| 摘要 |
A method, system and article of manufacture for managing access to a data abstraction model abstractly describing physical data and, more particularly, for creating a logical security model for a data abstraction model abstractly describing data in a database. One embodiment provides a computer-implemented method for creating a logical security model based on a physical security model defining user access rights to physical data. The method comprises, for each of the user access rights defined by the physical security model, creating a logical access right definition for a logical model. The logical model comprises a plurality of logical field definitions each comprising a field name and access information for accessing a field of the physical data. The logical access right definitions are applied to the logical model so that the logical model reflects the user access rights to the physical data.
|
