Patent · US Active

Abstraction based audit and security log model for increased role and security enforcement

US8204906B2 · kind B2 · utility

4Cited by

17References

24Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Richard D. Dettinger · Rochester, US
Daniel P. Kolz · Rochester, US
Frederick A. Kulack · Rochester, US
Erik E. Voldal · Rochester, US

Key dates

Filing date	Jul 13, 2007
Grant date	Jun 19, 2012
Priority date	—
Expiry date	Jan 16, 2029

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/6245
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Embodiments of the invention store log event records in a secure database log by encrypting information in a query, or in query results, that would otherwise be subject to unwanted disclosure (either from within or without a given organization). For example, an organization (e.g., a research institution) may allow a database administrator to review log event records to diagnose and correct system performance issues, without being forced to trust the administrator with sensitive medical data (e.g., medical records related to participants in a research study). Thus, the security of sensitive information may be maintained, while at the same time, the database administrator may still access the information needed to maintain a working system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.