SYSTEM AND METHOD FOR EFFICIENTLY SECURING ENTERPRISE DATA RESOURCES
First Claim
1. For a data management system that secures access to a plurality of data objects stored within a data hierarchy of an enterprise, a method of securing access to data attributes of the data objects, said method comprising:
- identifying groupings of subsets of data attributes from different data objects in the data hierarchy;
receiving control permissions for said groupings; and
defining control permissions for the data attributes in each particular grouping based on the received control permissions for the particular grouping.
6 Assignments
0 Petitions
Accused Products
Abstract
Some embodiments provide a system and method that secures access to data objects of an enterprise that includes multiple data objects and multiple user applications that access data attributes of the data objects. In some embodiments, secure access is provided via a secure resource that secures access to data attributes of at least two objects by defining access control permissions for the secure resource and applying the defined access control permissions to the data attributes of the secure resource.
-
Citations
20 Claims
-
1. For a data management system that secures access to a plurality of data objects stored within a data hierarchy of an enterprise, a method of securing access to data attributes of the data objects, said method comprising:
-
identifying groupings of subsets of data attributes from different data objects in the data hierarchy; receiving control permissions for said groupings; and defining control permissions for the data attributes in each particular grouping based on the received control permissions for the particular grouping. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. For a data management system that secures access to a plurality of data objects stored within a data hierarchy of an enterprise, a method of securing access to data attributes of the data objects, said method comprising:
-
providing a first user interface tool for defining a grouping of elements from different levels of the data hierarchy, said grouping comprising at least a data attribute of a first data object in the data hierarchy and a data attribute of a second a data object in the data hierarchy; and providing a second user interface tool for assigning access permissions to the grouping. - View Dependent Claims (10, 11, 12, 13)
-
-
14. For a data management system that secures access to a plurality of data objects stored within a data hierarchy of an enterprise, a graphical user interface (GUI) for securing access to data attributes of the data objects, said GUI comprising:
-
a first user interface tool for defining a grouping of elements from different levels of the data hierarchy, wherein the elements comprise at least two of data attributes of a data object, a data object, and sets of data attributes from different data objects; and a second user interface tool for assigning control permissions to the grouping that are applied to each element within the grouping, wherein said control permissions are used during user queries to restrict access to the element.
-
-
15. A computer readable storage medium storing a computer program that secures access to data attributes of a plurality of data objects stored within a data hierarchy of an enterprise, the computer program comprising sets of instructions for:
-
identifying groupings of subsets of data attributes from different data objects in the data hierarchy; receiving control permissions for said groupings; and defining control permissions for the data attributes in each particular grouping based on the defined control permissions for the particular grouping. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification