SYSTEM AND METHOD OF ACCESS AND CONTROL MANAGEMENT BETWEEN MULTIPLE DATABASES
First Claim
1. A method of automatic access and control management of databases within a system that includes a data management computer system and interconnected local computer systems, the method comprising the steps of:
- requesting information from a target local computer system by an accessing local computer system, and the accessing system transmitting the information access request to the data management computer system via a communications network, wherein the accessing computer system is a local computer system that includes a processor and an associated database, and the target computer system is another local computer system that includes a processor and an associated database; and
determining, by the data management computer system, whether the information access request from the accessing system satisfies a predetermined rule controlling access to predetermined shared information stored in the target computer system database, or does not satisfy the predetermined rule, or if access is nondeterminable, wherein the predetermined rule is stored in a rules lookup table stored in a database associated with the data management computer system, and the data management system;
receiving the requested information transmitted by the target computer system database if the rules are satisfied and verifying the transmitted information by comparing the transmitted information to the predetermined rule and redacting information that does not compare to the rule and then transmitting the verified information Lo the accessing local computer system;
or rejecting the information access request if determined that the predetermined rule is not satisfied;
or determining whether to update the predetermined rule if access is nondeterminable, and automatically updating the rule by if determined to update the predetermined rule; and
using the verified information by the accessing computer system.
0 Assignments
0 Petitions
Accused Products
Abstract
A system and method of automatic access and control management of databases within a system includes a data management computer system and interconnected local computer systems. An accessing system requests information from a target system by data management system. The database management determines whether or not the information request satisfies a predetermined shared information access stored in a lookup table. The data management system verifies the transmitted information by comparing it to the rule and redacts information if necessary and transmits the verified information to the accessing local computer system. The data management system rejects the information access request if determined that the predetermined rule is not satisfied. The data management system determines whether to update the predetermined rule if access is nondeterminable, and automatically updates the rule. The accessing computer system uses the verified information.
30 Citations
14 Claims
-
1. A method of automatic access and control management of databases within a system that includes a data management computer system and interconnected local computer systems, the method comprising the steps of:
-
requesting information from a target local computer system by an accessing local computer system, and the accessing system transmitting the information access request to the data management computer system via a communications network, wherein the accessing computer system is a local computer system that includes a processor and an associated database, and the target computer system is another local computer system that includes a processor and an associated database; and
determining, by the data management computer system, whether the information access request from the accessing system satisfies a predetermined rule controlling access to predetermined shared information stored in the target computer system database, or does not satisfy the predetermined rule, or if access is nondeterminable, wherein the predetermined rule is stored in a rules lookup table stored in a database associated with the data management computer system, and the data management system;
receiving the requested information transmitted by the target computer system database if the rules are satisfied and verifying the transmitted information by comparing the transmitted information to the predetermined rule and redacting information that does not compare to the rule and then transmitting the verified information Lo the accessing local computer system;
orrejecting the information access request if determined that the predetermined rule is not satisfied;
ordetermining whether to update the predetermined rule if access is nondeterminable, and automatically updating the rule by if determined to update the predetermined rule; and
using the verified information by the accessing computer system. - View Dependent Claims (2, 3, 4, 5, 14)
-
-
6. A method of automatic access and control management of databases within a system that includes a data management computer system and interconnected local computer systems, the method comprising the steps of:
-
requesting information from a target local computer system by an accessing local computer system, and the accessing system transmitting the information access request to the data management computer system via a communications network, wherein the accessing computer system is a local computer system that includes a processor and an associated database, and the target computer system is another local computer system that includes a processor and an associated database; and
determining, by the data management computer system, whether the information access request from the accessing system satisfies a predetermined rule controlling access to predetermined shared information stored in the target computer system database, or does not satisfy the predetermined rule, or if access is nondeterminable, wherein the predetermined rule is stored in a rules lookup table stored in a database associated with the data management computer system that includes predetermined hierarchical rules that identify a predetermined user associated with the accessing local computer system having access to predetermined shared information stored in the target local system database, and the data management system;
receiving the requested information transmitted by the target computer system database if the rules are satisfied and verifying the transmitted information by comparing the transmitted information to the predetermined rule and redacting information that does not compare to the rule and then transmitting the verified information to the accessing local computer system;
orrejecting the information access request if determined that the predetermined rule is not satisfied;
ordetermining whether to update the predetermined rule if access is nondeterminable, and automatically updating the rule by if determined to update the predetermined rule by updating the rules table in real time by modifying the rule in the rules table, or creating a new rule and adding the new rule to the rules table, or deleting the rule from the rules table;
continuing to consider the information request using the updated rules table, by the data management system; and
using the verified information by the accessing computer system. - View Dependent Claims (7, 8, 9)
-
-
10. A system of database management between groups working on a common project, comprising.
a data management computer system having a server and a database associated with the server; -
an accessing local computer system having a processor and an associated database, wherein said local computer system is operatively in communication with data management computer system via a communications network;
a target local computer system having a processor and an associated database, wherein the target local computer system is operatively in communication with data management computer system via the communications network;
an executable access and control database management software program resident on the data management computer system server that requests information from the target local computer system by the accessing local computer system, and the accessing system transmits the information access request to the data management computer system via the communications network, determines whether the accessing system information access request satisfies a predetermined rule controlling access to predetermined shared information stored in the target computer system database, or does not satisfy the predetermined rule, or if access is nondeterminable, wherein the predetermined rule is maintained in a rules lookup table stored in the data management computer system database, and the data management system receives the requested information transmitted by the target computer system database if the rules are satisfied and verifies the transmitted information by comparing the transmitted information to the predetermined rule and redacting information that does not compare to the rule and then transmits the verified information to the accessing local computer system, or rejects the information access request if determined that the predetermined rule is not satisfied, or determines whether to update the predetermined rule if access is nondeterminable, and automatically updates the rule by if determined to update the predetermined rule so that the verified information can be used by the accessing local computer system. - View Dependent Claims (11, 12, 13)
-
Specification