Method and arrangement for providing an audit of a replica database
First Claim
1. A method for establishing an audit ofa database system comprising at least one first database and at least one second database, comprising the steps of:
- at least one first database, said first database being an auditing database sending an audit request to at least one second database to force said at least one second database to perform an audit of contents of said at least one second database, said second database being a to be audited database,based on contents of said first database, said first database preparing an expected results of the audit of the contents of said at least one second database,said at least one second database executing at least one audit procedure based on data of said audit request,said execution of said audit procedure producing, based on the contents of said at least one second database, a set of data items as a result data of said execution,said at least one second database sendingsaid result data of said execution to said at least one first database, andsaid at least one first database verifying said result data by comparing said result data with data from said expected results prepared by said first database, wherein,said audit request comprises at least one of i) one data item and ii) a computer executable instruction.
6 Assignments
0 Petitions
Accused Products
Abstract
The invention is in the area of distributed system and database security. The invention relates to a method and an arrangement for increasing the level of trust between a master and a replica database by allowing the master database to perform an “unpredictable” audit of the replica database whenever deemed appropriate by the master database. The master database may for example define and generate an audit application and send it to at least one replica database using push synchronization and force the replica database to perform the audit application. The master database may also prepare expected results of the audit of the replica database and store them for later verification. After auditing the replica database may synchronize the results of the audit back to the master database for verification. The information flow between the master and replica databases is advantageously encrypted in a secure manner.
8 Citations
35 Claims
-
1. A method for establishing an audit ofa database system comprising at least one first database and at least one second database, comprising the steps of:
-
at least one first database, said first database being an auditing database sending an audit request to at least one second database to force said at least one second database to perform an audit of contents of said at least one second database, said second database being a to be audited database, based on contents of said first database, said first database preparing an expected results of the audit of the contents of said at least one second database, said at least one second database executing at least one audit procedure based on data of said audit request, said execution of said audit procedure producing, based on the contents of said at least one second database, a set of data items as a result data of said execution, said at least one second database sendingsaid result data of said execution to said at least one first database, and said at least one first database verifying said result data by comparing said result data with data from said expected results prepared by said first database, wherein, said audit request comprises at least one of i) one data item and ii) a computer executable instruction. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 30, 32, 34)
-
-
17. An arrangement for establishing an audit to a database system comprising at least one first and at least one second databases, the arrangement comprising:
-
at least one first database, said first database being an auditing database, arranged to send an audit request to at least one second database to force said at least one second database to perform an audit of contents of said at least one second database, based on contents of said first database, said first database preparing an expected results of the audit of the contents of said at least one second database, said at least one second database arranged to execute at least one audit procedure based on data of said audit request, and arranged so that the execution of said audit procedure produces, based on the contents of said at least one second database, a set of data items as a result data of said execution, said at least one second database arranged to send said result data of the execution to said at least one first database, said at least one first database arranged to verify said result data by comparing said result data with data from said expected results prepared by said first database, wherein, said audit request comprises at least one of i) one data item and ii) a computer executable instruction. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 31, 33, 35)
-
Specification