Real-time data redaction in a database management system
First Claim
1. A computer-implemented method comprising steps of:
- receiving, at a database server, a data request from a client;
in response to the data request;
selecting, from a database, actual data that satisfies criteria specified by the data request;
retrieving the actual data from the database;
the database server redacting the actual data, thereby generating redacted data, using a redaction policy that is mapped, via a stored mapping, to an identifier of the client;
wherein the redaction policy is stored in a data dictionary of said database, said data dictionary being stored along with said actual data in said database;
returning the redacted data to the client as a reply to the data request; and
wherein the steps are performed by one or more computing devices.
1 Assignment
0 Petitions
Accused Products
Abstract
A database server receives a data request from a client. In response to the data request, the database server selects, from a database, actual data that satisfies criteria specified by the data request. The database server retrieves the selected actual data from the database. Also in response to the data request, the database server redacts the retrieved data in real time without modifying the actual data contained within the database. This may be accomplished by the prior insertion of masking operators into a top SELECT clause of a query representation generated during semantic analysis. The database server returns the redacted data to the client as a reply to the data request.
129 Citations
20 Claims
-
1. A computer-implemented method comprising steps of:
-
receiving, at a database server, a data request from a client; in response to the data request; selecting, from a database, actual data that satisfies criteria specified by the data request; retrieving the actual data from the database; the database server redacting the actual data, thereby generating redacted data, using a redaction policy that is mapped, via a stored mapping, to an identifier of the client; wherein the redaction policy is stored in a data dictionary of said database, said data dictionary being stored along with said actual data in said database; returning the redacted data to the client as a reply to the data request; and wherein the steps are performed by one or more computing devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A non-transitory computer-readable medium carrying one or more sequences of instructions, which when executed by one or more processors, causes the one or more processors to perform steps of:
-
receiving, at a database server, a data request from a client; in response to the data request; selecting, from a database, actual data that satisfies criteria specified by the data request; retrieving the actual data from the database; the database server redacting the actual data, thereby generating redacted data, using a redaction policy that is mapped, via a stored mapping, to an identifier of the client; wherein the redaction policy is stored in a data dictionary of said database, said data dictionary being stored along with said actual data in said database; and returning the redacted data to the client as a reply to the data request. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification