专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07827608B2 Data leak protection system, method and apparatus 有权
标题翻译：数据泄漏保护系统，方法和装置
公开(公告)号：US07827608B2
公开(公告)日：2010-11-02
申请号：US11053105
申请日：2005-02-08
申请人： Paul M. Bird , David L. Kaminsky , Sam S. Lightstone , Walid Rjaibi
发明人： Paul M. Bird , David L. Kaminsky , Sam S. Lightstone , Walid Rjaibi
IPC分类号： G06F11/00 , G06F12/14 , G06F13/00 , G08B23/00
CPC分类号： G06F21/6227 , G06F17/30306 , G06F17/30477
摘要： A method, system and apparatus for data leak prevention. An information system, such as a database system, which has been configured for data leak protection in accordance with the present invention can include an IDS coupled to the information system and a data leak protection system configured to apply a data leak protection policy for result sets produced by the information system in response to a database query. The data leak protection policy can include a listing of data shapes and corresponding remedial measures. The data leak protection policy further can include consideration for metrics produced by the IDS.
摘要翻译：一种防止数据泄露的方法，系统和装置。根据本发明已被配置用于数据泄漏保护的诸如数据库系统的信息系统可以包括耦合到信息系统的IDS和被配置为对结果集合应用数据泄漏保护策略的数据泄漏保护系统由信息系统生成的响应数据库查询。数据泄漏保护策略可以包括数据形状列表和相应的补救措施。数据泄漏保护政策还可以包括对IDS产生的度量的考虑。

2. 发明授权

US07568039B2 Method for providing and utilizing a network trusted context 失效
标题翻译：提供和利用网络信任上下文的方法
公开(公告)号：US07568039B2
公开(公告)日：2009-07-28
申请号：US11023921
申请日：2004-12-27
申请人： Paul M. Bird , Gayathiri R. Chandran , Curt L. Cotner , Adrian B. Lobo , James W. Pickel , Walid Rjaibi
发明人： Paul M. Bird , Gayathiri R. Chandran , Curt L. Cotner , Adrian B. Lobo , James W. Pickel , Walid Rjaibi
IPC分类号： G06F21/00
CPC分类号： H04L63/08 , H04L63/102
摘要： A method for establishing a connection between a data server and a middleware server is disclosed. The method includes defining a plurality of trust attributes corresponding to a trusted context between the middleware server and the data server and validating the plurality of trust attributes against a plurality of attributes corresponding to the middleware server. The plurality of attributes provided in a connection request. The method also includes establishing the trusted context based on the validating the plurality of trust attributes.
摘要翻译：公开了一种在数据服务器和中间件服务器之间建立连接的方法。该方法包括定义与中间件服务器和数据服务器之间的信任上下文相对应的多个信任属性，并针对对应于中间件服务器的多个属性来验证多个信任属性。在连接请求中提供的多个属性。该方法还包括基于验证多个信任属性来建立可信赖的上下文。

3. 发明授权

US08577906B2 Method for modifying a query by use of an external system for managing assignment of user and data classifications 有权
标题翻译：通过使用外部系统修改查询以管理用户和数据分类的分配的方法
公开(公告)号：US08577906B2
公开(公告)日：2013-11-05
申请号：US12951982
申请日：2010-11-22
申请人： Paul M. Bird , Walid Rjaibi
发明人： Paul M. Bird , Walid Rjaibi
IPC分类号： G06F17/30 , G06F7/00
CPC分类号： G06F17/30448
摘要： Disclosed is a data processing-implemented method, a data processing system, and an article of manufacture for modifying a query during compilation of the query. The query includes a request for an element of data from a table in a database and parameters identifying the requested element. The data processing-implemented method includes determining available information from parameters for locating a classification of the requested element and a classification associated with the query, the requested data classification controlling access to the requested element according to the query associated classification, requesting a suggested action from an external system for obtaining a comparison of the requested data classification and the query associated classification based on the available information, receiving the suggested action from the external system responsive to the sent request, and incorporating the suggested action into the query, the suggested action effecting comparison of the requested data classification with the query associated classification.
摘要翻译：公开了一种数据处理实现的方法，数据处理系统和用于在查询的编译期间修改查询的制品。该查询包括对来自数据库中的表的数据元素的请求以及标识所请求元素的参数。数据处理实现的方法包括从用于定位所请求的元素的分类和与查询相关联的分类的参数确定可用信息，所请求的数据分类根据查询关联分类来控制对所请求的元素的访问，请求建议的动作用于基于所述可用信息获得所请求的数据分类和所述查询关联分类的比较的外部系统，响应于所发送的请求从所述外部系统接收所述建议的动作，并将所述建议的动作合并到所述查询中，所述建议的动作请求的数据分类与查询关联分类的比较。

4. 发明授权

US07661125B2 System for providing and utilizing a network trusted context 失效
标题翻译：用于提供和利用网络可信上下文的系统
公开(公告)号：US07661125B2
公开(公告)日：2010-02-09
申请号：US12166839
申请日：2008-07-02
申请人： Paul M. Bird , Gayathiri R. Chandran , Curt L. Cotner , Adrian B. Lobo , James W. Pickel , Walid Rjaibi
发明人： Paul M. Bird , Gayathiri R. Chandran , Curt L. Cotner , Adrian B. Lobo , James W. Pickel , Walid Rjaibi
IPC分类号： G06F21/00 , H04L9/00
CPC分类号： H04L63/08 , H04L63/102
摘要： A system for establishing a connection between a data server and a middleware server is disclosed. The system includes defining a plurality of trust attributes corresponding to a trusted context between the middleware server and the data server and validating the plurality of trust attributes against a plurality of attributes corresponding to the middleware server. The plurality of attributes provided in a connection request. The system also includes establishing the trusted context based on the validating the plurality of trust attributes.
摘要翻译：公开了一种用于在数据服务器和中间件服务器之间建立连接的系统。该系统包括定义与中间件服务器和数据服务器之间的可信上下文相对应的多个信任属性，并针对对应于中间件服务器的多个属性来验证多个信任属性。在连接请求中提供的多个属性。该系统还包括基于验证多个信任属性来建立可信赖的上下文。

5. 发明申请

US20080275880A1 ACCESS CONTROL FOR ELEMENTS IN A DATABASE OBJECT 审中-公开
标题翻译：数据库对象中元素的访问控制
公开(公告)号：US20080275880A1
公开(公告)日：2008-11-06
申请号：US12138312
申请日：2008-06-12
申请人： Paul Miller BIRD , Walid Rjaibi
发明人： Paul Miller BIRD , Walid Rjaibi
IPC分类号： G06F21/00 , G06F17/30
CPC分类号： G06F21/6227
摘要： A system for controlling access to elements in a database object are provided. The system provides for receiving a request from a user to access the database object, determining whether an access restriction is imposed on the database object, and controlling access to the elements in the database object by the user based on the access restriction. The access restriction specifies one or more users to which the access restriction is applicable, defines a dynamic condition the one or more users must satisfy in order to access the database object, and identifies one or more of the elements in the database object accessible to the one or more users when the dynamic condition is satisfied.
摘要翻译：提供了用于控制对数据库对象中的元素的访问的系统。系统提供从用户接收访问数据库对象的请求，确定对数据库对象是否施加访问限制，以及基于访问限制来控制用户对数据库对象中的元素的访问。访问限制指定访问限制适用于的一个或多个用户，定义一个或多个用户必须满足以访问数据库对象的动态条件，并且识别可访问的数据库对象中的一个或多个元素当满足动态条件时，一个或多个用户。

6. 发明申请

US20050021287A1 Computing frequent value statistics in a partitioned relational database 失效
标题翻译：计算分区关系数据库中的频繁值统计
公开(公告)号：US20050021287A1
公开(公告)日：2005-01-27
申请号：US10872679
申请日：2004-06-21
申请人： Walid Rjaibi
发明人： Walid Rjaibi
IPC分类号： G06F15/00 , G06F17/18 , G06F17/30
CPC分类号： G06F17/30595
摘要： Systems, methods and program products for computing frequent value statistics such as frequent values in a column in a partitioned relational database, that may be employed across a number of nodes of a partitioned relational database and a case where a column is the single partitioning key of the database table as well as the case where the column is not the single partitioning key of the database table. The technique involves hashing column entries to a hash data set on a node, collecting the hash entries into another hash data set on a coordinating node into a combined hash data set, hashing entries from a table portion residing on the coordinating node into the combined hash data set and computing frequent value from the combined hash data set. Each hash data set is an array of counts and the combined hash data set is a combined array of counts.
摘要翻译：用于计算频繁值统计的系统，方法和程序产品，例如可以在分区关系数据库的多个节点上使用的分区关系数据库中的列中的频繁值，以及列是单个分区密钥的情况数据库表以及列不是数据库表的单个分区键的情况。该技术涉及将列条目散列到节点上的散列数据集合，将哈希条目收集到协调节点上的另一散列数据集合到组合散列数据集中，将驻留在协调节点上的表部分中的散列条目散列成组合散列从组合哈希数据集的数据集和计算频繁值。每个哈希数据集是一个计数数组，组合的哈希数据集是一个组合的计数数组。

7. 发明授权

US08930410B2 Query transformation for masking data within database objects 有权
标题翻译：用于屏蔽数据库对象内的数据的查询转换
公开(公告)号：US08930410B2
公开(公告)日：2015-01-06
申请号：US13251448
申请日：2011-10-03
申请人： Eric L. Alton , Thomas A. Beavin , Harley W. Boughton , Yao-Ching S. Chen , Curt L. Cotner , Yuping Ding , Dengfeng Gao , Gerald G. Kiernan , Xun Li , Irene C. Liu , Walid Rjaibi , Gregory R. Stager , Joyce A. Taylor , Timothy J. Vincent , Liyan Zhou
发明人： Eric L. Alton , Thomas A. Beavin , Harley W. Boughton , Yao-Ching S. Chen , Curt L. Cotner , Yuping Ding , Dengfeng Gao , Gerald G. Kiernan , Xun Li , Irene C. Liu , Walid Rjaibi , Gregory R. Stager , Joyce A. Taylor , Timothy J. Vincent , Liyan Zhou
IPC分类号： G06F17/30
CPC分类号： G06F17/30477
摘要： According to one embodiment of the present invention, a system processes a database query, and comprises a computer system including at least one processor. The system identifies one or more expressions within the database query utilizing a database object with value masking. Masking requirements are determined for each identified expression and the database object utilized by that identified expression is replicated to provide masked and actual versions of that database object in response to the masking requirements for that expression including masked values and actual values of that database object. The value masking of the database object is applied to the identified expressions within the database query based on the determined masking requirements to produce search results with masked values for the database query. Embodiments of the present invention further include a method and computer program product for processing a database query in substantially the same manner described above.
摘要翻译：根据本发明的一个实施例，系统处理数据库查询，并且包括包括至少一个处理器的计算机系统。系统使用具有值屏蔽的数据库对象来识别数据库查询中的一个或多个表达式。针对每个已标识的表达式确定掩蔽要求，并复制由该标识表达式使用的数据库对象，以响应该表达式的掩蔽要求（包括该数据库对象的掩蔽值和实际值）来提供该数据库对象的屏蔽和实际版本。数据库对象的值屏蔽将基于确定的屏蔽要求应用于数据库查询中的标识表达式，以生成具有数据库查询的掩码值的搜索结果。本发明的实施例还包括用于以与上述基本相同的方式处理数据库查询的方法和计算机程序产品。

8. 发明授权

US07865521B2 Access control for elements in a database object 失效
标题翻译：数据库对象中元素的访问控制
公开(公告)号：US07865521B2
公开(公告)日：2011-01-04
申请号：US11299857
申请日：2005-12-12
申请人： Paul Miller Bird , Walid Rjaibi
发明人： Paul Miller Bird , Walid Rjaibi
IPC分类号： G06F7/00 , G06F17/30
CPC分类号： G06F21/6227
摘要： A method, for controlling access to elements in a database object are provided. The method provide for receiving a request from a user to access the database object, determining whether an access restriction is imposed on the database object, and controlling access to the elements in the database object by the user based on the access restriction. The access restriction specifies one or more users to which the access restriction is applicable, defines a dynamic condition the one or more users must satisfy in order to access the database object, and identifies one or more of the elements in the database object accessible to the one or more users when the dynamic condition is satisfied.
摘要翻译：提供了一种用于控制对数据库对象中的元素的访问的方法。该方法提供从用户接收访问数据库对象的请求，确定对数据库对象是否施加访问限制，以及基于访问限制来控制用户对数据库对象中的元素的访问。访问限制指定访问限制适用于的一个或多个用户，定义一个或多个用户必须满足以访问数据库对象的动态条件，并且识别可访问的数据库对象中的一个或多个元素当满足动态条件时，一个或多个用户。

9. 发明授权

US07496584B2 Incremental cardinality estimation for a set of data values 失效
标题翻译：一组数据值的增量基数估计
公开(公告)号：US07496584B2
公开(公告)日：2009-02-24
申请号：US11463294
申请日：2006-08-08
申请人： Walid Rjaibi , Peter Jay Haas
发明人： Walid Rjaibi , Peter Jay Haas
IPC分类号： G06F17/30
CPC分类号： G06F17/30469 , Y10S707/941 , Y10S707/959 , Y10S707/99937 , Y10S707/99942 , Y10S707/99943 , Y10S707/99944 , Y10S707/99945 , Y10S707/99953
摘要： A method for incrementally maintaining column cardinality estimates in database management systems. In one embodiment, the system includes system catalog table containing a cardinality estimate for a column that is extended to include an appropriate data structure. A modified linear counting technique is used in a first embodiment of a method for column cardinality estimation. The cardinality estimate is produced by an initial scan of the data but is then further maintained without requiring a full scan of the data. Data changes are reflected incrementally in modifications to the initial cardinality estimate, keeping the cardinality statistics more current with respect to the database condition. The technique of the invention typically provides a capability for a database management system to produce more efficient search plans providing more effective responses to user queries through the use of improved cardinality statistics.
摘要翻译：一种在数据库管理系统中逐行维护列基数估计的方法。在一个实施例中，系统包括系统目录表，其包含扩展为包括适当的数据结构的列的基数估计。在列基数估计方法的第一实施例中使用经修改的线性计数技术。基数估计是通过数据的初始扫描产生的，然后进一步维持，而不需要对数据进行全面扫描。在初始基数估计的修改中，数据变化逐渐反映出来，保持基数统计信息相对于数据库条件更新。本发明的技术通常提供了一种数据库管理系统产生更有效的搜索计划的能力，通过使用改进的基数统计来提供对用户查询的更有效的响应。

10. 发明申请

US20080147595A1 SELF-PROTECTING DATABASE TABLES 审中-公开
标题翻译：自我保护数据表
公开(公告)号：US20080147595A1
公开(公告)日：2008-06-19
申请号：US11611734
申请日：2006-12-15
申请人： Walid Rjaibi
发明人： Walid Rjaibi
IPC分类号： G06F17/30 , H04K1/00
CPC分类号： G06F21/6227 , G06F2221/2101
摘要： An apparatus and method for adding a layer of security to a database table includes assigning a self-protection policy to a selected database table. One or more monitoring attributes are designated for inclusion in the self-protection policy. These monitoring attributes include one or more conditions that, if satisfied either alone, in the alternative, or in combination, may be an indicator that an intruder has acquired or is attempting to acquire access to the database table. One or more reactive measures may also be selected for inclusion in the self-protection policy. These reactive measures specify one or more actions to be performed in the event the one or more conditions are satisfied.
摘要翻译：用于向数据库表添加安全性层的装置和方法包括：将自我保护策略分配给所选择的数据库表。指定一个或多个监视属性以包含在自我保护策略中。这些监视属性包括一个或多个条件，如果单独满足，替代或组合地可以是入侵者已经获取或正在尝试获取对数据库表的访问的指示符。还可以选择一个或多个反应措施以包括在自我保护政策中。这些反应措施指定在满足一个或多个条件的情况下执行的一个或多个动作。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式