Cell-level data access control using user-defined functions

Number of patents in Portfolio can not be more than 2000

United States of America Patent

APP PUB NO 20030014394A1
SERIAL NO

09816640

Stats

ATTORNEY / AGENT: (SPONSORED)

Importance

Loading Importance Indicators... loading....

Abstract

See full text

Access control at the cell level is provided by the use of mask functions. Original queries are modified to contain mask functions for those cells which controlled access in accordance with an access policy is desired. In addition, filter functions are included to eliminate rows according to the access policy

Loading the Abstract Image... loading....

First Claim

See full text

Family

Loading Family data... loading....

Patent Owner(s)

Patent OwnerAddressTotal Patents
HITACHI AMERICA, LTD.TARRYTOWN, NY41

International Classification(s)

  • [Classification Symbol]
  • [Patents Count]

Inventor(s)

Inventor Name Address # of filed Patents Total Citations
Fujiwara, Shinji Cupertino, CA 109 1770
Kehrer, Michelle L Plainfield, IL 1 62
Lochowitz, James Palatine, IL 1 62

Cited Art Landscape

Patent Info (Count) # Cites Year
 
INTERNATIONAL BUSINESS MACHINES CORPORATION (2)
* 6081801 Shared nothing parallel execution of procedural constructs in SQL 150 1997
* 6581060 System and method for RDBMS to protect records in accordance with non-RDBMS access control rules 40 2000
 
Workday, Inc. (2)
* 6199063 System and method for rewriting relational database queries 97 1998
* 6493699 Defining and characterizing an analysis space for precomputed views 46 1999
 
ORACLE INTERNATIONAL CORPORATION (4)
* 6496819 Rewriting a query in terms of a summary based on functional dependencies and join backs, and based on join derivability 107 1998
* 6449609 Using materialized view to process a related query containing a one to many lossless join 26 1998
* 5991754 Rewriting a query in terms of a summary based on aggregate computability and canonical format, and when a dimension table is on the child side of an outer join 136 1998
* 6477525 Rewriting a query in terms of a summary based on one-to-one and one-to-many losslessness of joins 47 1998
 
LUCENT TECHNOLOGIES INC. (1)
* 6519604 Approximate querying method for databases with multiple grouping attributes 70 2000
 
MICROSOFT TECHNOLOGY LICENSING, LLC (1)
* 6490589 System and method for rewriting queries 20 1998
 
ERICSSON ENTERPRISE GMBH (1)
* 6480550 Method of compressing an analogue signal 8 1998
 
VAN DEN BOSCH, BART (1)
* 6519601 Relational database compiled/stored on a memory structure providing improved access through use of redundant representation of data 50 1998
 
TERADATA US, INC. (2)
* 5761657 Global optimization of correlated subqueries and exists predicates 44 1995
* 6275824 System and method for managing data privacy in a database management system 342 1998
 
ORACLE AMERICA, INC. (1)
* 6085191 System and method for providing database access control in a secure distributed network 164 1998
* Cited By Examiner

Patent Citation Ranking

Forward Cite Landscape

Patent Info (Count) # Cites Year
 
Other [Check patent profile for assignment information] (3)
* 2005/0038,783 Database fine-grained access control 7 2004
* 2008/0307,266 TECHNIQUES FOR AUTOMATICALLY TRACKING SOFTWARE ERRORS 16 2008
* 2008/0307,267 TECHNIQUES FOR AUTOMATIC SOFTWARE ERROR DIAGNOSTICS 58 2008
 
INTERNATIONAL BUSINESS MACHINES CORPORATION (11)
* 7216125 Methods and apparatus for pre-filtered access control in computing systems 20 2002
* 2004/0054,663 Methods and apparatus for pre-filtered access control in computing systems 4 2002
* 8234299 Method and system for using fine-grained access control (FGAC) to control access to data in a database 0 2008
* 2009/0182,747 METHOD AND SYSTEM FOR USING FINE-GRAINED ACCESS CONTROL (FGAC) TO CONTROL ACCESS TO DATA IN A DATABASE 2 2008
* 9047485 Integrated masking for viewing of data 0 2008
* 8655877 System and program for joining source table rows with target table rows 0 2008
* 2009/0012,990 SYSTEM AND PROGRAM FOR JOINING SOURCE TABLE ROWS WITH TARGET TABLE ROWS 7 2008
8983985 Masking sensitive data of table columns retrieved from a database 1 2011
8538990 Scalable mechanism for resolving cell-level access from sets of dimensional access rules 0 2011
8930410 Query transformation for masking data within database objects 0 2011
* 2015/0242,531 DATABASE ACCESS CONTROL FOR MULTI-TIER PROCESSING 1 2014
 
VMWARE, INC. (3)
9384361 Distributed event system for relational models 0 2011
9195707 Distributed event system for relational models 0 2011
9058353 Computer relational database method and system having role based access control 0 2011
 
SAP SE (1)
* 2014/0012,833 PROTECTION OF DATA PRIVACY IN AN ENTERPRISE SYSTEM 2 2013
 
FUJIFILM CORPORATION (2)
* 2008/0241,806 MEDICAL STUDY SUPPORT APPARATUS AND STUDY LIST DISPLAY METHOD 0 2008
* 2011/0141,147 MEDICAL STUDY SUPPORT APPARATUS AND STUDY LIST DISPLAY METHOD 0 2011
 
SOPHIA CO., LTD. (2)
* 7962492 Data management apparatus, data management method, data processing method, and program 0 2006
* 2008/0046,748 Data Management Apparatus, Data Management Method, Data Processing Method,and Program 4 2006
 
TransReplicator, Inc. (1)
7555493 Apparatus, systems and methods for relational database replication and proprietary data transformation 20 2005
 
LINKEDIN CORPORATION (1)
* 7844601 Quality of service feedback for technology-neutral data reporting 1 2006
 
Celcorp, Inc. (5)
* 2007/0094,594 Redaction system, method and computer program product 29 2006
* 2009/0089,663 Document management workflow for redacted documents 8 2008
8533078 Virtual redaction service 3 2008
* 2010/0070,396 Virtual redaction service 9 2008
* 2009/0296,166 Point of scan/copy redaction 10 2009
 
TERADATA US, INC. (1)
* 2008/0162,402 Techniques for establishing and enforcing row level database security 12 2006
 
NOKIA TECHNOLOGIES OY (1)
* 2011/0153,644 METHOD AND APPARATUS FOR UTILIZING A SCALABLE DATA STRUCTURE 6 2009
 
TWITTER, INC. (2)
* 7693849 Masking object data based on user authorization 0 2005
* 2006/0265,375 Masking object data based on user authorization 9 2005
 
ORACLE INTERNATIONAL CORPORATION (40)
7127448 Reforming queries to selectively audit accesses to rows within a relational database 10 2000
7117197 Selectively auditing accesses to rows within a relational database at a database server 12 2000
7693541 Multimodal session support on distinct multi channel protocol 5 2002
* 2004/0139,043 Attribute relevant access control policies 51 2003
* 7873660 Enforcing data privacy aggregations 4 2003
7228300 Caching the results of security policy functions 13 2003
* 2004/0255,133 Method and apparatus for encrypting database columns 20 2003
7606788 Method and apparatus for protecting private information within a database 8 2003
* 7346617 Multi-table access control 14 2004
7310647 Column masking of tables 8 2004
* 8825702 Sending control information with database statement 0 2004
* 2005/0187,958 Sending control information with database statement 4 2004
* 7487149 Method and apparatus for providing query-level security in a database system 9 2004
* 2005/0203,886 Method and apparatus for providing query-level security in a database system 23 2004
* 2005/0289,342 Column relevant data security label 21 2004
7281003 Database fine-grained access control 4 2004
7644432 Policy inheritance through nested groups 35 2004
7594224 Distributed enterprise security system 79 2004
* 2005/0081,062 Distributed enterprise security system 2 2004
7748027 System and method for dynamic data redaction 24 2005
* 2006/0259,954 System and method for dynamic data redaction 19 2005
8086615 Security data redaction 6 2006
7778998 Liquid data services 4 2006
* 2006/0277,220 Security data redaction 26 2006
* 2006/0224,628 Modeling for data services 3 2006
* 2006/0218,117 Liquid data services 1 2006
* 2007/0276,835 Techniques for efficient access control in a database system 14 2006
* 7711741 Desensitizing data in cloning 3 2007
* 2008/0288,548 Desensitizing data in cloning 1 2007
* 8065329 Query optimization on VPD protected columns 2 2007
* 2008/0313,134 QUERY OPTIMIZATION ON VPD PROTECTED COLUMNS 7 2007
* 2009/0024,570 USER DEFINED QUERY REWRITE MECHANISM 0 2007
* 8078595 Secure normal forms 2 2007
* 2009/0094,193 SECURE NORMAL FORMS 11 2007
7987390 Techniques for automatically tracking software errors 12 2008
7975179 Techniques for automatic software error diagnostics 3 2008
* 9311369 Virtual masked database 0 2008
* 2010/0042,643 Virtual masked database 9 2008
8239396 View mechanism for data security, privacy and utilization 0 2009
* 2010/0241,641 VIEW MECHANISM FOR DATA SECURITY, PRIVACY AND UTILIZATION 5 2009
 
APPLE INC. (1)
* 2010/0030,737 IDENTITY ENABLED DATA LEVEL ACCESS CONTROL 4 2008
 
COGNIZANT TRIZETTO SOFTWARE GROUP, INC. (1)
* 2005/0125,254 Key maintenance method and system 41 2003
 
MITSUBISHI ELECTRIC CORPORATION (1)
* 2008/0229,112 ACCESS CONTROLLER 3 2007
 
SUN MICROSYSTEMS (SCHWEIZ) A.G. (2)
7882130 Method and apparatus for requestor sensitive role membership lookup 3 2005
* 2006/0173,869 Method and apparatus for requestor sensitive role membership lookup 7 2005
 
MICROSOFT TECHNOLOGY LICENSING, LLC (8)
* 7661141 Systems and methods that optimize row level database security 12 2004
* 2005/0177,570 Systems and methods that optimize row level database security 28 2004
* 7711750 Systems and methods that specify row level database security 8 2004
* 7747597 Security execution context for a database management system 1 2005
* 2007/0005,600 Security execution context for a database management system 4 2005
* 7941411 Memory transaction grouping 0 2007
8806578 Data driven role based security 1 2010
8484175 Memory transaction grouping 0 2011
 
TATA CONSULTANCY SERVICES LIMITED (2)
* 9703808 Data masking setup 0 2012
* 2013/0060,820 Data Masking Setup 0 2012
 
GOOGLE INC. (1)
* 9384221 Unlimited retroactive data element dimension widening 1 2013
 
Teradota US, Inc. (1)
* 8027993 Techniques for establishing and enforcing row level database security 0 2006
 
SALESFORCE.COM, INC. (22)
7529728 Query optimization in a multi-tenant database system 63 2003
* 2005/0065,925 Query optimization in a multi-tenant database system 238 2003
* 8543566 System and methods of improving a multi-tenant database query using contextual knowledge about non-homogeneously distributed tenant data 4 2006
* 2007/0124,276 METHOD OF IMPROVING A QUERY TO A DATABASE SYSTEM 82 2006
* 8095531 Methods and systems for controlling access to custom objects in a database 141 2007
* 2008/0082,540 METHODS AND SYSTEMS FOR CONTROLLING ACCESS TO CUSTOM OBJECTS IN A DATABASE 74 2007
8229922 Query optimization in a multi-tenant database system 6 2009
* 2009/0276,395 QUERY OPTIMIZATION IN A MULTI-TENANT DATABASE SYSTEM 47 2009
* 8478782 System, method and computer program product for sharing tenant information utilizing a multi-tenant on-demand database service 6 2009
8732157 Query optimization in a multi-tenant database system 0 2010
8423535 Query optimization in a multi-tenant database system 2 2010
* 2010/0274,779 QUERY OPTIMIZATION IN A MULTI-TENANT DATABASE SYSTEM 36 2010
8620954 Query optimization in a multi-tenant database system 1 2010
* 2010/0235,837 QUERY OPTIMIZATION IN A MULTI-TENANT DATABASE SYSTEM 40 2010
* 8706715 Methods and systems for joining indexes for query optimization in a multi-tenant database 0 2010
* 2011/0082,854 METHODS AND SYSTEMS FOR JOINING INDEXES FOR QUERY OPTIMIZATION IN A MULTI-TENANT DATABASE 21 2010
8713043 System, method and computer program product for sharing a single instance of a database stored using a tenant of a multi-tenant on-demand database system 1 2011
* 2011/0213,797 SYSTEM, METHOD AND COMPUTER PROGRAM PRODUCT FOR SHARING A SINGLE INSTANCE OF A DATABASE STORED USING A TENANT OF A MULTI-TENANT ON-DEMAND DATABASE SYSTEM 3 2011
9275105 System and methods of improving a multi-tenant database query using contextual knowledge about non-homogeneously distributed tenant data 0 2012
9378392 Methods and systems for controlling access to custom objects in a database 0 2013
* 9405797 Methods and systems for joining indexes for query optimization in a multi-tenant database 0 2014
* 9697377 On-demand database service system, method and computer program product for conditionally allowing an application of an entity access to data of another entity 0 2016
 
BEA SYSTEMS, INC. (6)
* 2005/0102,535 Distributed security system with security service providers 10 2004
* 2006/0259,614 System and method for distributed data redaction 10 2005
* 2006/0259,977 System and method for data redaction client 11 2005
* 2006/0224,556 SQL interface for services 2 2006
* 2006/0218,149 Data redaction policies 18 2006
* 2006/0218,118 Using query plans for building and performance tuning services 8 2006
* Cited By Examiner