CN1708945A - 用于可能的安全性暴露的早期告警指示的查询返回数据分析方法 - Google Patents
用于可能的安全性暴露的早期告警指示的查询返回数据分析方法 Download PDFInfo
- Publication number
- CN1708945A CN1708945A CNA2003801024412A CN200380102441A CN1708945A CN 1708945 A CN1708945 A CN 1708945A CN A2003801024412 A CNA2003801024412 A CN A2003801024412A CN 200380102441 A CN200380102441 A CN 200380102441A CN 1708945 A CN1708945 A CN 1708945A
- Authority
- CN
- China
- Prior art keywords
- query
- security
- execution
- user
- queries
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/577—Assessing vulnerabilities and evaluating computer system security
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6227—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database where protection concerns the structure of data, e.g. records, types, queries
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y10—TECHNICAL SUBJECTS COVERED BY FORMER USPC
- Y10S—TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y10S707/00—Data processing: database and file management or data structures
- Y10S707/99931—Database or file accessing
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y10—TECHNICAL SUBJECTS COVERED BY FORMER USPC
- Y10S—TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y10S707/00—Data processing: database and file management or data structures
- Y10S707/99931—Database or file accessing
- Y10S707/99939—Privileged access
Landscapes
- Engineering & Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Databases & Information Systems (AREA)
- Health & Medical Sciences (AREA)
- Computing Systems (AREA)
- Storage Device Security (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US10/284,944 | 2002-10-31 | ||
| US10/284,944 US6928554B2 (en) | 2002-10-31 | 2002-10-31 | Method of query return data analysis for early warning indicators of possible security exposures |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1708945A true CN1708945A (zh) | 2005-12-14 |
Family
ID=32175039
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2003801024412A Pending CN1708945A (zh) | 2002-10-31 | 2003-10-17 | 用于可能的安全性暴露的早期告警指示的查询返回数据分析方法 |
Country Status (8)
| Country | Link |
|---|---|
| US (1) | US6928554B2 (enExample) |
| EP (1) | EP1566010A4 (enExample) |
| JP (1) | JP4378288B2 (enExample) |
| CN (1) | CN1708945A (enExample) |
| AU (1) | AU2003284279A1 (enExample) |
| CA (1) | CA2503140A1 (enExample) |
| TW (1) | TWI220207B (enExample) |
| WO (1) | WO2004043000A1 (enExample) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110020079A (zh) * | 2017-12-01 | 2019-07-16 | 北京京东尚科信息技术有限公司 | 数据处理方法、系统、电子设备及计算机可读存储介质 |
| CN112085369A (zh) * | 2020-09-02 | 2020-12-15 | 支付宝(杭州)信息技术有限公司 | 规则模型的安全性检测方法、装置、设备及系统 |
Families Citing this family (30)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020133606A1 (en) * | 2001-03-13 | 2002-09-19 | Fujitsu Limited | Filtering apparatus, filtering method and computer product |
| US7398263B2 (en) * | 2002-02-26 | 2008-07-08 | International Business Machines Corporation | Sequenced modification of multiple entities based on an abstract data representation |
| US8244702B2 (en) * | 2002-02-26 | 2012-08-14 | International Business Machines Corporation | Modification of a data repository based on an abstract data representation |
| US6954748B2 (en) | 2002-04-25 | 2005-10-11 | International Business Machines Corporation | Remote data access and integration of distributed data sources through data schema and query abstraction |
| JP4327481B2 (ja) * | 2003-03-17 | 2009-09-09 | 株式会社日立製作所 | データベースシステム、サーバ、問い合わせ投入方法及びデータ更新方法 |
| US7054877B2 (en) * | 2003-03-31 | 2006-05-30 | International Business Machines Corporation | Dealing with composite data through data model entities |
| US7146376B2 (en) * | 2003-04-24 | 2006-12-05 | International Business Machines Corporation | Data abstraction model driven physical layout |
| US7290150B2 (en) * | 2003-06-09 | 2007-10-30 | International Business Machines Corporation | Information integration across autonomous enterprises |
| US7899843B2 (en) * | 2003-09-19 | 2011-03-01 | International Business Machines Corporation | Expanding the scope of an annotation to an entity level |
| US7152074B2 (en) * | 2003-09-19 | 2006-12-19 | International Business Machines Corporation | Extensible framework supporting deposit of heterogenous data sources into a target data repository |
| DE20317062U1 (de) * | 2003-11-06 | 2004-01-15 | Siemens Ag | Medizinische Einrichtung zur Diagnostik und/oder Therapie mit einer Bedienkonsole zur Steuerung von Anwendungen |
| US8122012B2 (en) * | 2005-01-14 | 2012-02-21 | International Business Machines Corporation | Abstract record timeline rendering/display |
| US7676470B2 (en) * | 2005-07-26 | 2010-03-09 | International Business Machines Corporation | Self discovering adaptive security system and method |
| US8321387B2 (en) * | 2005-07-28 | 2012-11-27 | International Business Machines Corporation | Restricting access to sensitive data |
| US7752205B2 (en) * | 2005-09-26 | 2010-07-06 | Bea Systems, Inc. | Method and system for interacting with a virtual content repository |
| US7953734B2 (en) * | 2005-09-26 | 2011-05-31 | Oracle International Corporation | System and method for providing SPI extensions for content management system |
| US8713141B1 (en) | 2005-11-29 | 2014-04-29 | AT & T Intellectual Property II, LP | System and method for monitoring network activity |
| US8069153B2 (en) | 2005-12-02 | 2011-11-29 | Salesforce.Com, Inc. | Systems and methods for securing customer data in a multi-tenant environment |
| US7774297B2 (en) * | 2005-12-30 | 2010-08-10 | Honeywell International Inc. | System and method for network security |
| US8693021B2 (en) * | 2007-01-23 | 2014-04-08 | Xerox Corporation | Preemptive redirection in printing systems |
| US20090182707A1 (en) * | 2008-01-10 | 2009-07-16 | Dbix Corporation | Database changeset management system and method |
| US20090297043A1 (en) * | 2008-05-28 | 2009-12-03 | International Business Machines Corporation | Pattern scanner and editor for security audit systems |
| US10430430B2 (en) | 2010-03-15 | 2019-10-01 | Vmware, Inc. | Computer relational database method and system having role based access control |
| US8881289B2 (en) | 2011-10-18 | 2014-11-04 | Mcafee, Inc. | User behavioral risk assessment |
| US20140230070A1 (en) * | 2013-02-14 | 2014-08-14 | Microsoft Corporation | Auditing of sql queries using select triggers |
| US10339133B2 (en) | 2013-11-11 | 2019-07-02 | International Business Machines Corporation | Amorphous data preparation for efficient query formulation |
| US9471409B2 (en) | 2015-01-24 | 2016-10-18 | International Business Machines Corporation | Processing of PDSE extended sharing violations among sysplexes with a shared DASD |
| CN107636671A (zh) * | 2015-03-26 | 2018-01-26 | 诺基亚通信公司 | 优化通信中的数据检测 |
| US10169595B2 (en) | 2016-05-20 | 2019-01-01 | International Business Machines Corporation | Detecting malicious data access in a distributed environment |
| US12056236B2 (en) | 2021-03-24 | 2024-08-06 | International Business Machines Corporation | Defending against adversarial queries in a data governance system |
Family Cites Families (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPH087709B2 (ja) * | 1989-05-15 | 1996-01-29 | インターナシヨナル・ビジネス・マシーンズ・コーポレーシヨン | アクセス特権制御方法及びシステム |
| US5560008A (en) * | 1989-05-15 | 1996-09-24 | International Business Machines Corporation | Remote authentication and authorization in a distributed data processing system |
| US5204961A (en) * | 1990-06-25 | 1993-04-20 | Digital Equipment Corporation | Computer network operating with multilevel hierarchical security with selectable common trust realms and corresponding security protocols |
| JPH0799497B2 (ja) * | 1990-12-14 | 1995-10-25 | インターナショナル・ビジネス・マシーンズ・コーポレイション | ソフトウェアの使用を管理するための装置及び方法 |
| US5261102A (en) * | 1991-03-28 | 1993-11-09 | International Business Machines Corporation | System for determining direct and indirect user access privileges to data base objects |
| US5577209A (en) * | 1991-07-11 | 1996-11-19 | Itt Corporation | Apparatus and method for providing multi-level security for communication among computers and terminals on a network |
| US5481700A (en) * | 1991-09-27 | 1996-01-02 | The Mitre Corporation | Apparatus for design of a multilevel secure database management system based on a multilevel logic programming system |
| US5355474A (en) | 1991-09-27 | 1994-10-11 | Thuraisngham Bhavani M | System for multilevel secure database management using a knowledge base with release-based and other security constraints for query, response and update modification |
| US5694590A (en) * | 1991-09-27 | 1997-12-02 | The Mitre Corporation | Apparatus and method for the detection of security violations in multilevel secure databases |
| CH684404A5 (de) * | 1991-11-27 | 1994-09-15 | Ferrum Ag | Vorrichtung zum Zuführen von Behältern zu einer Verschliesseinrichtung. |
| US5572673A (en) * | 1993-12-01 | 1996-11-05 | Sybase, Inc. | Secure multi-level system for executing stored procedures |
| US5859966A (en) * | 1995-10-10 | 1999-01-12 | Data General Corporation | Security system for computer systems |
| US5768532A (en) * | 1996-06-17 | 1998-06-16 | International Business Machines Corporation | Method and distributed database file system for implementing self-describing distributed file objects |
| US6226745B1 (en) * | 1997-03-21 | 2001-05-01 | Gio Wiederhold | Information sharing system and method with requester dependent sharing and security rules |
| US6112181A (en) * | 1997-11-06 | 2000-08-29 | Intertrust Technologies Corporation | Systems and methods for matching, selecting, narrowcasting, and/or classifying based on rights management and/or other information |
| US6272488B1 (en) * | 1998-04-01 | 2001-08-07 | International Business Machines Corporation | Managing results of federated searches across heterogeneous datastores with a federated collection object |
-
2002
- 2002-10-31 US US10/284,944 patent/US6928554B2/en not_active Expired - Fee Related
-
2003
- 2003-07-24 TW TW092120280A patent/TWI220207B/zh not_active IP Right Cessation
- 2003-10-17 EP EP03776459A patent/EP1566010A4/en not_active Withdrawn
- 2003-10-17 CA CA002503140A patent/CA2503140A1/en not_active Abandoned
- 2003-10-17 WO PCT/US2003/033135 patent/WO2004043000A1/en not_active Ceased
- 2003-10-17 JP JP2004550039A patent/JP4378288B2/ja not_active Expired - Fee Related
- 2003-10-17 AU AU2003284279A patent/AU2003284279A1/en not_active Abandoned
- 2003-10-17 CN CNA2003801024412A patent/CN1708945A/zh active Pending
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110020079A (zh) * | 2017-12-01 | 2019-07-16 | 北京京东尚科信息技术有限公司 | 数据处理方法、系统、电子设备及计算机可读存储介质 |
| CN112085369A (zh) * | 2020-09-02 | 2020-12-15 | 支付宝(杭州)信息技术有限公司 | 规则模型的安全性检测方法、装置、设备及系统 |
| CN112085369B (zh) * | 2020-09-02 | 2024-04-23 | 支付宝(杭州)信息技术有限公司 | 规则模型的安全性检测方法、装置、设备及系统 |
Also Published As
| Publication number | Publication date |
|---|---|
| AU2003284279A1 (en) | 2004-06-07 |
| EP1566010A4 (en) | 2007-04-25 |
| US20040088561A1 (en) | 2004-05-06 |
| TW200406688A (en) | 2004-05-01 |
| JP4378288B2 (ja) | 2009-12-02 |
| WO2004043000A1 (en) | 2004-05-21 |
| TWI220207B (en) | 2004-08-11 |
| JP2006505062A (ja) | 2006-02-09 |
| US6928554B2 (en) | 2005-08-09 |
| CA2503140A1 (en) | 2004-05-21 |
| EP1566010A1 (en) | 2005-08-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1708945A (zh) | 用于可能的安全性暴露的早期告警指示的查询返回数据分析方法 | |
| CN101454779B (zh) | 基于搜索的应用开发框架 | |
| US8583624B2 (en) | Research rapidity and efficiency improvement by analysis of research artifact similarity | |
| CN100336059C (zh) | 智能使用用户数据以抢先阻止违反访问控制的查询的执行 | |
| US20060143464A1 (en) | Automatic enforcement of obligations according to a data-handling policy | |
| CN103329140B (zh) | 基于用户隐私偏好创建访问控制策略 | |
| US20060206468A1 (en) | Rule application management in an abstract database | |
| JP2010518467A (ja) | エンタープライズ・サーチ・システムをカスタム・アクセス制御アプリケーション・プログラミング・インターフェースと統合する方法 | |
| Foyle et al. | IBM Watson content analytics: discovering actionable insight from your content | |
| CN1705945A (zh) | 全局查询相关属性 | |
| CN1508739A (zh) | 用于管理资源的系统和方法 | |
| WO2008109980A1 (en) | Entity recommendation system using restricted information tagged to selected entities | |
| CN1670746A (zh) | 名册控制方法 | |
| US8458215B2 (en) | Dynamic functional module availability | |
| US20090259622A1 (en) | Classification of Data Based on Previously Classified Data | |
| US20040083204A1 (en) | Query modification analysis | |
| US11372859B2 (en) | Efficiently supporting value style access of MOBs stored in SQL LOB column by providing value based semantics for LOBs in RDBMS | |
| CN101030207A (zh) | 用于使输入数据和已有数据的视觉比较容易的系统和方法 | |
| US9679031B2 (en) | Composing abstract queries for delegated user roles | |
| US7991788B2 (en) | Abstract data model filters |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Open date: 20051214 |