Invention Grant
US07890530B2 Method and system for controlling access to data via a data-centric security model
失效
通过数据为中心的安全模型控制数据访问的方法和系统
- Patent Title: Method and system for controlling access to data via a data-centric security model
- Patent Title (中): 通过数据为中心的安全模型控制数据访问的方法和系统
-
Application No.: US12025832Application Date: 2008-02-05
-
Publication No.: US07890530B2Publication Date: 2011-02-15
- Inventor: Michael P. Bilger , Hyman D. Chantz , Nevenko Zunic
- Applicant: Michael P. Bilger , Hyman D. Chantz , Nevenko Zunic
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Schmeiser, Olsen & Watts
- Agent William E. Schiesser
- Main IPC: G06F17/00
- IPC: G06F17/00
Abstract:
A method and system for controlling access to data via a data-centric security model. A business data classification scheme is defined as a hierarchy that includes data types aligned with business operations. A data element is labeled with a data label. The data label includes multiple attributes associated with a data-centric security model. A first attribute is a data type of the data element. A second attribute includes security requirements. Data control rules are automatically generated for an enforcement of the security requirements. The enforcement grants or denies to a user an access to the data element via a predefined action. The enforcement is based on a predefined association among the predefined action, a predefined role that includes the user, the data type and, optionally, a purpose for performing the predefined action.
Public/Granted literature
- US20090198697A1 METHOD AND SYSTEM FOR CONTROLLING ACCESS TO DATA VIA A DATA-CENTRIC SECURITY MODEL Public/Granted day:2009-08-06
Information query
