High performance secure caching in the mid-tier
First Claim
Patent Images
1. A computer-implemented method comprising, storing cache versions of security descriptors in a mid-tier cache of a middle tier of a multiple-tier data server system, said security descriptors being from a first tier of the multiple-tier data server system;
- storing, in said mid-tier cache, cache versions of resources subject to said security descriptors;
wherein said cache versions of security descriptors include a certain cache version of a certain security descriptor of said security descriptors; and
said mid-tier determining whether a particular entity may be granted access to a certain resource of said resources based on said certain cache version of said certain security descriptor.
2 Assignments
0 Petitions
Accused Products
Abstract
In a multi-tier data server system, data from the first tier is cached in a mid-tier cache of the middle tier. Access control information from the first tier for the data is also cached within the mid-tier cache. Caching the security information in the middle tier allows the middle tier to make access control decisions regarding requests for data made by clients in the outer tier.
-
Citations
23 Claims
-
1. A computer-implemented method comprising,
storing cache versions of security descriptors in a mid-tier cache of a middle tier of a multiple-tier data server system, said security descriptors being from a first tier of the multiple-tier data server system; -
storing, in said mid-tier cache, cache versions of resources subject to said security descriptors;
wherein said cache versions of security descriptors include a certain cache version of a certain security descriptor of said security descriptors; and
said mid-tier determining whether a particular entity may be granted access to a certain resource of said resources based on said certain cache version of said certain security descriptor. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-implemented method, comprising:
-
a first tier storing resources accessible to clients in an outer tier of a multi-tier data server system that includes said first tier;
said first tier providing copies of said resources to a middle tier of said multi-tier data server system for storage in a middle tier cache of said middle tier;
said first tier storing security descriptors that apply to said resources; and
said first tier providing versions of security descriptors that apply to said resources to said middle tier for storage in the middle tier cache. - View Dependent Claims (9, 10, 11)
-
-
12. A machine-readable medium carrying one or more sequences of instructions, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
-
storing cache versions of security descriptors in a mid-tier cache of a middle tier of a multiple-tier data server system, said security descriptors being from a first tier of the multiple-tier data server system;
storing, in said mid-tier cache, cache versions of resources subject to said security descriptors;
wherein said cache versions of security descriptors include a certain cache version of a certain security descriptor of said security descriptors; and
said mid-tier determining whether a particular entity may be granted access to a certain resource of said resources based on said certain cache version of said certain security descriptor.
-
-
13. A machine-readable medium carrying one or more sequences of instructions, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
-
storing cache versions, of security descriptors in a mid-tier cache of a middle tier of a multiple-tier data server system, said security descriptors being from a first tier of the multiple-tier data server system;
storing, in said mid-tier cache, cache versions of resources subject to said security descriptors;
wherein said cache versions of security descriptors include a certain cache version of a certain security descriptor of said security descriptors; and
said mid-tier determining whether a particular entity may be granted access to a certain resource of said resources based on said certain cache version of said certain security descriptor. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A machine-readable medium carrying one or more sequences of instructions, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform the steps of:
-
a first tier storing resources accessible to clients in an outer tier of a multi-tier data server system that includes said first tier;
said first tier providing copies of said resources to a middle tier of said multi-tier data server system for storage in a middle tier cache of said middle tier;
said first tier storing security descriptors that apply to said resources; and
said first tier providing versions of security descriptors that apply to said resources to said middle tier for storage in the middle tier cache. - View Dependent Claims (21, 22, 23)
-
Specification