Invention Grant
- Patent Title: Systems and methods that optimize row level database security
- Patent Title (中): 优化行级数据库安全性的系统和方法
-
Application No.: US10885815Application Date: 2004-07-07
-
Publication No.: US07661141B2Publication Date: 2010-02-09
- Inventor: Tanmoy Dutta , Girish Chander , Laurentiu Bogdan Cristofor , Rodger N. Kline , James R. Hamilton
- Applicant: Tanmoy Dutta , Girish Chander , Laurentiu Bogdan Cristofor , Rodger N. Kline , James R. Hamilton
- Applicant Address: US WA Redmond
- Assignee: Microsoft Corporation
- Current Assignee: Microsoft Corporation
- Current Assignee Address: US WA Redmond
- Agency: Workman Nydegger
- Main IPC: G06F7/04
- IPC: G06F7/04 ; G06F17/30 ; H04N7/16
Abstract:
The systems and methods of the present invention facilitate database row-level security by utilizing SQL extensions to create and associate named security expressions with a query initiator(s). Such expressions include Boolean expressions, which must be satisfied by a row of data in order for that data to be made accessible to the query initiator. In general, a query is augmented with security expressions, which are aggregated and utilized during querying rows of data. The systems and methods variously place security expressions within a query in order to optimize query performance while mitigating information leaks. This is achieved by tagging security expressions as special and utilizing rules of predicate to pull or push non-security expressions above or below security expressions, depending on the likelihood of a non-security being safe, as determined via a static and/or dynamic analysis.
Public/Granted literature
- US20050177570A1 Systems and methods that optimize row level database security Public/Granted day:2005-08-11
Information query
