Techniques for adding multiple security policies to a database system
US8316051B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Nov 30, 2001 |
| Grant date | Nov 20, 2012 |
| Priority date | — |
| Expiry date | May 21, 2027 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/6227
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Techniques for managing access to data in a database allow several policies to be applied simultaneously to the same row in a database table, and provide a pluggable module in the form of the database package that allows one or more access control security policies to be added to a common database server without taking the database server off line. Techniques include registering one or more packages of routines with a database management system. An access mediation routine in a first package is invoked for determining whether to allow operation on data in a first table associated with a first policy. Other techniques include, for each operation in an operation set, determining whether to perform the operation on a row of the table based on a set of labels associated with the row. The set of labels correspond to a policy set associated with the table.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.