Secure code execution in a database system

Assignee

• Snowflake Inc. · US

Inventors

• Elliott Brossard · Kirkland, US
• Derek Ernest Denny-Brown, II · Seattle, US
• Isaac Kunen · Seattle, US
• Soumitr Rajiv Pandey · Durham, US
• Jacob Salassi · Fremont, US
• Srinath Shankar · Belmont, US
• Haowei Yu · Newark, US
• Andong Zhan · San Mateo, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/145
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

The subject technology receives, in a first computing process, a user defined function, the user defined function including code related to at least one operation to be performed. The subject technology sends a request based on the at least one operation to a second computing process to perform, the second computing process being different than the first computing process and comprising a sandbox for executing the at least one operation. The subject technology receives, by the second computing process, the request. The subject technology determines, using at least a security policy, whether performing the at least one operation is permitted. The subject technology performs, in the second computing process, the least one operation. The subject technology sends, by the second computing process, a result of the at least one operation to the first computing process.