Patent · US Active

Method and apparatus to support privileges at multiple levels of authentication using a constraining ACL

US9471801B2 · kind B2 · utility

1Cited by

4References

18Claims

0Family size

Assignee

Oracle International Corporation · US

Inventors

Sam Idicula · Santa Clara, US
Thomas Keefe · Mill Valley, US
Mohammed Irfan Rafiq · Mountain View, US
Tanvir Ahmed · Bellevue, US
Vikram Pesati · San Jose, US
Nipun Agarwal · Santa Clara, US

Key dates

Filing date	Nov 29, 2007
Grant date	Oct 18, 2016
Priority date	—
Expiry date	Jan 12, 2031

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2141
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Embodiments of the present invention provide systems and techniques for creating, updating, and using an ACL (access control list). A database system may include a constraining ACL which represents a global security policy that is to be applied to all applications that interact with the database. By ensuring that all ACLs inherit from the constraining ACL, the database system can ensure that the global security policy is applied to all applications that interact with the database. During operation, the system may receive a request to create or update an ACL. Before creating or updating the ACL, the system may modify the ACL to ensure that it inherits from the constraining ACL. In an embodiment, the system grants a privilege to a user only if both the ACL and the constraining ACL grant the privilege.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.