View mechanism for data security, privacy and utilization
First Claim
Patent Images
1. A computer-implemented method of controlling access to data in a database, comprising:
- registering a plurality of transformation techniques for a particular column of a table in said database;
wherein at least two transformation techniques of said plurality of transformation techniques perform different transformations on actual values of said particular column;
after registering the plurality of transformation techniques, receiving a plurality of queries, each query of said plurality of queries being associated with a respective query context and referencing said particular column;
computing each query of said plurality of queries, wherein computing each query of said plurality of queries comprises;
based on the respective query context of said each query, selecting a transformation technique from the plurality of transformation techniques registered for said particular column; and
applying the selected transformation technique to the actual values in said particular column to generate transformed values to use for computing the query in lieu of the actual values in said particular column.
1 Assignment
0 Petitions
Accused Products
Abstract
A machine-implemented method and machine-readable media for transforming sensitive data in a database is provided. Sensitive data in the database are transformed based on a query context of a query. The query may also be transformed. The transformed query may be applied against the transformed sensitive data to construct a query result. The query result with the transformed sensitive data represents a lenticular view. The lenticular view represents a modified form of the sensitive data that an end-user is allowed access to.
65 Citations
14 Claims
-
1. A computer-implemented method of controlling access to data in a database, comprising:
-
registering a plurality of transformation techniques for a particular column of a table in said database; wherein at least two transformation techniques of said plurality of transformation techniques perform different transformations on actual values of said particular column; after registering the plurality of transformation techniques, receiving a plurality of queries, each query of said plurality of queries being associated with a respective query context and referencing said particular column; computing each query of said plurality of queries, wherein computing each query of said plurality of queries comprises; based on the respective query context of said each query, selecting a transformation technique from the plurality of transformation techniques registered for said particular column; and applying the selected transformation technique to the actual values in said particular column to generate transformed values to use for computing the query in lieu of the actual values in said particular column. - View Dependent Claims (2, 3, 4, 5, 6, 7, 14)
-
-
8. A non-transitory medium storing one or more sequences of instructions which, when executed by one or more processors, causes the one or more processors to perform:
-
registering a plurality of transformation techniques for a particular column of a table in said database; wherein at least two transformation techniques of said plurality of transformation techniques perform different transformations on actual values of said particular column; after registering the plurality of transformation techniques, receiving a plurality of queries, each query of said plurality of queries being associated with a respective query context and referencing said particular column; computing each query of said plurality of queries, wherein computing each query of said plurality of queries comprises; based on the respective query context of said each query, selecting a transformation technique from the plurality of transformation techniques registered for said particular column; and applying the selected transformation technique to the actual values in said particular column to generate transformed values to use for computing the query in lieu of the actual values in said particular column. - View Dependent Claims (9, 10, 11, 12, 13)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeOracle International Corporation (Oracle Corporation)
-
Original AssigneeOracle International Corporation (Oracle Corporation)
-
InventorsByun, Ji-Won, Chui, Chi Ching, Wong, Daniel M.
-
Primary Examiner(s)Alam, Shahid
-
Assistant Examiner(s)Pandya, Jagdish
-
Application NumberUS12/408,551Publication NumberTime in Patent Office1,236 DaysField of Search707/756, 707/757US Class Current707/757CPC Class CodesG06F 16/24565 Triggers; ConstraintsG06F 21/6227 where protection concerns t...G06F 21/6254 by anonymising data, e.g. d...G06F 2221/2117 User registrationG06F 2221/2141 Access rights, e.g. capabil...
