System and method for secure database replication
First Claim
1. A method comprising:
- receiving, at a server with access to a database comprising a plurality of database entries, a request to replicate the database to a first computing device of a plurality of computing devices, wherein access to each database entry of the plurality of database entries is controlled based on a classification level of a plurality of classification levels, wherein a classification level of a given database entry in the database is automatically assigned as a classification level of a computing device that created the given database entry, and user access to the database entries of the database is further based on a user classification level;
in response to receiving the request to replicate the database to the first computing device, determining, by the server, a classification level of the first computing device;
filtering, by the server and using the determined classification level of the first computing device, the plurality of database entries to generate a filtered subset of the plurality of database entries, wherein the filtered subset comprises database entries at or below the classification level of the first computing device; and
sending, to the first computing device, the filtered subset, wherein the first computing device uses the filtered subset to create a replicated database,wherein a second computing device has a second classification level distinct from the classification level of the first computing device and any database entry of the replicated database is editable by both the first and second computing devices.
3 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for securely replicating a database include receiving, at a server with access to a database comprising a plurality of database entries, a request to replicate the database to a computing device, wherein access to each database entry of the plurality of database entries is controlled based on a plurality of classification levels; determining, by the server, a classification level of the computing device; filtering, by the server, the plurality of database entries to generate a filtered subset of the plurality of database entries, wherein the filtered subset comprises database entries at or below the classification level of the computing device; sending, to the computing device, the filtered subset, wherein the computing device uses the filtered subset to create a replicated database.
122 Citations
20 Claims
-
1. A method comprising:
-
receiving, at a server with access to a database comprising a plurality of database entries, a request to replicate the database to a first computing device of a plurality of computing devices, wherein access to each database entry of the plurality of database entries is controlled based on a classification level of a plurality of classification levels, wherein a classification level of a given database entry in the database is automatically assigned as a classification level of a computing device that created the given database entry, and user access to the database entries of the database is further based on a user classification level; in response to receiving the request to replicate the database to the first computing device, determining, by the server, a classification level of the first computing device; filtering, by the server and using the determined classification level of the first computing device, the plurality of database entries to generate a filtered subset of the plurality of database entries, wherein the filtered subset comprises database entries at or below the classification level of the first computing device; and sending, to the first computing device, the filtered subset, wherein the first computing device uses the filtered subset to create a replicated database, wherein a second computing device has a second classification level distinct from the classification level of the first computing device and any database entry of the replicated database is editable by both the first and second computing devices. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. One or more non-transitory computer-readable media storing one or more programs, the one or more programs comprising instructions for:
-
receiving a request to replicate a database comprising a plurality of database entries to a first computing device of a plurality of computing devices, wherein access to each database entry of the plurality of database entries is controlled based on a classification level of a plurality of classification levels, wherein a classification level of a given database entry is automatically assigned as a classification level of a computing device that created the given database entry, and user access to the database entries of the database is further based on a user classification level; in response to receiving the request to replicate the database to the first computing device, determining a classification level of the first computing device; determining that the replicated database requested for the first computing device is expected to be used by multiple known users; in response to determining that the replicated database requested for the first computing device is expected to be used by multiple known users, filtering, using the determined classification level of the first computing device, the plurality of database entries to generate a filtered subset of the plurality of database entries, wherein the filtered subset comprises database entries at or below the classification level of the first computing device; sending, to the first computing device, the filtered subset, wherein the first computing device uses the filtered subset to create a replicated database. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A system comprising:
-
memory; one or more processors; one or more programs stored in the memory and configured for execution by the one or more processors, the one or more programs comprising instructions for; receiving a request to replicate a database comprising a plurality of database entries to a first computing device of a plurality of computing devices, wherein access to each database entry of the plurality of database entries is controlled based on a classification level of a plurality of classification levels, wherein a classification level of a given database entry is automatically assigned as a classification level of a computing device that created the given database entry, and user access to the database entries of the database is further based on a user classification level; in response to receiving the request to replicate the database to the first computing device, determining, using a current location of the first computing device, a classification level of the first computing device; filtering, using the determined classification level of the first computing device, the plurality of database entries to generate a filtered subset of the plurality of database entries, wherein the filtered subset comprises database entries at or below the classification level of the first computing device; sending, to the first computing device, the filtered subset, wherein the first computing device uses the filtered subset to create a replicated database. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification