Securing database content
First Claim
Patent Images
1. A method, comprising:
- receiving, by a server, an update query via a network from a client device, the update query associated with an electronic database, the update query specifying a column in the electronic database and an electronic record in the electronic database;
querying, by the server, a database specification for the column specified by the update query, the database specification electronically associating challenge columns in challenge tables to columns in the electronic database;
identifying, by the server, a first challenge column of the challenge columns in the database specification that is electronically associated to the column specified by the update query;
identifying, by the server, a second challenge column of the challenge columns in the database specification that is electronically associated to the column specified by the update query;
identifying, by the server, two challenge values from the challenge columns, a first challenge value of the two challenge values retrieved from the first challenge column in the database specification and a second challenge value of the two challenge values retrieved from the second challenge column in the database specification;
receiving, by the server, values sent from the client device to validate the update query to the electronic database;
determining, by the server, matches between the two challenge values identified from the challenge columns in the database specification and the values received from the client device; and
validating, by the server, the update query for execution in response to the matches between the two challenge values and the values received from the client device.
1 Assignment
0 Petitions
Accused Products
Abstract
Content is secured in a database. One or more columns in challenge tables are identified, and values from the challenge tables are retrieved. A database query may execute in response to a match between the values from the challenge tables and query data. However, if the query data fails to match the values from the challenge tables, execution of the database query may be disallowed.
-
Citations
20 Claims
-
1. A method, comprising:
-
receiving, by a server, an update query via a network from a client device, the update query associated with an electronic database, the update query specifying a column in the electronic database and an electronic record in the electronic database; querying, by the server, a database specification for the column specified by the update query, the database specification electronically associating challenge columns in challenge tables to columns in the electronic database; identifying, by the server, a first challenge column of the challenge columns in the database specification that is electronically associated to the column specified by the update query; identifying, by the server, a second challenge column of the challenge columns in the database specification that is electronically associated to the column specified by the update query; identifying, by the server, two challenge values from the challenge columns, a first challenge value of the two challenge values retrieved from the first challenge column in the database specification and a second challenge value of the two challenge values retrieved from the second challenge column in the database specification; receiving, by the server, values sent from the client device to validate the update query to the electronic database; determining, by the server, matches between the two challenge values identified from the challenge columns in the database specification and the values received from the client device; and validating, by the server, the update query for execution in response to the matches between the two challenge values and the values received from the client device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system, comprising:
-
a processor; and a memory device, the memory device storing instructions, the instructions when executed causing the processor to perform operations, the operations comprising; receiving an update query associated with an electronic database, the update query sent from a client device requesting an update to the electronic database, the update query specifying a column of the electronic database and an electronic record in the electronic database; querying a database specification for the column specified by the update query, the database specification electronically associating challenge columns in challenge tables to columns in the electronic database; identifying the challenge columns in the database specification that are electronically associated to the column specified by the update query; randomly selecting a first challenge column of the challenge columns identified in the database specification that is electronically associated to the column specified by the update query; randomly selecting a first challenge value from the first challenge column randomly selected from the challenge columns; randomly selecting a second challenge column of the challenge columns identified in the database specification that is electronically associated to the column specified by the update query; randomly selecting a second challenge value from the second challenge column randomly selected from the challenge columns; receiving values from the client device to validate the update requested to the electronic database; comparing the first challenge value randomly selected from the first challenge column and the second challenge value randomly selected from the second challenge column to the values received from the client device; determining matches between the first challenge value and the second challenge value and the values received from the client device; and executing the update query to the electronic database in response to the matches between the first challenge value and the second challenge value and the values received from the client device. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A memory device storing instructions that when executed cause a processor to perform operations, the operations comprising:
-
receiving an update query associated with an electronic database, the update query sent from a client device requesting an update to the electronic database, the update query specifying a column of the electronic database and an electronic record in the electronic database; querying a database specification for the column specified by the update query, the database specification electronically associating challenge columns in challenge tables to columns in the electronic database; identifying the challenge columns in the database specification that are electronically associated to the column specified by the update query; randomly selecting a first challenge column of the challenge columns identified in the database specification that is electronically associated to the column specified by the update query; randomly selecting a first challenge value from the first challenge column randomly selected from the challenge columns; randomly selecting a second challenge column of the challenge columns identified in the database specification that is electronically associated to the column specified by the update query; randomly selecting a second challenge value from the second challenge column randomly selected from the challenge columns; receiving values from the client device to validate the update requested to the electronic database; comparing the first challenge value randomly selected from the first challenge column and the second challenge value randomly selected from the second challenge column to the values received from the client device; determining matches between the first challenge value and the second challenge value and the values received from the client device; and executing the update query to the electronic database in response to the matches between the first challenge value and the second challenge value and the values received from the client device. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification