发明名称 |
Row level security integration of analytical data store with cloud architecture |
摘要 |
A predicate-based row level security system is used when workers build or split an analytical data store. According to one implementation, predicate-based means that security requirements of source transactional systems can be used as predicates to a rule base that generates one or more security tokens, which are associated with each row as attributes of a dimension. Similarly, when an analytic data store is to be split, build job, user and session attributes can be used to generate complementary security tokens that are compared to security tokens of selected rows. Efficient indexing of a security tokens dimension makes it efficient to qualify row retrieval based on security criteria. |
申请公布号 |
US9600548(B2) |
申请公布日期 |
2017.03.21 |
申请号 |
US201414512230 |
申请日期 |
2014.10.10 |
申请人 |
salesforce.com |
发明人 |
Schneider Donovan A.;Silver Daniel C.;Im Fred;Chakravarthy Vijayasarathy |
分类号 |
G06F21/62;G06F17/30;H04L29/06 |
主分类号 |
G06F21/62 |
代理机构 |
Haynes Beffel & Wolfeld LLP |
代理人 |
Haynes Beffel & Wolfeld LLP |
主权项 |
1. A method of building a secure read-only analytic data structure, the method including:
accessing a data set from at least one transactional data management system, wherein data in the data set has security attributes managed by the at least one transactional data management system; processing first security translation rules that accept the security attributes as predicates and generating one or more security tokens for each object in the data set; and storing the one or more security tokens by association with each secured object in the read-only analytic data structure generated from the data set, wherein the stored one or more security tokens govern access to each secured object. |
地址 |
San Francisco CA US |