AUTONOMOUS ROLE-BASED SECURITY FOR DATABASE MANAGEMENT SYSTEMS
- 申请公布号:
- US2015026215(A1)
- 申请号:
- US201313945148
- 申请日期:
- 2013.07.18
- 申请公布日期:
- 2015.01.22
- 申请人:
- Goel Anil;Desai Asif Iqbal;Gupta Ramesh;Ghosh Somnath;Vadodaria Harin
- 发明人:
- Goel Anil;Desai Asif Iqbal;Gupta Ramesh;Ghosh Somnath;Vadodaria Harin
- 分类号:
- G06F21/62
- 主分类号:
- G06F21/62
- 地址:
- Waterloo CA
- 摘要:
- Embodiments described herein generally relate to creating an autonomous role-based security system for a database management system, wherein a super user may not always be required. A computer-implemented method is described. The method includes establishing one or more privileges in a database system, each privilege controlling access to an administrative function for the database system. Each privilege is assigned to one or more roles. Each role may always have a minimum set of users with only administrative rights over the role. A request is received from a first user to grant a role to a second user. A database management system determines whether the first user has administrative privileges over the role. If the first user has administrative privileges over the role, the role is granted to the second user. The database system may satisfy the principles of least privilege and separation of duties.
- 主权项:
- 1. A computer-implemented method, comprising:
establishing one or more privileges in a database system, each privilege controlling access to an administrative function for the database system; assigning each privilege to one or more roles; receiving a request from a first user to grant a role to a second user; determining whether the first user has administrative rights over the role; and granting the role to the second user when the first user is determined to have administrative rights over the role.
Copyright Notice © 2009-2024 传众 版权所有