首页>
外国专利>
FINE-GRAINED DATABASE ACCESS-CONTROL POLICY ENFORCEMENT USING REVERSE QUERIES
FINE-GRAINED DATABASE ACCESS-CONTROL POLICY ENFORCEMENT USING REVERSE QUERIES
展开▼
机译:使用反向查询执行精细的数据库访问控制策略
展开▼
页面导航
摘要
著录项
相似文献
摘要
A method of providing access control to a database accessible from a user interface is implemented at a policy enforcement point, which is located between the database and the user interface and includes the steps of: (i) intercepting a database query; (ii) assigning attribute values on the basis of a target table or target column in the query, a construct type in the query, or the user or environment; (iii) partially evaluating an access-control policy defined in terms of said attributes, by constructing a partial policy decision request containing the attribute values assigned in step ii) and evaluating the access-control policy for this, whereby a simplified policy is obtained; (iv) deriving an access condition, for which the simplified policy permits access; and (v) amending the database query by imposing said access condition and transmitting the amended query to the database.
展开▼