Re: Designing for Row Level Security

From: Anders Adler <anders.adler_at_giraff.se>
Date: 11 Jun 2003 14:28:01 -0700
Message-ID: <1b64ade6.0306111328.25823015_at_posting.google.com>

Hi Abdullah,

There is one more way to go. I can not explain in details how it is done due to Patent issues, but I can tell that my solution handles row level security in a table and supports this.

Different users can have Select/Insert/Update/Delete in any combination on any row.
There is only ONE view needed on the table. Regardless of number of users.
A user can have either direct permission on a table or via one or more roles.
Precedence is handled if there is a conflict between different permissions granted on current user on any row.
Different permissions can be given current user on different day or time.

EVERYTHING is handled during runtime. This means that the rows are protected both ways. Accessed either by an application or direct via SQL Query tools.

The solution uses only standard db techniques.

Currently the solution is running in approximate 100 installations world wide. It is accepted by US-FDA and HIPAA regulations.

Regards
Anders Received on Wed Jun 11 2003 - 23:28:01 CEST

This message: [ Message body ]
Next message: Mike Sherrill: "Re: Transactions: good or bad?"
Previous message: Bernard Peek: "Re: What is this model technique called"
In reply to: Abdullah Kauchali: "Designing for Row Level Security"
Next in thread: Mike Sherrill: "Re: Transactions: good or bad?"
Reply: Abdullah Kauchali: "Re: Designing for Row Level Security"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message