CN101866360A - Data warehouse authentication method and system based on object multidimensional property space - Google Patents
Data warehouse authentication method and system based on object multidimensional property space Download PDFInfo
- Publication number
- CN101866360A CN101866360A CN201010211350A CN201010211350A CN101866360A CN 101866360 A CN101866360 A CN 101866360A CN 201010211350 A CN201010211350 A CN 201010211350A CN 201010211350 A CN201010211350 A CN 201010211350A CN 101866360 A CN101866360 A CN 101866360A
- Authority
- CN
- China
- Prior art keywords
- data
- multidimensional property
- data object
- attribute
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention relates to a method for verifying user identity and access permission, in particular to a data warehouse authentification method and a system based on object multidimensional property space applied in the financial management software system. The invention can firstly flexibly set permission relationship for user role and multidimensional property of data objects, limit the range of data objects to be operated by user role through the setting of data permission, and simultaneously realize rapid access to data objects. The invention is applicable to all the information systems with storage and processing of database and text data, in particular to seamless integration and coordinate search of business data and documents in administrative office systems in the e-government field.
Description
Technical field
The present invention relates to a kind of method that is used for inspection user identity and access rights, especially relate to a kind of data warehouse authentication method and system that is applied in the fiscal administration software systems based on object multidimensional property space.
Background technology
In existing data warehouse authentication method, most systems adopts the data warehouse authentication method based on the role.Providing a kind of based on role's data warehouse authentication method is the access control scheme of basic structure with user one role one authority, it is the main solution that solves the access control of large scale system unified resource, can satisfy the demand of most of application systems, its defective is not have the control aspect with regard to data that perfect solution is provided.That is to say, data warehouse authentication method based on the role is the method for authenticating of a coarseness, only solve the authority of some relative coarsenesses, promptly only tell system who can do what or who what can not be done, it is just being that service is provided is target for the access control system on upper strata, can't satisfy the demand that some management system (for example, fiscal administration software systems) need refine to the authentication granularity data object attribute.
Summary of the invention
Technical matters to be solved by this invention is to use on the basis of controlling based on role's access control method solution coarseness how to use the problem of the visit of data being controlled based on the data warehouse authentication method in object multidimensional property space, provide a kind of and can the data warehouse authentication granularity be refine to the attribute of data object according to the multidimensional property of data object to the conduct interviews method of control of data.
To achieve these goals, the technical solution used in the present invention is as follows:
A kind of data warehouse authentication method based on object multidimensional property space may further comprise the steps:
(1), determines in total system, to be used for the attribute of the data object of data authentication in the configuration phase;
(2), create multidimensional property data permission group in the configuration phase;
(3), give the different different data permission groups of user role mandate in the configuration phase;
(4), when creating data object, generate the corresponding data object multidimensional property of user role value combination ID in the runtime;
(5), when visit data, whether meet the corresponding data permission group of this user role mandate setting according to data object multidimensional property value combination ID judgment data object in the runtime, if meet, then this user role can be visited this data object, otherwise, can not visit.
Further, aforesaid data warehouse authentication method based on object multidimensional property space, the attribute that step (1) is used for the data object of data authentication should be the whole life that is present in business datum from start to finish, and after data object was created, the value of these attributes was changeless.
Further, aforesaid data warehouse authentication method based on object multidimensional property space, each data permission group of creating in the step (2) is the set of the different spans of each attribute.
Further, aforesaid data warehouse authentication method, the whole authorities of span support of each attribute and two kinds of patterns of part authority in the step (2) based on object multidimensional property space.
Further, aforesaid data warehouse authentication method based on object multidimensional property space, the data object multidimensional property value combination ID that generates in the step (4) is stored in one independently in the table, line item in this table is exactly the combination of the multidimensional property value of a data object, and in data object the Major key of record data object multidimensional property value combination ID.
Further, aforesaid data warehouse authentication method based on object multidimensional property space, step provides a group interface in (5), and authority relation is to the control that conducts interviews of data object between the data object multidimensional property value combination ID that generates in by checking procedure (4) in the runtime data permission group corresponding with the user role in the step (3).
Further, change when the service data object, has taken place if be used for the attribute of the data object of authentication in aforesaid data warehouse authentication method based on object multidimensional property space, will generate new data object multidimensional property value combination ID so simultaneously.
A kind of data warehouse authentication system based on object multidimensional property space comprises:
Authentication attribute determination module is used for determining to be used in total system the attribute of the data object of data authentication;
Bundle of permissions is provided with module, is used to create multidimensional property data permission group;
The bundle of permissions authorization module is used for to the different data permission group of different user role mandates;
Data object is created interface module, is used for when creating data object, generates the corresponding data object multidimensional property of user role value combination ID;
Data object access interface module is used for when visit data, whether meets the corresponding data permission group of this user role mandate setting according to data object multidimensional property value combination ID judgment data object.
Further, aforesaid data warehouse authentication system based on object multidimensional property space also comprises:
Multidimensional property data permission group information table module is used to store multidimensional property data permission group information;
Data object multidimensional property value combination ID table module is used to store the data message that data object multidimensional property value makes up ID.
Beneficial effect of the present invention is as follows: the present invention can be provided with authority relation flexibly for the multidimensional property of user role and data object, setting by data permission then, the scope of the manipulable data object of limited subscriber role realizes the fast access to the data object simultaneously.The present invention supports the intersection authority setting in data object multidimensional property space, can be fine satisfy each different functional departments and user role in the management software system carry out interleaving access control to the data object requirement.The present invention is applicable to the infosystem that all exist database and text data store and processing, is particularly useful in the administrative office system in E-Government field business datum and retrieves with the seamless integrated and consistent of official document.
Description of drawings
Fig. 1 is based on the data warehouse authentication method process flow diagram of object multidimensional property in the embodiment;
Fig. 2 is based on the data warehouse authentication system schematic of object multidimensional property in the embodiment.
Embodiment
Describe the present invention below in conjunction with the drawings and specific embodiments.
As shown in Figure 1, a kind of data warehouse authentication method based on object multidimensional property space may further comprise the steps:
(1) in the configuration phase, determine in total system, to be used for the attribute of the data object of data authentication, determine promptly which attribute of data object is used for data authentication in total system.
The attribute that is used for the data object of authentication can not be determined arbitrarily, should be the whole life that is present in business datum from start to finish, and after data object was created, the value of these attributes was changeless.
With government finance budget enforcement operation system is example, generally incite somebody to action " (section) chamber, professional place ", " budget entity ", " fund character ", " modes of payments ", " functional classification " these several attributes as the authentication attribute, the budget enforcement service data object generally all comprises these several attributes, and since data object create finish enter operation flow after, the value of these several attributes can not change again.
According to the above definite principle that is used for the data object attribute of authentication, and, can attribute number and the kind that be used for authentication be increased or reduce according to the different business systems actual needs.
(2) in the configuration phase, create multidimensional property data permission group, each data permission group is the set of the different spans of each attribute.The form of Descartes's collection is adopted in the set of the different spans of each attribute.
The whole authorities of span support of each attribute and two kinds of patterns of part authority, be provided with in the module in the multidimensional property bundle of permissions, for providing two options, each attribute is used for determining its span: whole authorities, part authority, and the two gets one, and is as shown in the table:
When selecting whole authority, represent that this bundle of permissions has the authority of all values of current attribute, select whole authorities, can not demonstrate the value collection tabulation of this attribute.When selecting the part authority, demonstrate the value collection tabulation of this attribute, as required final election data in the tabulation of value collection.
(3) in the configuration phase, give the different different data permission groups of user role mandate, configuration feature provided herein licenses to corresponding user role with the data permission group of creating in the step (2)
(4), when creating data object, generate the corresponding data object multidimensional property of user role value combination ID (RCID) in the runtime.Introduced the notion of RCID (DataRight CodeCombinations ID) herein, it is an example of certain data permission group in the step (2).
RCID is through the whole process of the establishment of data object, visit, maintenance.The introducing of RCID mechanism is in order to improve the efficient based on the data authentication in object multidimensional property space, in data warehouse the RCID example be stored in one independently the table (sys_right_combination) in, line item in this table is exactly the combination of the multidimensional property value of a data object, and only writes down the RCID Major key in the data object.In brief, undertaken related by RCID between data object and its multidimensional authentication property value.
(5), when visit data, whether meet the corresponding data permission group of this user role mandate setting according to data object multidimensional property value combination ID (RCID) judgment data object in the runtime, if meet, then this user role can be visited this data object, otherwise, can not visit.A group interface provided herein, authority relation is to the control that conducts interviews of data object between the data object multidimensional property value combination ID that generates in by checking procedure (4) in the runtime data permission group corresponding with the user role in the step (3).
The present invention generates RCID when the runtime data object is created, when the service data object, if be used for the attribute of the data object of authentication change has taken place, and will generate new RCID simultaneously so.
For example: in certain system, specify A, B, three attributes of C as the authentication attribute, the value collection of each attribute is as shown in the table in total system:
Create a data bundle of permissions R1, for R1, the span of A, B, three attributes of C is shown in grey color part in the following table:
So, the data permission group R1 form of expression is described as: Descartes's collection of three attribute spans of (a2, a3) (b1, b2) (c2, c4).
Because each attribute provides two options to be used for determining its span: whole authorities, part authority, the two gets one, when selecting the part authority, demonstrates the value collection tabulation of this attribute, as required final election data in the value collection is tabulated.With attribute A is example, the part authority span of selected attribute A be (a2, a3), as shown in the table:
Create a service data object X, wherein the value of A, B, three attributes of C is respectively:
A=a2,B=b1,C=c4
So, generate RCID data, as shown in the table:
| The RCID unique identification | ?A | ?B | ?C |
| rcid1 | ?a2 | ?b1 | ?c4 |
Store rcid1 (RCID unique identification) among the data object X, and the value of directly not storing A, B, three attributes of C.
By authority relation between the data permission group corresponding of the RCID in the checking data object with user role to the control that conducts interviews of data object.
As shown in Figure 2, based on the data warehouse authentication system of object multidimensional property, comprising described in the present embodiment:
Authentication attribute determination module 11 is used for determining to be used in total system the attribute of the data object of data authentication;
Bundle of permissions is provided with module 12, is used to create multidimensional property data permission group;
Bundle of permissions authorization module 13 is used for to the different data permission group of different user role mandates;
Data object is created interface module 14, is used for when creating data object, generates the corresponding data object multidimensional property of user role value combination ID;
Data object access interface module 15 is used for when visit data, whether meets the corresponding data permission group of this user role mandate setting according to data object multidimensional property value combination ID judgment data object;
Multidimensional property data permission group information table module 16 is used to store multidimensional property data permission group information;
Data object multidimensional property value combination ID table module 17 is used to store the data message that data object multidimensional property value makes up ID (RCID).
Data warehouse authentication system based on object multidimensional property space provided by the present invention is divided into configuration management and runnable interface two parts:
Provide three configuration features to realize configuration and management:
(1) the authentication attribute is determined function: selected which attribute is used for data authentication.
(2) the data permission group is provided with function: create the plurality of data bundle of permissions according to business demand, a bundle of permissions is made up of two parts: append and get rid of authority, choose the span of each object properties on the bundle of permissions, provide whole authorities as acceleration mechanism, after having disposed the span of multidimensional property, represent the result of authority setting by the form of Descartes's collection.
(3) data permission group authorization function: different data permission groups is licensed to different user roles according to business demand.
Interface was externally served when the operation of two classes was provided:
1. data object registering functional: data are carried out the authority pre-service.Generate RCID and user and RCID corresponding tables according to the user ID in the parameter, role ID and each authentication property value ID, simultaneously RCID is stored in the data object.
2. data permission query function: the SQL clause that the Where condition is provided.Obtain the authorization message of this user's data object multidimensional property according to the user ID in the parameter and role ID, utilize the RCID accelerometer to resolve authority and describe and return the authority descriptive statement.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technology thereof, then the present invention also is intended to comprise these changes and modification interior.
Claims (9)
1. data warehouse authentication method based on object multidimensional property space may further comprise the steps:
(1), determines in total system, to be used for the attribute of the data object of data authentication in the configuration phase;
(2), create multidimensional property data permission group in the configuration phase;
(3), give the different different data permission groups of user role mandate in the configuration phase;
(4), when creating data object, generate the corresponding data object multidimensional property of user role value combination ID in the runtime;
(5), when visit data, whether meet the corresponding data permission group of this user role mandate setting according to data object multidimensional property value combination ID judgment data object in the runtime, if meet, then this user role can be visited this data object, otherwise, can not visit.
2. the data warehouse authentication method based on object multidimensional property space as claimed in claim 1, it is characterized in that: the attribute that step (1) is used for the data object of data authentication should be the whole life that is present in business datum from start to finish, and after data object was created, the value of these attributes was changeless.
3. the data warehouse authentication method based on object multidimensional property space as claimed in claim 1 is characterized in that: each data permission group of creating in the step (2) is the set of the different spans of each attribute.
4. the data warehouse authentication method based on object multidimensional property space as claimed in claim 3 is characterized in that: the whole authorities of span support of each attribute and two kinds of patterns of part authority in the step (2).
5. the data warehouse authentication method based on object multidimensional property space as claimed in claim 1, it is characterized in that: the data object multidimensional property value combination ID that generates in the step (4) is stored in one independently in the table, line item in this table is exactly the combination of the multidimensional property value of a data object, and in data object the Major key of record data object multidimensional property value combination ID.
6. the data warehouse authentication method based on object multidimensional property space as claimed in claim 1, it is characterized in that: step provides a group interface in (5), and authority relation is to the control that conducts interviews of data object between the data object multidimensional property value combination ID that generates in by checking procedure (4) in the runtime data permission group corresponding with the user role in the step (3).
7. the data warehouse authentication method based on object multidimensional property space as claimed in claim 1, it is characterized in that: when the service data object, if be used for the attribute of the data object of authentication change having taken place, will generate new data object multidimensional property value combination ID so simultaneously.
8. data warehouse authentication system based on object multidimensional property space comprises:
Authentication attribute determination module is used for determining to be used in total system the attribute of the data object of data authentication;
Bundle of permissions is provided with module, is used to create multidimensional property data permission group;
The bundle of permissions authorization module is used for to the different data permission group of different user role mandates;
Data object is created interface module, is used for when creating data object, generates the corresponding data object multidimensional property of user role value combination ID;
Data object access interface module is used for when visit data, whether meets the corresponding data permission group of this user role mandate setting according to data object multidimensional property value combination ID judgment data object.
9. the data warehouse authentication system based on object multidimensional property space as claimed in claim 8 is characterized in that: also comprise:
Multidimensional property data permission group information table module is used to store multidimensional property data permission group information;
Data object multidimensional property value combination ID table module is used to store the data message that data object multidimensional property value makes up ID.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010211350A CN101866360A (en) | 2010-06-28 | 2010-06-28 | Data warehouse authentication method and system based on object multidimensional property space |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010211350A CN101866360A (en) | 2010-06-28 | 2010-06-28 | Data warehouse authentication method and system based on object multidimensional property space |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101866360A true CN101866360A (en) | 2010-10-20 |
Family
ID=42958088
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201010211350A Pending CN101866360A (en) | 2010-06-28 | 2010-06-28 | Data warehouse authentication method and system based on object multidimensional property space |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101866360A (en) |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102479186A (en) * | 2010-11-23 | 2012-05-30 | 金蝶软件(中国)有限公司 | Method, device and system for integrating third-party service system authority into data processing system |
| CN102567432A (en) * | 2010-12-31 | 2012-07-11 | 中国移动通信集团福建有限公司 | Intelligent information adaptation method and device for the same |
| CN102929987A (en) * | 2012-10-19 | 2013-02-13 | 华为技术有限公司 | Search method and search device based on identifier combination |
| CN103853820A (en) * | 2014-02-20 | 2014-06-11 | 北京用友政务软件有限公司 | Data processing method and data processing system |
| WO2015043329A1 (en) * | 2013-09-30 | 2015-04-02 | 华为技术有限公司 | Data access method and system, and data warehouse |
| CN105989060A (en) * | 2015-02-09 | 2016-10-05 | 阿里巴巴集团控股有限公司 | Data management method and device |
| CN106997368A (en) * | 2016-01-26 | 2017-08-01 | 中兴通讯股份有限公司 | Data guard method and device in a kind of data warehouse |
| CN109361651A (en) * | 2018-07-23 | 2019-02-19 | 常州天正工业发展股份有限公司 | A kind of aggregation gateway |
| CN110113369A (en) * | 2019-06-27 | 2019-08-09 | 无锡华云数据技术服务有限公司 | A kind of method for authenticating of based role permission control |
| CN111680038A (en) * | 2020-05-18 | 2020-09-18 | 赵家乐 | Method for querying safe multidimensional data object set suitable for change and storage medium |
| CN111835792A (en) * | 2020-07-31 | 2020-10-27 | 海南中金德航科技股份有限公司 | System authentication role relationship system |
| CN112532474A (en) * | 2020-11-19 | 2021-03-19 | 用友网络科技股份有限公司 | Control method and device of data management system and readable storage medium |
| CN112989294A (en) * | 2019-12-16 | 2021-06-18 | 浙江宇视科技有限公司 | Authentication method, device, server and storage medium |
| CN113643462A (en) * | 2021-08-09 | 2021-11-12 | 厦门立林科技有限公司 | Access control management system and method based on aging permission group and storage medium |
| CN113780789A (en) * | 2021-09-02 | 2021-12-10 | 科大国创云网科技有限公司 | Unified data access service type fine-grained authority control method and system |
| CN116028963A (en) * | 2023-03-27 | 2023-04-28 | 美云智数科技有限公司 | Authority management method, device, electronic equipment and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1960252A (en) * | 2006-06-30 | 2007-05-09 | 南京联创科技股份有限公司 | Multidimension object access control method based on roles |
| CN1967560A (en) * | 2006-11-09 | 2007-05-23 | 华为技术有限公司 | Controlling method of business operations competence and generating method of relational database |
| CN101673375A (en) * | 2009-09-25 | 2010-03-17 | 金蝶软件(中国)有限公司 | Method and system for authorizing data of wage system |
| CN101729403A (en) * | 2009-12-10 | 2010-06-09 | 上海电机学院 | Access control method based on attribute and rule |
-
2010
- 2010-06-28 CN CN201010211350A patent/CN101866360A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1960252A (en) * | 2006-06-30 | 2007-05-09 | 南京联创科技股份有限公司 | Multidimension object access control method based on roles |
| CN1967560A (en) * | 2006-11-09 | 2007-05-23 | 华为技术有限公司 | Controlling method of business operations competence and generating method of relational database |
| CN101673375A (en) * | 2009-09-25 | 2010-03-17 | 金蝶软件(中国)有限公司 | Method and system for authorizing data of wage system |
| CN101729403A (en) * | 2009-12-10 | 2010-06-09 | 上海电机学院 | Access control method based on attribute and rule |
Cited By (25)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102479186A (en) * | 2010-11-23 | 2012-05-30 | 金蝶软件(中国)有限公司 | Method, device and system for integrating third-party service system authority into data processing system |
| CN102479186B (en) * | 2010-11-23 | 2014-09-17 | 金蝶软件(中国)有限公司 | Method, device and system for integrating third-party service system authority into data processing system |
| CN102567432A (en) * | 2010-12-31 | 2012-07-11 | 中国移动通信集团福建有限公司 | Intelligent information adaptation method and device for the same |
| CN102567432B (en) * | 2010-12-31 | 2014-11-05 | 中国移动通信集团福建有限公司 | Intelligent information adaptation method and device for the same |
| CN102929987A (en) * | 2012-10-19 | 2013-02-13 | 华为技术有限公司 | Search method and search device based on identifier combination |
| CN102929987B (en) * | 2012-10-19 | 2016-06-22 | 华为技术有限公司 | A kind of searching method based on identifier combination and device |
| WO2015043329A1 (en) * | 2013-09-30 | 2015-04-02 | 华为技术有限公司 | Data access method and system, and data warehouse |
| CN103853820A (en) * | 2014-02-20 | 2014-06-11 | 北京用友政务软件有限公司 | Data processing method and data processing system |
| CN103853820B (en) * | 2014-02-20 | 2017-05-03 | 北京用友政务软件有限公司 | Data processing method and data processing system |
| CN105989060A (en) * | 2015-02-09 | 2016-10-05 | 阿里巴巴集团控股有限公司 | Data management method and device |
| CN106997368A (en) * | 2016-01-26 | 2017-08-01 | 中兴通讯股份有限公司 | Data guard method and device in a kind of data warehouse |
| WO2017129138A1 (en) * | 2016-01-26 | 2017-08-03 | 中兴通讯股份有限公司 | Data protection method and apparatus in data warehouse |
| CN109361651A (en) * | 2018-07-23 | 2019-02-19 | 常州天正工业发展股份有限公司 | A kind of aggregation gateway |
| CN110113369A (en) * | 2019-06-27 | 2019-08-09 | 无锡华云数据技术服务有限公司 | A kind of method for authenticating of based role permission control |
| CN112989294A (en) * | 2019-12-16 | 2021-06-18 | 浙江宇视科技有限公司 | Authentication method, device, server and storage medium |
| CN112989294B (en) * | 2019-12-16 | 2022-08-23 | 浙江宇视科技有限公司 | Authentication method, device, server and storage medium |
| CN111680038A (en) * | 2020-05-18 | 2020-09-18 | 赵家乐 | Method for querying safe multidimensional data object set suitable for change and storage medium |
| CN111680038B (en) * | 2020-05-18 | 2021-08-31 | 江西师范大学 | Method for querying safe multidimensional data object set suitable for change and storage medium |
| CN111835792A (en) * | 2020-07-31 | 2020-10-27 | 海南中金德航科技股份有限公司 | System authentication role relationship system |
| CN112532474A (en) * | 2020-11-19 | 2021-03-19 | 用友网络科技股份有限公司 | Control method and device of data management system and readable storage medium |
| CN112532474B (en) * | 2020-11-19 | 2022-08-19 | 用友网络科技股份有限公司 | Control method and device of data management system and readable storage medium |
| CN113643462A (en) * | 2021-08-09 | 2021-11-12 | 厦门立林科技有限公司 | Access control management system and method based on aging permission group and storage medium |
| CN113780789A (en) * | 2021-09-02 | 2021-12-10 | 科大国创云网科技有限公司 | Unified data access service type fine-grained authority control method and system |
| CN116028963A (en) * | 2023-03-27 | 2023-04-28 | 美云智数科技有限公司 | Authority management method, device, electronic equipment and storage medium |
| CN116028963B (en) * | 2023-03-27 | 2023-06-30 | 美云智数科技有限公司 | Authority management method, device, electronic equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101866360A (en) | Data warehouse authentication method and system based on object multidimensional property space | |
| CN101226573B (en) | Method for controlling access authority of electric document | |
| EP2521066A1 (en) | Fine-grained relational database access-control policy enforcement using reverse queries | |
| US10430605B1 (en) | Differentially private database permissions system | |
| CN104573478A (en) | User authority management system of Web application | |
| US20080208918A1 (en) | Efficient data handling representations | |
| CN100565453C (en) | A kind of field basic business platform and construction method thereof based on member | |
| US11755768B2 (en) | Methods, apparatuses, and systems for data rights tracking | |
| US20140130180A1 (en) | Control of access to files | |
| CN108388604A (en) | User right data administrator, method and computer readable storage medium | |
| CN107025411B (en) | A kind of system and method for fine-grained data permission dynamic control | |
| CN107273061A (en) | A kind of solid state hard disc creates many namespace method and system | |
| US20060070124A1 (en) | Rights management | |
| US11734351B2 (en) | Predicted data use obligation match using data differentiators | |
| CN110109929A (en) | Date storage method, device and computer readable storage medium | |
| CN102542069B (en) | XML (Extensible Makeup Language) document access control method and system for XML database system | |
| US20190392657A1 (en) | Managing access control permission groups | |
| CN101408882A (en) | Method and system for searching authorisation document | |
| Long et al. | RACAC: An approach toward RBAC and ABAC combining access control | |
| US20200012808A1 (en) | System and method for managing permissions of users for a single data type column-oriented data structure | |
| Blanco et al. | Showing the Benefits of Applying a Model Driven Architecture for Developing Secure OLAP Applications. | |
| JP2008243089A (en) | Access right control program and access management device | |
| CN110991861A (en) | Multifunctional comprehensive financial management system | |
| CN114722250B (en) | Method for filtering horizontal and vertical permissions of data based on configuration | |
| Ma et al. | Extended RBAC model with task-constraint rules |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20101020 |