CN1967552A - Data protecting method based on target labeling and operation device - Google Patents
Data protecting method based on target labeling and operation device Download PDFInfo
- Publication number
- CN1967552A CN1967552A CNA2005101148399A CN200510114839A CN1967552A CN 1967552 A CN1967552 A CN 1967552A CN A2005101148399 A CNA2005101148399 A CN A2005101148399A CN 200510114839 A CN200510114839 A CN 200510114839A CN 1967552 A CN1967552 A CN 1967552A
- Authority
- CN
- China
- Prior art keywords
- data
- user
- safety label
- secure
- secure license
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention provides an object-label-based data protection method and the execution device, including the following steps: according to user information, generate user's security licensing; when generate data, grant the data security labels according to user's security licensing; during accessing data, determine whether the user has the authority to access the data according to the user's security licensing and the data security labels. It improves the problem and deficiency of the existing data protection methods, and provides more security for the data.
Description
Technical field
The present invention relates to the data security protecting technology, it is particularly related to data protection technology in a kind of data base management system (DBMS) the multi-user (DBMS), is a kind of data guard method and actuating unit based on object tag concretely.
Background technology
Data security is a problem that receives much concern in the Database Systems always, and the data security in the database is meant the data in the protected data storehouse, makes it avoid destroying, change or leak.Data guard method is meant the measure of being taked for protected data safety.
Common data guard method is:
Autonomous access control: give the user and data are carried out authorities such as reading and writing, modification and deletion, the user who has authority can operate accordingly to data.The shortcoming of the method is: the granularity of data being carried out access control is table level or row level, and granularity is thicker.
Summary of the invention
The objective of the invention is to, a kind of data guard method and actuating unit based on object tag is provided, in order to improve the existing problem and shortage of above-mentioned available data guard method, for data provide higher security.
Technical scheme of the present invention is: a kind of data guard method based on object tag, and it may further comprise the steps:
Generate user's secure license according to user profile;
When generating data, give this data security label according to the user's who generates data secure license;
When visit data, judge according to user's the secure license and the safety label of accessed data whether the user of visit data has the authority of these data of visit.
Described secure license according to user profile generation user is meant: according to user's different identity, give the secure license of user's different stage.
According to the inventive method, a user has a plurality of secure licenses simultaneously, and a plurality of secure licenses that the user has have constituted this user's secure license space.The safety label of data and data are inseparable.The data that the user generated of different identity have the safety label of different stage; The user of different identity can visit the data of the safety label with different stage.
Described visit data comprises reading of data; When read data, require user's secure license domination or equal the safety label of data.
Described visit data comprises to be revised or deleted data; Revising or during deleted data, requiring user's secure license to equal the safety label of data.
Described visit data comprises the generation new data; When generating new data, the safety label that requires user's secure license will be stored the table of this new data arranges or the two equates.
The present invention also provides a kind of data protection actuating unit based on object tag, in the data base management system (DBMS) of being made up of server end and client, comprising:
The secure license generating apparatus is used for the secure license according to user profile generation user;
The safety label generating apparatus is used for giving this data security label according to the user's who generates data secure license;
Data access control device is used for judging according to user's the secure license and the safety label of accessed data whether the user of visit data has the authority of these data of visit.
Described data access control device comprises:
Data-reading unit is used for reading of data and requires user's secure license domination or equal the safety label of data;
Data modification or delete cells are used to revise or deleted data and require user's secure license to equal the safety label of data;
The safety label that new data generation unit, the secure license that is used to generate new data and require the user will be stored the table of this new data is arranged or the two equates.
Beneficial effect of the present invention is: by a kind of data guard method and actuating unit based on object tag is provided, in order to meet the rights management mechanism in the real data base management system, be convenient to understand and use; On thinner granularity (row level), provide protecting data, improved safety of data.
Description of drawings
Fig. 1 is the structured flowchart of data base management system (DBMS);
Fig. 2 is the structured flowchart of actuating unit of the present invention;
Fig. 3 is a software configuration synoptic diagram of the present invention;
Fig. 4 is the structured flowchart of actuating unit embodiment of the present invention.
Embodiment
Below in conjunction with description of drawings the specific embodiment of the present invention.Be illustrated in figure 1 as the structured flowchart of data base management system (DBMS), its suitable platform is:
One, server end
Hardware environment:
Above or the compatible type of CPU:Pentium IV;
Internal memory: more than the 256M, more than the suggestion 512M;
Hard disk: 1G free space at least.NTFS or EXT-3 etc. are used in the file system suggestion.
Software environment: Windows 2000, Windows XP, Windows 2003, Red Hat, red flag Linux etc.
Two, client:
Hardware environment:
Above or the compatible type of CPU:Pentium III;
Internal memory: more than the 128M;
Hard disk: 100M free space at least.
Software environment: Windows 2000, Windows XP, Windows 2003, Red Hat, red flag Linux etc.
Three, this data base management system (DBMS) function:
Wherein, the KingbaseES system is made of a collection of software product that with RDBMS is core, and its product structure as shown in Figure 1.
In above-mentioned KingbaseES 6 systems, apparatus of the present invention have been realized.That is: a kind of data protection actuating unit (as shown in Figure 2) based on object tag, in the data base management system (DBMS) of being made up of server end and client, it comprises:
The secure license generating apparatus is used for the secure license according to user profile generation user;
The safety label generating apparatus is used for giving this data security label according to the user's who generates data secure license;
Data access control device is used for judging according to user's the secure license and the safety label of accessed data whether the user of visit data has the authority of these data of visit.
Described data access control device comprises:
Data-reading unit is used for reading of data and requires user's secure license domination or equal the safety label of data;
Data modification or delete cells are used to revise or deleted data and require user's secure license to equal the safety label of data;
The safety label that new data generation unit, the secure license that is used to generate new data and require the user will be stored the table of this new data is arranged or the two equates.
The present invention has in fact also proposed a kind of based on the data guard method of small grain size more.This method comprises:
Give the step of user security licence, according to user's different identity, give the secure license of its different stage, a user can have a plurality of secure licenses simultaneously, and a plurality of secure licenses that the user has have constituted user's licence space.
Give the step of data security label, when data generate, according to the employed secure license of user that generates these data, give the safety label of data, the safety label of data and data are inseparable.
The step of user accesses data judges according to the safety label of employed secure license of user and accessed data whether the user has the authority of these data of visit.
As seen it comprises the content of following three aspects:
The management of user security licence;
The management of data security label;
The management of data access control;
The management of user security licence at first is described.
According to user's different identity, give the secure license of its different stage, a user can have a plurality of secure licenses simultaneously, and a plurality of secure licenses that the user has have constituted user's licence space.The user at a time can only use a secure license.
The user also can have a plurality of read-write privileges when having a plurality of secure licenses.
For example:
User user1 given a secure license in following statement: ' 1. secrets are organized in sale: the continent district ':
Select add_user_label (' user1 ', ' sale group 1 ', ' secret: the continent district ')
Following statement is given user user1 one and is write privilege: ' 1. top secrets are organized in sale: continent district, Hong Kong district ':
Select add_user_privilege (' user1 ', ' w ', ' sale group 1 ', ' top secret: continent district, Hong Kong district ')
The management of data security label is described then.
The safety label that data had is when data generate, and gives these data by system according to the user's who generates these data secure license.In the moment of data from generating, its label and this data are exactly inseparable, even data are exported to outside the system, also the safety label of data can be derived simultaneously.
The management of data access control is described at last.
When user accesses data, according to the difference of access mode, needed secure license is also inequality:
During read data, require user's secure license domination or equal the safety label of data; If the safety label of data is arranged or equaled to user's secure license, then this user has the authority of reading these data, otherwise, judge user's the safety label that data were arranged or equaled to privilege whether of reading, if, then this user has the authority of reading these data, otherwise these data are sightless for this user.
For example: if the data among the table table1 are as follows:
Table 1
| Rowlabel | Count |
| 1. secrets are organized in sale: the continent district | 2000 |
| 1. secrets are organized in sale: the continent district | 1000 |
| 1. top secrets are organized in sale: continent district, Hong Kong district | 5000 |
The secure license of user user1 is ' 1. secrets are organized in sale: the continent district ', so user user1 is when reading this table, can only reading of data ' 2000 ' and ' 1000 ', can not know the existence of data ' 5000 '.
Revise or during deleted data, require user's secure license to equal the safety label of data; If user's secure license equals the safety label of data, then this user can revise or delete this data, otherwise this user does not revise or delete the authority of these data.
For example: the secure license of user user1 is ' 1. secrets are organized in sale: the continent district ', and user user1 can only revise or delete the data ' 1000 ' in the table so, can not revise or deleted data ' 2000 ' and ' 5000 '.
When generating new data, the safety label that requires user's secure license will be stored the table of this new data arranges or the two equates; If satisfy this condition, then the user can generate new data, otherwise, judge writing privilege and whether satisfying condition of user, if satisfy, then the user can generate new data, otherwise this user is the authority of generation new data in this table not.
For example:
If the safety label of table table1 is: ' 1. secrets are organized in sale: the continent district ' and ' 1. top secrets are organized in sale: the continent district, Hong Kong district ', the secure license of user user1 is ' 1. secrets are organized in sale: the continent district ', then user user1 can generate new data in table table1, and the safety label of new data is ' 1. secrets are organized in sale: the continent district '.
If the safety label of table table1 is: ' 1. secrets are organized in sale: the continent district ' and ' 1. top secrets are organized in sale: the continent district, Hong Kong district ', and the secure license of user user1 is ' 1. secrets are organized in sale: the continent district ', and this user does not write privilege, and then this user can not generate new data in table table1.
A kind of data guard method and the system (shown in Fig. 3,4) based on object tag that realizes in KingbaseES 6 systems also comprises:
Safety label (secure license) administrative unit is used for the needed safety label (secure license) of giving data in the generation system;
User security license management unit is used for the secure license of leading subscriber, the user's that can increase or delete secure license.
The user privilege administrative unit, the user management user privilege can be user's increase or deletion read-write privilege.
Data security tag control unit is used for giving the data security label when generating data.
The data access control module is used to control the accessing operation to data, according to the safety label of employed secure license of user and accessed data, determines whether this user has the authority of these data of visit.
Wherein, safety label (secure license) administrative unit is responsible for needed safety label (secure license) in the generation system.Safety label (secure license) is made up of level of security and safe range two parts, and each safety label (secure license) all is subordinated to a secure group, and the safety label (secure license) in the different secure group is incomparable.
And, have only security of system person to have the right to carry out following operation:
1, the generation of safety label (secure license);
2, the management of user security licence;
3, the management of user privilege.
The present invention has the following advantages:
1, meets rights management mechanism in the reality, be convenient to understand and use;
2, on thinner granularity (row level), provide protecting data, improved safety of data.
Above embodiment only is used to illustrate the present invention, but not is used to limit the present invention.
Claims (10)
1. data guard method based on object tag is characterized in that may further comprise the steps:
Generate user's secure license according to user profile;
When generating data, give this data security label according to the user's who generates data secure license;
When visit data, judge according to user's the secure license and the safety label of accessed data whether the user of visit data has the authority of these data of visit.
2. method according to claim 1 is characterized in that, described secure license according to user profile generation user is meant: according to user's different identity, give the secure license of user's different stage.
3. method according to claim 1 is characterized in that, a user has a plurality of secure licenses simultaneously, and a plurality of secure licenses that the user has have constituted this user's secure license space.
4. method according to claim 1 is characterized in that the safety label of data and data are inseparable.
5. method according to claim 2 is characterized in that the data that the user generated of different identity have the safety label of different stage; The user of different identity can visit the data of the safety label with different stage.
6. according to any described method of claim 1 to 5, it is characterized in that described visit data comprises reading of data; When read data, require user's secure license domination or equal the safety label of data.
7. according to any described method of claim 1 to 5, it is characterized in that described visit data comprises to be revised or deleted data; Revising or during deleted data, requiring user's secure license to equal the safety label of data.
8. according to any described method of claim 1 to 5, it is characterized in that comprising: described visit data comprises the generation new data; When generating new data, the safety label that requires user's secure license will be stored the table of this new data arranges or the two equates.
9. data protection actuating unit based on object tag in the data base management system (DBMS) of being made up of server end and client, is characterized in that comprising:
The secure license generating apparatus is used for the secure license according to user profile generation user;
The safety label generating apparatus is used for giving this data security label according to the user's who generates data secure license;
Data access control device is used for judging according to user's the secure license and the safety label of accessed data whether the user of visit data has the authority of these data of visit.
10. the data protection actuating unit based on object tag according to claim 9 is characterized in that described data access control device comprises:
Data-reading unit is used for reading of data and requires user's secure license domination or equal the safety label of data;
Data modification or delete cells are used to revise or deleted data and require user's secure license to equal the safety label of data;
The safety label that new data generation unit, the secure license that is used to generate new data and require the user will be stored the table of this new data is arranged or the two equates.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2005101148399A CN1967552A (en) | 2005-11-17 | 2005-11-17 | Data protecting method based on target labeling and operation device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2005101148399A CN1967552A (en) | 2005-11-17 | 2005-11-17 | Data protecting method based on target labeling and operation device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1967552A true CN1967552A (en) | 2007-05-23 |
Family
ID=38076315
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2005101148399A Pending CN1967552A (en) | 2005-11-17 | 2005-11-17 | Data protecting method based on target labeling and operation device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1967552A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104504340A (en) * | 2014-12-25 | 2015-04-08 | 国家电网公司 | Power system security tag based mandatory access control method |
| CN104995598A (en) * | 2013-01-22 | 2015-10-21 | 亚马逊技术有限公司 | Use of freeform metadata for access control |
| CN110995657A (en) * | 2019-11-11 | 2020-04-10 | 广州市品高软件股份有限公司 | Data access method, server and system based on data label |
| CN113779609A (en) * | 2021-09-22 | 2021-12-10 | 北方健康医疗大数据科技有限公司 | Data management method and device, electronic equipment and storage medium |
-
2005
- 2005-11-17 CN CNA2005101148399A patent/CN1967552A/en active Pending
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104995598A (en) * | 2013-01-22 | 2015-10-21 | 亚马逊技术有限公司 | Use of freeform metadata for access control |
| CN104504340A (en) * | 2014-12-25 | 2015-04-08 | 国家电网公司 | Power system security tag based mandatory access control method |
| CN104504340B (en) * | 2014-12-25 | 2017-07-14 | 国家电网公司 | A kind of forced access control method based on power system security label |
| CN110995657A (en) * | 2019-11-11 | 2020-04-10 | 广州市品高软件股份有限公司 | Data access method, server and system based on data label |
| CN113779609A (en) * | 2021-09-22 | 2021-12-10 | 北方健康医疗大数据科技有限公司 | Data management method and device, electronic equipment and storage medium |
| CN113779609B (en) * | 2021-09-22 | 2024-03-22 | 北方健康医疗大数据科技有限公司 | Data management method, device, electronic equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11200337B2 (en) | System and method for user data isolation | |
| CN1146178C (en) | Method and appts. for data processing | |
| CN101030175A (en) | Universal serial bus storage device and access control method thereof | |
| US20100169394A1 (en) | Method and apparatus for providing access to files based on user identity | |
| CN1612112A (en) | Shadow page tables for address translation control | |
| CN1729469A (en) | Method for carrying out access control on a relational database | |
| CN1860723A (en) | System and methods providing enhanced security model | |
| CN100338589C (en) | Method and IC card for controlling storage logic partition access authority | |
| CN1924815A (en) | Apparatus, system, and method for implementing protected virtual memory subcontexts | |
| CN1770169A (en) | Systems and methods of access control enabling ownership of access control lists to users or groups | |
| CN1609749A (en) | Method and apparatus for managing digital rights of portable storage device | |
| CN1461999A (en) | Mothed of dividing large volume storage stocking device | |
| CN1684069A (en) | Extraction, transformation and loading designer module of a computerized financial system | |
| CN1950802A (en) | Memory allocation | |
| CN1285038C (en) | System and method for handling device accesses to a memory providing increased memory access security | |
| TW589530B (en) | Method and apparatus for physical address-based security to determine target security | |
| CN1577295A (en) | Implementation of memory access control using optimizations | |
| CN1869999A (en) | Protection method and device for opening computer | |
| CN1967552A (en) | Data protecting method based on target labeling and operation device | |
| CN1719422A (en) | Virtual access method of storage document data | |
| CN1459059A (en) | Controlling access to multiple isolated memories in an isolated execultion environment | |
| CN1304914C (en) | System and method for digital watermarking of data repository | |
| CN101046774A (en) | Computer-implemented method and apparatus for managing DMA write page faults using a pool of substitute pages | |
| CN1677302A (en) | Method and system for acquiring resource usage log and computer product | |
| CN102236609A (en) | Storage equipment and access method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |