System and method for controlling access to data entities in a computer network
Patent 5941947 Issued on August 24, 1999. Estimated Expiration Date: August 18, 2015. Estimated Expiration Date is calculated based on simple USPTO term provisions. It does not account for terminal disclaimers, term adjustments, failure to pay maintenance fees, or other factors which might affect the term of a patent.
Access rights of users of a computer network with respect to data entities are specified by a relational database stored on one or more security servers. Application servers on the network that provide user access to the data entities generate queries to the relational database in order to obtain access rights lists of specific users. An access rights cache on each application server caches the access rights lists of the users that are connected to the respective application server, so that user access rights to specific data entities can rapidly be determined. Each user-specific access rights list includes a series of category identifiers plus a series of access rights values. The category identifiers specify categories of data entities to which the user has access, and the access rights values specify privilege levels of the users with respect to the corresponding data entity categories. The privilege levels are converted into specific access capabilities by application programs running on the application servers.
Operating System Concepts, Fourth Edition, Abraham Silberschatz and Peter B. Galvin, pp. 361-380, 431-457, .COPYRGT.1994
Inside Windows NT, Helen Custer Foreword by David N. Cutler, The Object Manager and Object Security, Chapter Three, pp. 49-81. .COPYRGT.1993
So . . . Just What is this First Class Thing Anyway? (visited Oct. 10, 1995)
Colton, Malcolm, "Replicated Data in a Distributed Environment," IEEE (1993)
Coulouris et al., "Distributed Transactions," Chapter 14 of Distributed Systems Concepts and Design 2nd Ed., 409-421 (1994)
Cox, John, "Sybase Server to Add Complexity User for Challenge with Data Replication," Communication No. 483 (1993)
Eckerson, Wayne, "Users Give Green Light for Replication," Network World (Jul. 19, 1993)
Edelstein, Herb, "The Challenge of Replication," DBMS vol. 8, No. 4, 68 (Apr. 1995)
Edelstein, Herb, "Microsoft and Sybase are Adding their Unique Touches to SQI Servers," Information Week, No. 528, 62 (1995)