Sharing information between nexuses that use different classification schemes for information access control
First Claim
Patent Images
1. A computer-implemented method, comprising:
- at one or more computing devices operatively coupled to a first database;
obtaining export data representing a classification to be imported into the first database, the export data including information representing a set of one or more origin classifications;
wherein the export data is obtained as part of other export data that represents an update to an access control list in a second database;
obtaining, from the first database, first version information representing a version of the access control list in the first database after an update to the access control list in the first database;
obtaining, from the other export data, second version information representing a version of the access control list in the second database after the update to the access control list in the second database;
determining that the update to the access control list in the second database happened after the update to the access control list in the first database based on a comparison between the first version information and the second version information;
performing a first iteration over the set of one or more origin classifications using the information representing the set of one or more origin classifications;
completing the first iteration;
in response to completing the first iteration, performing a second iteration over one or more origin classifications in the set of one or more origin classifications using the information representing the set of one or more origin classifications;
completing the second iteration upon identifying a first origin classification, in the set of origin classifications, having a first set of one or more classification markings that, according to a translation map, can be translated to a second set of classification markings based on a classification scheme used by the database; and
importing the classification into the database, the classification imported into the first database having the second set of classification markings.
8 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for sharing information between distributed computer systems connected to one or more data networks. In particular, a replication system implementing methodologies for sharing database information between computer systems where the databases use different classification schemes for information access control is disclosed.
166 Citations
21 Claims
-
1. A computer-implemented method, comprising:
-
at one or more computing devices operatively coupled to a first database; obtaining export data representing a classification to be imported into the first database, the export data including information representing a set of one or more origin classifications; wherein the export data is obtained as part of other export data that represents an update to an access control list in a second database; obtaining, from the first database, first version information representing a version of the access control list in the first database after an update to the access control list in the first database; obtaining, from the other export data, second version information representing a version of the access control list in the second database after the update to the access control list in the second database; determining that the update to the access control list in the second database happened after the update to the access control list in the first database based on a comparison between the first version information and the second version information; performing a first iteration over the set of one or more origin classifications using the information representing the set of one or more origin classifications; completing the first iteration; in response to completing the first iteration, performing a second iteration over one or more origin classifications in the set of one or more origin classifications using the information representing the set of one or more origin classifications; completing the second iteration upon identifying a first origin classification, in the set of origin classifications, having a first set of one or more classification markings that, according to a translation map, can be translated to a second set of classification markings based on a classification scheme used by the database; and importing the classification into the database, the classification imported into the first database having the second set of classification markings. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer system comprising:
-
one or more first computing devices operatively coupled to a first database; one or more second computing devices operatively coupled to a second database; one or more first non-transitory computer-readable media storing instructions which, when executed by the one or more first computing devices, cause the one or more first computing devices to perform the steps of; obtaining a classification to be exported from the first database; wherein the classification has a set of one or more classification markings and a set of one or more origin classifications; generating a new origin classification; wherein the new origin classification includes the set of one or more classification markings; adding the new origin classification to the set of one or more origin classifications to produce a new set of a plurality of origin classifications; wherein the new set of origin classifications includes the new origin classification; exporting the classification as export data; wherein the export data includes the new set of origin classifications; and one or more second non-transitory computer-readable media storing instructions which, when executed by the one or more second computing devices, cause the one or more second computing devices to perform the steps of; obtaining the export data; wherein the export data is obtained as part of other export data that represents an update to an access control list in the first database; obtaining, from the second database, first version information representing a version of the access control list in the second database after an update to the access control list in the second database; obtaining, from the other export data, second version information representing a version of the access control list in the first database after the update to the access control list in the first database; determining that the update to the access control list in the first database happened after the update to the access control list in the second database based on a comparison between the first version information and the second version information; performing a first iteration over the new set of origin classifications; completing the first iteration; in response to completing the first iteration, performing a second iteration over one or more origin classifications in the new set of origin classifications; completing the second iteration upon identifying a first origin classification, in the new set of origin classifications, having a first set of one or more classification markings that, according to a translation map, can be translated to a second set of classification markings based on a classification scheme used by the second database; and importing a classification into the second database, the classification imported into the second database having the second set of classification markings. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. One or more non-transitory computer-readable media storing instructions which, when executed by the one or more computing devices operatively coupled to a first database, cause the one or more computing devices to perform the steps of:
-
obtaining export data representing a classification to be imported into the first database, the export data including information representing a set of one or more origin classifications; wherein the export data is obtained as part of other export data that represents an update to an access control list in a second database; obtaining, from the first database, first version information representing a version of the access control list in the first database after an update to the access control list in the first database; obtaining, from the other export data, second version information representing a version of the access control list in the second database after the update to the access control list in the second database; determining that the update to the access control list in the second database happened after the update to the access control list in the first database based on a comparison between the first version information and the second version information; performing a first iteration over the set of one or more origin classifications using the information representing the set of one or more origin classifications; completing the first iteration; in response to completing the first iteration, performing a second iteration over one or more origin classifications in the set of one or more origin classifications using the information representing the set of one or more origin classifications; completing the second iteration upon identifying a first origin classification, in the set of origin classifications, having a first set of one or more classification markings that, according to a translation map, can be translated to a second set of classification markings based on a classification scheme used by the database; and importing the classification into the database, the classification imported into the first database having the second set of classification markings. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification