logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 12259992 B1

PDFFull Text
Date of Patent:
Mar. 25, 2025

Filed:

Jan. 31, 2024

Centralized access control for cloud relational database management system resources

Applicant:

Microsoft Technology Licensing, Llc, Redmond, WA (US);

Inventors:

Yueren Wang, Redmond, WA (US);

Elnata Degefa, Sammamish, WA (US);

Andreas Wolter, Redmond, WA (US);

Steven Richard Gott, Bellevue, WA (US);

Nitish Gupta, Seattle, WA (US);

Raghav Kaushik, Kirkland, WA (US);

Rakesh Khanduja, Bangalore, IN;

Shafi Ahmad, Bangalore, IN;

Dilli Dorai Minnal Arumugam, Campbell, CA (US);

Pankaj Prabhakar Naik, Redmond, WA (US);

Nikolas Christopher Ogg, Seattle, WA (US);

Assignee:

MICROSOFT TECHNOLOGY LICENSING, LLC, Redmond, WA (US);

Attorney:

Weaver IP L.L.C.

Primary Examiner:

Eliyah S Harper

Int. Cl.
CPC ...
G06F 16/95 (2019.01); G06F 12/0875 (2016.01); G06F 15/173 (2006.01); G06F 16/957 (2019.01); G06F 21/62 (2013.01);
U.S. Cl.
CPC ...
G06F 21/6218 (2013.01); G06F 12/0875 (2013.01); G06F 15/17331 (2013.01); G06F 16/9574 (2019.01); G06F 2212/45 (2013.01);
Abstract

Methods for centralized access control for cloud relational database management system resources are performed by systems and devices. The methods utilize a central policy storage, managed externally to database servers, which stores external policies for access to internal database resources at up to fine granularity. Database servers in the processing system each receive external access policies that correspond to users of the system by push or pull operations from the central policy storage, and store the external access policies in a cache of the database servers for databases. For resource access, access conditions are determined via policy engines of database servers based on an external access policy in the cache that corresponds to a user, responsive to a resource access request from a device of the user specifying the internal resource. Data associated with the resource is provided to the user based on the access condition being met.

Find Patent Forward Citations

Loading…