发明授权
US07599937B2 Systems and methods for fine grained access control of data stored in relational databases
有权
对关系数据库中存储的数据进行细粒度访问控制的系统和方法
- 专利标题: Systems and methods for fine grained access control of data stored in relational databases
- 专利标题(中): 对关系数据库中存储的数据进行细粒度访问控制的系统和方法
-
申请号: US11696024申请日: 2007-04-03
-
公开(公告)号: US07599937B2公开(公告)日: 2009-10-06
- 发明人: Tanmoy Dutta , Conor Cunningham , Stefano Stefani , Girish Chander , Eric N. Hanson
- 申请人: Tanmoy Dutta , Conor Cunningham , Stefano Stefani , Girish Chander , Eric N. Hanson
- 申请人地址: US WA Redmond
- 专利权人: Microsoft Corporation
- 当前专利权人: Microsoft Corporation
- 当前专利权人地址: US WA Redmond
- 代理机构: Workman Nydegger
- 主分类号: G06F17/30
- IPC分类号: G06F17/30
摘要:
A system and method for facilitating secure access to database(s) is provided. The system relates to authorizing discriminatory access to relational database data. More particularly, the invention provides for an innovative technique of defining secured access to rows in relational database tables in a way that cannot be spoofed while preserving various optimization techniques. The invention affords a persistent scheme via providing for a security architecture whereby discriminatory access policies on persistent entities can be defined and enforced while preserving set based associative query capabilities.A particular aspect of the invention relates to the specification of such policies and the technique by which those policies are enforced. With respect to one particular implementation of the invention, creation, modification and deletion of access control lists called security descriptors is provided. The security descriptors can be provisioned independent of rows in tables of the database and can be shared and embody the policy on what permissions are granted to whom when associated with a row.
公开/授权文献
信息查询