Graphical user interface for managing security in a database system

US 6,005,571 A
Filed: 09/30/1997
Issued: 12/21/1999
Est. Priority Date: 09/30/1997
Status: Expired due to Term

First Claim

Patent Images

1. A graphical user interface for manipulating task groups, the task groups including actions that may be performed on a database system, comprising:

a graphical display;

a first activation point on the graphical display, for activating creation of a task group;

a second activation point on the graphical display, for activating changes to a task group; and

a display within the graphical display, for displaying a plurality of actions that may be performed on the database, including activation points for activating actions to be included in the task group;

wherein the display within the graphical display includes a mechanism for specifying organizational units within a business that the task groups may operate on.

View all claims

11 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

One embodiment of the present invention provides a method for managing security in a database system. The method includes producing a plurality of task groups, the task groups including actions that may be performed on the database. Functional roles are created from these task groups, and a security profile for a user is created by assigning to the user at least one functional role. In one embodiment, the security profile for a user may only be created by assigning functional roles to users. Thus, users may only perform actions on the database that are dictated by defined task groups and functional roles. This allows database security to be controlled by controlling definitions of task groups and functional roles, without requiring exhaustive examination of security profiles for large numbers of individual users.

Citations

26 Claims

1. A graphical user interface for manipulating task groups, the task groups including actions that may be performed on a database system, comprising:
- a graphical display;
  
  a first activation point on the graphical display, for activating creation of a task group;
  
  a second activation point on the graphical display, for activating changes to a task group; and
  
  a display within the graphical display, for displaying a plurality of actions that may be performed on the database, including activation points for activating actions to be included in the task group;
  
  wherein the display within the graphical display includes a mechanism for specifying organizational units within a business that the task groups may operate on.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The graphical user interface of claim 1, wherein activation points are activated by placing a cursor over an area of a computer monitor that corresponds to the activation point, and selecting the activation point by pressing a button.
  - 3. The graphical user interface of claim 1, including a third activation point on the graphical user interface, for activating deletion of a task group.
  - 4. The graphical user interface of claim 1, including a fourth activation point on the graphical user interface, for activating copying of a first task group to a second task group.
  - 5. The graphical user interface of claim 1, wherein the display of actions is organized in a hierarchical structure, and includes a mechanism to navigate through the hierarchical structure in order to display actions that may be performed on the database.
  - 6. The graphical user interface of claim 1, including a linkage to a database for storing task groups.
  - 7. The graphical user interface of claim 1, wherein the display within the graphical display includes actions that may be performed on the database related to a single business activity.
  - 8. The graphical user interface of claim 1, wherein the plurality of actions specify actions performed on a SAP database.
  - 9. The graphical user interface of claim 1, wherein the plurality of actions specify actions performed on a SAP database.

10. A graphical user interface for manipulating a functional role for users of a database system, the functional role including actions that may be performed on a database system, comprising:
- a graphical interface including a first screen and a second screen;
  
  a first activation point on the first screen, for activating creation of a functional role;
  
  a second activation point on the first screen, for activating changes to a functional role;
  
  a display of task groups within the first screen, the task groups specifying actions that may be performed on the database, the display including activation points for activating task groups to be included in the functional role;
  
  a third activation point on the second screen, for activating creation of a task group;
  
  a fourth activation point on the second screen, for activating changes to a task group; and
  
  a display within the second screen, for displaying a plurality of actions that may be performed on the database, including activation points for activating actions to be included in the task group;
  
  wherein the display within the second screen includes a mechanism for specifying organizational units within a business that the task groups may operate on.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The graphical user interface of claim 10, wherein activation points are activated by placing a cursor over an area of a computer monitor that corresponds to the activation point, and selecting the activation point by pressing a button.
  - 12. The graphical user interface of claim 10, including a fifth activation point on the first screen, for activating deletion of a functional role.
  - 13. The graphical user interface of claim 10, including a sixth activation point on the first screen, for activating copying of a first functional role to a second functional role.
  - 14. The graphical user interface of claim 10, wherein the display of task groups is organized in a hierarchical structure, and includes a mechanism to navigate through the hierarchical structure in order to display the task groups.
  - 15. The graphical user interface of claim 10, including a linkage to a database for storing functional roles.
  - 16. The graphical user interface of claim 10, wherein the task groups specifying actions that may be performed on a SAP database.

17. A graphical user interface for manipulating a security profile for a user of a database system, the security profile including actions that may be performed on the database system by the user, the graphical user interface comprising:
- a graphical interface including a first screen and a second screen;
  
  a first activation point on the first screen, for activating creation of a security profile for the user;
  
  a second activation point on the first screen, for activating changes to a security profile for the user; and
  
  a display of functional roles within the first screen, the functional roles specifying actions that may be performed on the database, the display including activation points for activating functional roles to be included in the security profile for the user;
  
  a third activation point on the second screen, for activating creation of a task group;
  
  a fourth activation point on the second screen, for activating changes to a task group; and
  
  a display within the second screen, for displaying a plurality of actions that may be performed on the database, including activation points for activating actions to be included in the task group;
  
  wherein the display within the second screen includes a mechanism for specifying organizational units within a business that the task groups may operate on.
- View Dependent Claims (18, 19, 20, 21, 22, 23)
- - 18. The graphical user interface of claim 17, wherein activation points are activated by placing a cursor over an area of a computer monitor that corresponds to the activation point, and selecting the activation point by pressing a button.
  - 19. The graphical user interface of claim 17, including a fifth activation point on the first screen, for activating deletion of a security profile for the user.
  - 20. The graphical user interface of claim 17, including a sixth activation point on the first screen, for activating copying of a first security profile to a second security profile.
  - 21. The graphical user interface of claim 17, wherein the display of functional roles is organized in a hierarchical structure, and includes a mechanism to navigate through the hierarchical structure in order to display the functional roles.
  - 22. The graphical user interface of claim 17, including a linkage to a database for storing security profiles.
  - 23. The graphical user interface of claim 17, wherein the functional roles specify actions that may be performed on a SAP database.

24. A computer readable storage medium storing instructions that when executed by a computer implement a graphical user interface for manipulating task groups, the task groups including actions that may be performed on a database system, the graphical user interface comprising:
- a graphical display;
  
  a first activation point on the graphical display, for activating creation of a task group;
  
  a second activation point on the graphical display, for activating changes to an existing task group; and
  
  a display within the graphical display, for displaying a plurality of actions that may be performed on the database, including activation points for activating actions to be included in the task group;
  
  wherein the display within the graphical display includes a mechanism for specifying organizational units within a business that the task groups may operate on.

25. A computer readable storage medium storing instructions that when executed by a computer implement a graphical user interface for manipulating a functional role for users of a database system, the functional role including actions that may be performed on a database system, the graphical user interface comprising:
- a graphical interface including a first screen and a second screen;
  
  a first activation point on the first screen, for activating creation of a functional role;
  
  a second activation point on the first screen, for activating changes to a functional role;
  
  a display of task groups within the first screen, the task groups specifying actions that may be performed on the database, the display including activation points for activating task groups to be included in the functional role;
  
  a third activation point on the second screen, for activating creation of a task group;
  
  a fourth activation point on the second screen, for activating changes to a task group; and
  
  a display within the second screen, for displaying a plurality of actions that may be performed on the database, including activation points for activating actions to be included in the task group;
  
  wherein the display within the second screen includes a mechanism for specifying organizational units within a business that the task groups may operate on.

26. A computer readable storage medium storing instructions that when executed by a computer implement a graphical user interface for manipulating a security profile for a user of a database system, the security profile including actions that may be performed on the database system by the user, the graphical user interface comprising:
- a graphical interface including a first screen and a second screen;
  
  a first activation point on the first screen, for activating creation of a security profile for the user;
  
  a second activation point on the first screen, for activating changes to a security profile for the user;
  
  a display of functional roles within the first screen, the functional roles specifying actions that may be performed on the database, the display including activation points for activating functional roles to be included in the security profile for the user;
  
  a third activation point on the second screen, for activating creation of a task group;
  
  a fourth activation point on the second screen, for activating changes to a task group; and
  
  a display within the second screen, for displaying a plurality of actions that may be performed on the database, including activation points for activating actions to be included in the task group;
  
  wherein the display within the second screen includes a mechanism for specifying organizational units within a business that the task groups may operate on.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Micron Technology, Inc.
Original Assignee
Softline Limited (Sage Group PLC)
Inventors
Pachauri, Kush
Primary Examiner(s)
Bayerl, Raymond J.
Assistant Examiner(s)
Jackson, Chadwick A.

Application Number

US08/940,845
Time in Patent Office

812 Days
Field of Search

345/329, 345/330, 345/331, 345/333, 345/335, 345/348, 345/352, 707/8, 707/9, 707/10
US Class Current

715/764
CPC Class Codes

G06F 12/1483   using an access-table, e.g....

G06F 21/6218   to a system of files or obj...

Y10S 707/99939   Privileged access

Graphical user interface for managing security in a database system

First Claim

11 Assignments

0 Petitions

Accused Products

Abstract

Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Graphical user interface for managing security in a database system

First Claim

11 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links