Secure multi database system
First Claim
Patent Images
1. A multi-database system comprising:
- a plurality of database devices for storing distributed data;
a multi-database processing device coupled to the plurality of database devices over a network to receive the distributed data and perform an integration process on the distributed data, the integration process generating integrally processed data; and
a user processing device coupled to the multi-database system over the network, the user processing device receiving said integrally processed data from said multi-database processing device, wherein a partial data in a first data region included in said distributed data is subjected to a conversion processing based on a preliminarily rule.
1 Assignment
0 Petitions
Accused Products
Abstract
A definition tool of the present invention declares columns which are concealed in external tables to a multi-database server. The multi-database server controls a decomposition and an execution of query messages such that the multi-database server does not perform an arithmetic using the concealed columns. The external database server encrypts the data of concealed columns in tables of query result tables. The multi-database server designates a range to be decrypted at the time of acquiring and integrating respective result tables. A client program acquires an integrated result table and decrypts the designated range. Since the data encrypted by the external database server is decrypted by and is referred to the client program, it becomes difficult for the multi-database server to refer to a content of the concealed columns.
71 Citations
22 Claims
-
1. A multi-database system comprising:
-
a plurality of database devices for storing distributed data;
a multi-database processing device coupled to the plurality of database devices over a network to receive the distributed data and perform an integration process on the distributed data, the integration process generating integrally processed data; and
a user processing device coupled to the multi-database system over the network, the user processing device receiving said integrally processed data from said multi-database processing device, wherein a partial data in a first data region included in said distributed data is subjected to a conversion processing based on a preliminarily rule. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A multi-database processing device comprising:
-
a path, an interface part coupled to said path and to a network;
a storage device coupled to said path, the storage device storing a program for performing an integration processing operation, and a processing device coupled to said interface part and said storage device through said path, the processing device executing the program to perform the integration processing operation on distributed data received at said interface part from a plurality of database devices, wherein said storage device receives a plurality of distributed data that are obtained by applying a conversion processing operation to a partial data in a first data region in said distributed data based on a preliminarily determined rule, and said processing device generates integrated data, in accordance with said integration processing operation, by integrating a plurality of said received distributed data based on said program and transmits said integrated data from said interface part to a user device. - View Dependent Claims (9, 10, 11, 12, 14, 15, 16, 17, 19)
-
-
13. An information processing method for a multi-database processing device in which a plurality of database devices, each respectively including stored data therein, and a user device are connected through a network, said information processing method comprising:
-
transmitting demand information to the plurality of databases devices, applying a conversion processing operation to a partial data in a first data region in each of said stored data in the plurality of database devices, said conversion processing operation being based on a preliminarily determined rule and generating converted data;
transmitting the converted data in each of the plurality of database devices to the multi-database processing device as distributed data;
receiving the plurality of distributed data in the multi-database processing device;
integrating the plurality of received distributed data to generate integrated data; and
transmitting said integrated data to said user device through said network.
-
-
18. A database device of a multi-database system in which a plurality of database devices respectively storing data therein, a multi-database processing device which performs an integration processing of the data stored in a plurality of said data base device and a user processing device which receives an integrally processed data from said multi-database processing device are connected with each other through a network, wherein said database device comprising:
-
means which receives demand information demanding distributed data which becomes a subject of said integrated processing from said multi-database processing device;
means for retrieving said distributed data;
means for applying a conversion processing based on a preliminarily determined rule to a partial data in a given data region included in said retrieved distributed data; and
means for transmitting said distributed data including said partial data to which the conversion processing is applied to said multi-database processing device, wherein said multi-database processing device receives a plurality of said distributed data including said partial data to which the conversion processing is applied from a plurality of said database device, and generates integrated data by integrating a plurality of received distributed data, and transmits said integrated data to said user device.
-
-
20. A user processing device in which a plurality of database devices which respectively store data and a multi-database processing device which performs an integration processing on data stored in a plurality of said database devices are connected through a network and said user processing device receives data which is subjected to said integration processing from said multi-database processing device, said user processing device comprising:
-
means for receiving integrated data which said multi-database processing device integrates, said integrated data generated by integrating a plurality of distributed data wherein among distributed data necessary for an integration processing by said multi-database processing device, a conversion processing is applied to a partial data in a given data region included in said distributed data based on preliminarily determined rule at a plurality of said database devices;
means for applying a re-conversion processing which has a processing content corresponding to said conversion processing to partial integrated data corresponding to the partial data to which said conversion processing is applied among said received integrated data; and
means for outputting integrated data including said partial integrated data to which said re-conversion processing is applied. - View Dependent Claims (21, 22)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeHitachi, Ltd.
-
Original AssigneeHitachi, Ltd.
-
InventorsYagawa, Yuichi, Maeda, Akira, Hayashi, Shigetoshi, Yoshimura, Mitsuhiko
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current719/330
-
CPC Class CodesG06F 16/25 Integrating or interfacing ...G06F 21/6227 where protection concerns t...G06Q 20/108 Remote banking, e.g. home b...G06Q 20/382 insuring higher security of...Y10S 707/99932 Access augmentation or opti...Y10S 707/99933 Query processing, i.e. sear...Y10S 707/99942 Manipulating data structure...
