发明名称 |
Systems and methods for fine grained access control of data stored in relational databases |
摘要 |
A system and method for facilitating secure access to database(s) is provided. The system relates to authorizing discriminatory access to relational database data. More particularly, the invention provides for an innovative technique of defining secured access to rows in relational database tables in a way that cannot be spoofed while preserving various optimization techniques. The invention affords a persistent scheme via providing for a security architecture whereby discriminatory access policies on persistent entities can be defined and enforced while preserving set based associative query capabilities. A particular aspect of the invention relates to the specification of such policies and the technique by which those policies are enforced. With respect to one particular implementation of the invention, creation, modification and deletion of access control lists called security descriptors is provided. The security descriptors can be provisioned independent of rows in tables of the database and can be shared and embody the policy on what permissions are granted to whom when associated with a row.
|
申请公布号 |
US2005216465(A1) |
申请公布日期 |
2005.09.29 |
申请号 |
US20040878152 |
申请日期 |
2004.06.28 |
申请人 |
MICROSOFT CORPORATION |
发明人 |
DUTTA TANMOY;CUNNINGHAM CONOR;STEFANI STEFANO;CHANDER GIRISH;HANSON ERIC N. |
分类号 |
G06F;G06F7/00;G06F12/00;G06F12/14;G06F17/00;G06F17/30;G06F21/00;(IPC1-7):G06F7/00 |
主分类号 |
G06F |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|