Automated data source assurance in distributed databases
First Claim
1. A method, comprising:
- receiving a database query comprising a logical database table identifier, a data element, and at least one data source assurance indicator at a distributed database device within a distributed network of databases, where the at least one data source assurance indicator comprises a request to encrypt the data element received in the received query for authentication of distributed database devices that process the database query;
encrypting the data element received in the received query based upon the at least one data source assurance indicator;
forming a data portion of a local query response to the database query comprising data retrieved from a local physical database table mapped by a local logical database table that matches the received logical database table identifier;
adding a distributed database device node identifier and the encrypted data element as an authentication portion of the local query response to authenticate the data portion of the local query response; and
responding to the database query with at least the authenticated local query response.
1 Assignment
0 Petitions
Accused Products
Abstract
A database query is received including a logical table identifier, a data element, and at least one data source assurance indicator at a distributed database node within a distributed network of databases. The data element is encrypted based upon the at least one data source assurance indicator. A data portion of a local query response to the database query is formed including data retrieved from a local physical database table mapped by a local logical table that matches the received logical table identifier. A node identifier and the encrypted data element are added as an authentication portion of the local query response to authenticate the data portion of the local query response. The database query is responded to with at least the authenticated local query response. This abstract is not to be considered limiting, since other embodiments may deviate from the features described in this abstract.
-
Citations
21 Claims
-
1. A method, comprising:
-
receiving a database query comprising a logical database table identifier, a data element, and at least one data source assurance indicator at a distributed database device within a distributed network of databases, where the at least one data source assurance indicator comprises a request to encrypt the data element received in the received query for authentication of distributed database devices that process the database query; encrypting the data element received in the received query based upon the at least one data source assurance indicator; forming a data portion of a local query response to the database query comprising data retrieved from a local physical database table mapped by a local logical database table that matches the received logical database table identifier; adding a distributed database device node identifier and the encrypted data element as an authentication portion of the local query response to authenticate the data portion of the local query response; and responding to the database query with at least the authenticated local query response. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system, comprising:
-
a memory adapted to store query authentication information and database device node identifiers; and a processor programmed to; receive a database query comprising a logical database table identifier, a data element, and at least one data source assurance indicator at a distributed database device within a distributed network of databases, where the at least one data source assurance indicator comprises a request to encrypt the data element received in the received query for authentication of distributed database devices that process the database query; encrypt the data element received in the received query based upon the at least one data source assurance indicator; form a data portion of a local query response to the database query comprising data retrieved from a local physical database table mapped by a local logical database table that matches the received logical database table identifier; add a distributed database device node identifier and the encrypted data element as an authentication portion of the local query response to authenticate the data portion of the local query response; store the authenticated local query response to the memory; and respond to the database query with at least the authenticated local query response. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A system, comprising:
-
a memory adapted to store query authentication information and distributed database device node identifiers; and a processor programmed to; receive a database query comprising a logical database table identifier, a data element, and at least one data source assurance indicator at a distributed database device within a distributed network of databases, where the at least one data source assurance indicator comprises a request to encrypt the data element received in the received query for authentication of distributed database devices that process the database query; encrypt the data element received in the received query based upon the at least one data source assurance indicator using a private encryption key paired with a public encryption key stored at a distributed database device that originated the database query; form a data portion of a local query response to the database query comprising data retrieved from a local physical database table mapped by a local logical database table that matches the received logical database table identifier; add a distributed database device node identifier and the encrypted data element as an authentication portion of the local query response to authenticate the data portion of the local query response; associate the distributed database device node identifier and the encrypted data element with a hidden result column of the authenticated local query response; store the authenticated local query response to the memory; determine to encrypt a selected data column of the data portion of the authenticated local query response; encrypt the selected data column; add a column identifier to the authenticated local query response identifying the selected encrypted data column; and respond to the database query with at least the authenticated local query response.
-
-
21. An apparatus, comprising:
-
means for receiving a database query comprising a logical database table identifier, a data element, and at least one data source assurance indicator at a distributed database device within a distributed network of databases, where the at least one data source assurance indicator comprises a request to encrypt the data element received in the received query for authentication of distributed database devices that process the database query; means for encrypting the data element received in the received query based upon the at least one data source assurance indicator; means for forming a data portion of a local query response to the database query comprising data retrieved from a local physical database table mapped by a local logical database table that matches the received logical database table identifier; means for adding a distributed database device node identifier and the encrypted data element as an authentication portion of the local query response to authenticate the data portion of the local query response; and means for responding to the database query with at least the authenticated local query response.
-
Specification