Internal security system for a relational database system
First Claim
Patent Images
1. An internal security method for a relational database system, comprising one or more processors implementing the steps of:
- (a) determining which data information from the total amount of data information stored in system databases is restricted data information that shall not be accessible by each and every 1 to N system users, where N is an integer greater than 1;
(b) determining for each individual specific system user the restricted data information that such a system user shall have access;
(c) creating at least one relational access table with each specific system user having at least one record in the relational access table and using a foreign key in the table created at step (c) that is linked to a primary key associated with a specific system user'"'"'s table of the relational database system for controlling that specific system user'"'"'s access to the restricted data information that was determined at step (b) and preventing downstream and upstream access to unauthorized restricted data information through the use of the foreign key and primary key link, such that a first specific system user will have one or more records in the relational access table that will permit the first specific system user'"'"'s access to restricted data information that is determined for the first specific system user to be joined with a second specific system user'"'"'s access to restricted data information that is determined for the second specific system user, and the specific second system user will have one or more records in the relational access table that will permit the second specific system user'"'"'s access to restricted data information that is determined for the second specific system user; and
(d) each specific system user accessing restricted data information stored in the system databases according to the relational access table created at step (c) and specific one way joining links to restricted data information stored in the system databases of other system users according to step (c).
5 Assignments
0 Petitions
Accused Products
Abstract
An internal security method for use with a relational database system is disclosed. The method is incorporated into a database system such that there is no need for security coding be layered on top of the system application software to prevent unauthorized access to restricted database information. The method of the present invention includes at least two embodiments and at least one of the embodiments has a “down the tree view” structure.
12 Citations
7 Claims
-
1. An internal security method for a relational database system, comprising one or more processors implementing the steps of:
-
(a) determining which data information from the total amount of data information stored in system databases is restricted data information that shall not be accessible by each and every 1 to N system users, where N is an integer greater than 1; (b) determining for each individual specific system user the restricted data information that such a system user shall have access; (c) creating at least one relational access table with each specific system user having at least one record in the relational access table and using a foreign key in the table created at step (c) that is linked to a primary key associated with a specific system user'"'"'s table of the relational database system for controlling that specific system user'"'"'s access to the restricted data information that was determined at step (b) and preventing downstream and upstream access to unauthorized restricted data information through the use of the foreign key and primary key link, such that a first specific system user will have one or more records in the relational access table that will permit the first specific system user'"'"'s access to restricted data information that is determined for the first specific system user to be joined with a second specific system user'"'"'s access to restricted data information that is determined for the second specific system user, and the specific second system user will have one or more records in the relational access table that will permit the second specific system user'"'"'s access to restricted data information that is determined for the second specific system user; and (d) each specific system user accessing restricted data information stored in the system databases according to the relational access table created at step (c) and specific one way joining links to restricted data information stored in the system databases of other system users according to step (c). - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneePatrice P. Parent
-
Original AssigneePatrice P. Parent
-
InventorsParent, Patrice P.
-
Primary Examiner(s)Ehichioya; Fred I
-
Application NumberUS11/519,377Publication NumberTime in Patent Office1,344 DaysField of Search707/999.003, 707/999.004, 707/999.009, 707/999.1, 707/999.102, 707/999.2, 707/999.201US Class Current707/781CPC Class CodesG06F 16/284 Relational databasesG06F 21/6218 to a system of files or obj...G06F 2221/2141 Access rights, e.g. capabil...Y10S 707/954 RelationalY10S 707/99932 Access augmentation or opti...Y10S 707/99933 Query processing, i.e. sear...Y10S 707/99934 Query formulation, input pr...Y10S 707/99939 Privileged accessY10S 707/99942 Manipulating data structure...Y10S 707/99945 Object-oriented database st...
