专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US06212511B1 Distributed system and method for providing SQL access to management information in a secure distributed network 失效
标题翻译：用于在安全分布式网络中提供SQL访问管理信息的分布式系统和方法
公开(公告)号：US06212511B1
公开(公告)日：2001-04-03
申请号：US08962092
申请日：1997-10-31
申请人： Bart Lee Fisher , Rajeev Angal , Sai V. S. Allavarpu
发明人： Bart Lee Fisher , Rajeev Angal , Sai V. S. Allavarpu
IPC分类号： G06F1730
CPC分类号： H04L41/28 , G06F1/00 , G06F21/6227 , H04L41/024 , H04L63/101 , Y10S707/99931
摘要： An access control database defines access rights through the use of access control objects. The access control objects include group objects, each defining a group and a set of users who are members of the group, and rule objects. A first subset of the rule objects each specify a set of the group objects, a set of the management objects, and access rights by the users who are members of the groups defined by the specified set of the group objects to the specified set of management objects. The access control server responds to the access requests from the users by granting, denying and partially granting and denying the access requested in each access request in accordance with the access rights specified in the access control database. A database management system receives management information from the network and stores that information in a set of database tables. A database access privileges module stores table access rights information corresponding to at least a subset of the access rights stored in access control database. A database access engine receives user requests for management information stored in the database tables. It limits user access to the management information stored in the database tables in accordance with the table access rights information stored in the database access privileges module.
摘要翻译：访问控制数据库通过使用访问控制对象来定义访问权限。访问控制对象包括组对象，每个对象定义组和一组作为组成员的用户以及规则对象。规则对象的第一个子集每个都指定一组组对象，一组管理对象，以及由指定的组对象定义的组的成员的用户到指定的一组管理的访问权限对象访问控制服务器根据访问控制数据库中指定的访问权限，通过授予，拒绝和部分授予和拒绝在每个访问请求中请求的访问来响应来自用户的访问请求。数据库管理系统从网络接收管理信息，并将该信息存储在一组数据库表中。数据库访问权限模块存储对应于访问控制数据库中存储的访问权限的至少一个子集的表访问权限信息。数据库访问引擎接收用户对存储在数据库表中的管理信息的请求。它根据存储在数据库访问权限模块中的表访问权限信息限制用户对存储在数据库表中的管理信息的访问。

2. 发明授权

US06064656A Distributed system and method for controlling access control to network resources 失效
标题翻译：用于控制对网络资源的访问控制的分布式系统和方法
公开(公告)号：US06064656A
公开(公告)日：2000-05-16
申请号：US962089
申请日：1997-10-31
申请人： Rajeev Angal , Sai V. S. Allavarpu , Shivaram Bhat , Bart Lee Fisher , Ping Luo
发明人： Rajeev Angal , Sai V. S. Allavarpu , Shivaram Bhat , Bart Lee Fisher , Ping Luo
IPC分类号： G06F13/00 , G06F1/00 , G06F12/14 , G06F21/00 , H04L29/06 , H04L12/28
CPC分类号： H04L63/102 , G06F21/6218 , H04L29/06 , H04L63/105 , H04L63/20 , G06F12/1483 , H04L67/42
摘要： An access control database defines access rights through the use of access control objects. The access control objects include group objects, each defining a group and a set of users who are members of the group, and rule objects. Some of the rule objects each specify a set of the group objects, a set of the management objects, and access rights by the users who are members of the groups defined by the specified set of the group objects to the specified set of management objects. A plurality of access control servers are used to process access requests. Each access control server controls access to a distinct subset of the management objects in accordance with the access rights specified in the access control database. At least one of the access control servers receives access requests from the users and distributes the received access requests among the access control servers for processing. A subset of the access requests specify operations to be performed on specified sets of the management objects. Each of these access requests is sent for processing to one or more of the access control servers in accordance with the management objects to which access is being requested. The access control servers responding to the access requests from the users by granting, denying and partially granting and denying the access requested in each access request in accordance with the access rights specified in the access control database.
摘要翻译：访问控制数据库通过使用访问控制对象来定义访问权限。访问控制对象包括组对象，每个对象定义组和一组作为组成员的用户以及规则对象。一些规则对象每个都指定一组组对象，一组管理对象，以及由指定的组对象定义的组的成员的用户到指定的一组管理对象的访问权限。多个访问控制服务器用于处理访问请求。每个访问控制服务器根据访问控制数据库中指定的访问权限来控制对管理对象的不同子集的访问。访问控制服务器中的至少一个接收来自用户的访问请求，并且在接入控制服务器之间分配所接收的访问请求以进行处理。访问请求的子集指定要对指定的管理对象集执行的操作。根据正在请求访问的管理对象，将这些访问请求中的每一个发送到一个或多个访问控制服务器进行处理。访问控制服务器根据访问控制数据库中指定的访问权限，授予，拒绝和部分授予和拒绝在每个访问请求中请求的访问来响应来自用户的访问请求。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式