Available Technology

A METHOD AND PROCESS FOR IMPOSING FINE-GRAINED NEXT GENERATION ACCESS CONTROLS OVER RDBMS SQL QUERIES AND DATABASE OBJECTS

The process and method provides a means of leveraging Next Generation Access ControlĀ  (NGAC) standard for expression and enforcement of access control policies over SQL queries for accessing tables, records, columns, and fields in existing RDBMS products. By leveraging NGAC the Process and method provides a means of access control policy support that goes beyond the state of the art, with minimal impact on performance. In particular, it can impose forms of mandatory, discretionary, and history-based access control policies. The method and process also provides a means of comprehensively enforcing access control over RDBMS and non-RDBMS data types. Finally, the process and method could be directly implemented in a RDBMS kernel.

Inventors: 
Joshua Roberts, Gopi Katwala, David Ferraiolo, Serban Gavrila
Patent Number: 
10127393
Internal Laboratory Ref #: 
15-020
Patent Issue Date: 
November 13, 2018
Phone: 
301-975-2573
Email: 
tpo@nist.gov
Lab Representatives
Share to Facebook Share to Twitter Share to Google Plus Share to Linkedin