Method for self-contained access of database list row data

Abstract

A method for controlling active access of line grade data in databank table includes adding a control authority column of line grade access for enabling to use each databank table of line grade access control in order to record access control authority information of this line, granting relevant access authority and access type in databank table to user of databank, carrying out line grade access control on user according to line grade access authority granted to said user and control policy of said line grade access.

Description

technical field

[0001] The invention relates to an autonomous access control method for database tables, in particular to an autonomous access control method for row-level data in database tables. Background technique

[0002] Discretionary access control is the foundation of operating systems and database management systems, and an important attribute of it is the ability to support delegated authorization rules. At present, the autonomous access control of many databases is based on the access control matrix (Access Control Matrix) to realize the access control of the table level and attribute level (column level) of the role. Access controls are performed on these columns, but such access controls do not constrain access to rows in the database. For example, if a database user has access rights to a certain database table, the user can have relevant access to each row in this table. Therefore, this traditional table-level, attribute-level (column-level) granular object ...

Images