Identifying unused privileges in a database system

US10268705B2 · kind B2 · utility

0Cited by

5References

22Claims

0Family size

Assignee

Oracle International Corporation · US

Inventors

Chi Ching Chui · San Ramon, US
Vikram Pesati · San Jose, US

Key dates

Filing date	Jun 24, 2014
Grant date	Apr 23, 2019
Priority date	—
Expiry date	Oct 10, 2035

Classification

Technology area (CPC G)Physics
CPC primaryG06F16/21
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Techniques for identifying unused privileges are provided. Database accesses are monitored to generate privilege usage data. Privilege usage data for each database access may indicate a user, a utilized privilege, an object that is the target of the privilege, and a role to which the privilege is granted. The privilege usage data is compared to database authorization data that indicates all (or a subset) of granted privileges. A result of the comparison is unused privilege data that indicates what granted privileges were not utilized. A role graph may be generated that indicates one or more privileges that were utilized and one or more privileges that were not utilized along with role paths providing the privileges.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.