CN1708945A - 用于可能的安全性暴露的早期告警指示的查询返回数据分析方法 - Google Patents

用于可能的安全性暴露的早期告警指示的查询返回数据分析方法 Download PDF

Info

Publication number
CN1708945A
CN1708945A CNA2003801024412A CN200380102441A CN1708945A CN 1708945 A CN1708945 A CN 1708945A CN A2003801024412 A CNA2003801024412 A CN A2003801024412A CN 200380102441 A CN200380102441 A CN 200380102441A CN 1708945 A CN1708945 A CN 1708945A
Authority
CN
China
Prior art keywords
query
security
execution
user
queries
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CNA2003801024412A
Other languages
English (en)
Chinese (zh)
Inventor
理查德·D·德廷杰
理查德·J·史蒂文斯
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
International Business Machines Corp
Original Assignee
International Business Machines Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by International Business Machines Corp filed Critical International Business Machines Corp
Publication of CN1708945A publication Critical patent/CN1708945A/zh
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/577Assessing vulnerabilities and evaluating computer system security
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6227Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database where protection concerns the structure of data, e.g. records, types, queries
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99931Database or file accessing
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10TECHNICAL SUBJECTS COVERED BY FORMER USPC
    • Y10STECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y10S707/00Data processing: database and file management or data structures
    • Y10S707/99931Database or file accessing
    • Y10S707/99939Privileged access

Landscapes

  • Engineering & Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Databases & Information Systems (AREA)
  • Health & Medical Sciences (AREA)
  • Computing Systems (AREA)
  • Storage Device Security (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
CNA2003801024412A 2002-10-31 2003-10-17 用于可能的安全性暴露的早期告警指示的查询返回数据分析方法 Pending CN1708945A (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/284,944 2002-10-31
US10/284,944 US6928554B2 (en) 2002-10-31 2002-10-31 Method of query return data analysis for early warning indicators of possible security exposures

Publications (1)

Publication Number Publication Date
CN1708945A true CN1708945A (zh) 2005-12-14

Family

ID=32175039

Family Applications (1)

Application Number Title Priority Date Filing Date
CNA2003801024412A Pending CN1708945A (zh) 2002-10-31 2003-10-17 用于可能的安全性暴露的早期告警指示的查询返回数据分析方法

Country Status (8)

Country Link
US (1) US6928554B2 (enExample)
EP (1) EP1566010A4 (enExample)
JP (1) JP4378288B2 (enExample)
CN (1) CN1708945A (enExample)
AU (1) AU2003284279A1 (enExample)
CA (1) CA2503140A1 (enExample)
TW (1) TWI220207B (enExample)
WO (1) WO2004043000A1 (enExample)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110020079A (zh) * 2017-12-01 2019-07-16 北京京东尚科信息技术有限公司 数据处理方法、系统、电子设备及计算机可读存储介质
CN112085369A (zh) * 2020-09-02 2020-12-15 支付宝(杭州)信息技术有限公司 规则模型的安全性检测方法、装置、设备及系统

Families Citing this family (30)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020133606A1 (en) * 2001-03-13 2002-09-19 Fujitsu Limited Filtering apparatus, filtering method and computer product
US7398263B2 (en) * 2002-02-26 2008-07-08 International Business Machines Corporation Sequenced modification of multiple entities based on an abstract data representation
US8244702B2 (en) * 2002-02-26 2012-08-14 International Business Machines Corporation Modification of a data repository based on an abstract data representation
US6954748B2 (en) 2002-04-25 2005-10-11 International Business Machines Corporation Remote data access and integration of distributed data sources through data schema and query abstraction
JP4327481B2 (ja) * 2003-03-17 2009-09-09 株式会社日立製作所 データベースシステム、サーバ、問い合わせ投入方法及びデータ更新方法
US7054877B2 (en) * 2003-03-31 2006-05-30 International Business Machines Corporation Dealing with composite data through data model entities
US7146376B2 (en) * 2003-04-24 2006-12-05 International Business Machines Corporation Data abstraction model driven physical layout
US7290150B2 (en) * 2003-06-09 2007-10-30 International Business Machines Corporation Information integration across autonomous enterprises
US7899843B2 (en) * 2003-09-19 2011-03-01 International Business Machines Corporation Expanding the scope of an annotation to an entity level
US7152074B2 (en) * 2003-09-19 2006-12-19 International Business Machines Corporation Extensible framework supporting deposit of heterogenous data sources into a target data repository
DE20317062U1 (de) * 2003-11-06 2004-01-15 Siemens Ag Medizinische Einrichtung zur Diagnostik und/oder Therapie mit einer Bedienkonsole zur Steuerung von Anwendungen
US8122012B2 (en) * 2005-01-14 2012-02-21 International Business Machines Corporation Abstract record timeline rendering/display
US7676470B2 (en) * 2005-07-26 2010-03-09 International Business Machines Corporation Self discovering adaptive security system and method
US8321387B2 (en) * 2005-07-28 2012-11-27 International Business Machines Corporation Restricting access to sensitive data
US7752205B2 (en) * 2005-09-26 2010-07-06 Bea Systems, Inc. Method and system for interacting with a virtual content repository
US7953734B2 (en) * 2005-09-26 2011-05-31 Oracle International Corporation System and method for providing SPI extensions for content management system
US8713141B1 (en) 2005-11-29 2014-04-29 AT & T Intellectual Property II, LP System and method for monitoring network activity
US8069153B2 (en) 2005-12-02 2011-11-29 Salesforce.Com, Inc. Systems and methods for securing customer data in a multi-tenant environment
US7774297B2 (en) * 2005-12-30 2010-08-10 Honeywell International Inc. System and method for network security
US8693021B2 (en) * 2007-01-23 2014-04-08 Xerox Corporation Preemptive redirection in printing systems
US20090182707A1 (en) * 2008-01-10 2009-07-16 Dbix Corporation Database changeset management system and method
US20090297043A1 (en) * 2008-05-28 2009-12-03 International Business Machines Corporation Pattern scanner and editor for security audit systems
US10430430B2 (en) 2010-03-15 2019-10-01 Vmware, Inc. Computer relational database method and system having role based access control
US8881289B2 (en) 2011-10-18 2014-11-04 Mcafee, Inc. User behavioral risk assessment
US20140230070A1 (en) * 2013-02-14 2014-08-14 Microsoft Corporation Auditing of sql queries using select triggers
US10339133B2 (en) 2013-11-11 2019-07-02 International Business Machines Corporation Amorphous data preparation for efficient query formulation
US9471409B2 (en) 2015-01-24 2016-10-18 International Business Machines Corporation Processing of PDSE extended sharing violations among sysplexes with a shared DASD
CN107636671A (zh) * 2015-03-26 2018-01-26 诺基亚通信公司 优化通信中的数据检测
US10169595B2 (en) 2016-05-20 2019-01-01 International Business Machines Corporation Detecting malicious data access in a distributed environment
US12056236B2 (en) 2021-03-24 2024-08-06 International Business Machines Corporation Defending against adversarial queries in a data governance system

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH087709B2 (ja) * 1989-05-15 1996-01-29 インターナシヨナル・ビジネス・マシーンズ・コーポレーシヨン アクセス特権制御方法及びシステム
US5560008A (en) * 1989-05-15 1996-09-24 International Business Machines Corporation Remote authentication and authorization in a distributed data processing system
US5204961A (en) * 1990-06-25 1993-04-20 Digital Equipment Corporation Computer network operating with multilevel hierarchical security with selectable common trust realms and corresponding security protocols
JPH0799497B2 (ja) * 1990-12-14 1995-10-25 インターナショナル・ビジネス・マシーンズ・コーポレイション ソフトウェアの使用を管理するための装置及び方法
US5261102A (en) * 1991-03-28 1993-11-09 International Business Machines Corporation System for determining direct and indirect user access privileges to data base objects
US5577209A (en) * 1991-07-11 1996-11-19 Itt Corporation Apparatus and method for providing multi-level security for communication among computers and terminals on a network
US5481700A (en) * 1991-09-27 1996-01-02 The Mitre Corporation Apparatus for design of a multilevel secure database management system based on a multilevel logic programming system
US5355474A (en) 1991-09-27 1994-10-11 Thuraisngham Bhavani M System for multilevel secure database management using a knowledge base with release-based and other security constraints for query, response and update modification
US5694590A (en) * 1991-09-27 1997-12-02 The Mitre Corporation Apparatus and method for the detection of security violations in multilevel secure databases
CH684404A5 (de) * 1991-11-27 1994-09-15 Ferrum Ag Vorrichtung zum Zuführen von Behältern zu einer Verschliesseinrichtung.
US5572673A (en) * 1993-12-01 1996-11-05 Sybase, Inc. Secure multi-level system for executing stored procedures
US5859966A (en) * 1995-10-10 1999-01-12 Data General Corporation Security system for computer systems
US5768532A (en) * 1996-06-17 1998-06-16 International Business Machines Corporation Method and distributed database file system for implementing self-describing distributed file objects
US6226745B1 (en) * 1997-03-21 2001-05-01 Gio Wiederhold Information sharing system and method with requester dependent sharing and security rules
US6112181A (en) * 1997-11-06 2000-08-29 Intertrust Technologies Corporation Systems and methods for matching, selecting, narrowcasting, and/or classifying based on rights management and/or other information
US6272488B1 (en) * 1998-04-01 2001-08-07 International Business Machines Corporation Managing results of federated searches across heterogeneous datastores with a federated collection object

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110020079A (zh) * 2017-12-01 2019-07-16 北京京东尚科信息技术有限公司 数据处理方法、系统、电子设备及计算机可读存储介质
CN112085369A (zh) * 2020-09-02 2020-12-15 支付宝(杭州)信息技术有限公司 规则模型的安全性检测方法、装置、设备及系统
CN112085369B (zh) * 2020-09-02 2024-04-23 支付宝(杭州)信息技术有限公司 规则模型的安全性检测方法、装置、设备及系统

Also Published As

Publication number Publication date
AU2003284279A1 (en) 2004-06-07
EP1566010A4 (en) 2007-04-25
US20040088561A1 (en) 2004-05-06
TW200406688A (en) 2004-05-01
JP4378288B2 (ja) 2009-12-02
WO2004043000A1 (en) 2004-05-21
TWI220207B (en) 2004-08-11
JP2006505062A (ja) 2006-02-09
US6928554B2 (en) 2005-08-09
CA2503140A1 (en) 2004-05-21
EP1566010A1 (en) 2005-08-24

Similar Documents

Publication Publication Date Title
CN1708945A (zh) 用于可能的安全性暴露的早期告警指示的查询返回数据分析方法
CN101454779B (zh) 基于搜索的应用开发框架
US8583624B2 (en) Research rapidity and efficiency improvement by analysis of research artifact similarity
CN100336059C (zh) 智能使用用户数据以抢先阻止违反访问控制的查询的执行
US20060143464A1 (en) Automatic enforcement of obligations according to a data-handling policy
CN103329140B (zh) 基于用户隐私偏好创建访问控制策略
US20060206468A1 (en) Rule application management in an abstract database
JP2010518467A (ja) エンタープライズ・サーチ・システムをカスタム・アクセス制御アプリケーション・プログラミング・インターフェースと統合する方法
Foyle et al. IBM Watson content analytics: discovering actionable insight from your content
CN1705945A (zh) 全局查询相关属性
CN1508739A (zh) 用于管理资源的系统和方法
WO2008109980A1 (en) Entity recommendation system using restricted information tagged to selected entities
CN1670746A (zh) 名册控制方法
US8458215B2 (en) Dynamic functional module availability
US20090259622A1 (en) Classification of Data Based on Previously Classified Data
US20040083204A1 (en) Query modification analysis
US11372859B2 (en) Efficiently supporting value style access of MOBs stored in SQL LOB column by providing value based semantics for LOBs in RDBMS
CN101030207A (zh) 用于使输入数据和已有数据的视觉比较容易的系统和方法
US9679031B2 (en) Composing abstract queries for delegated user roles
US7991788B2 (en) Abstract data model filters

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C12 Rejection of a patent application after its publication
RJ01 Rejection of invention patent application after publication

Open date: 20051214