The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Aug. 01, 2017
Filed:
Sep. 08, 2015
Oracle International Corporation, Redwood Shores, CA (US);
Vadim Makhervaks, Bellevue, WA (US);
Richard Mousseau, Stratham, NH (US);
Bjørn Dag Johnsen, Oslo, NO;
Sumanta Chatterjee, Fremont, CA (US);
Avneesh Pant, Redwood City, CA (US);
Jean De Lavarene, Levallois Perret, FR;
Kant C. Patel, Fremont, CA (US);
Bhaskar Mathur, Bangalore, IN;
Feroz Alam Khan, Bangalore, IN;
Sudeep Vatsanath Reguna, Bangalore, IN;
ORACLE INTERNATIONAL CORPORATION, Redwood Shores, CA (US);
Abstract
A security solution provides secure communication in a multi-tenant environment which includes a connection-based fabric, storage cells holding data associated with different tenants, database servers which provide a plurality of database services using said data, application servers hosting database service consumers. The fabric is configured into partitions isolating the storage cells from the database service consumers. The application servers securely associate unique database service consumer identities with each database service consumer and all communications with the database servers. The database servers reject all communications from the application servers which do not include an identity and use an access control list to control access from the database service consumers to the database services using address resolution access control, connection establishment access control, and data exchange access control based on said access control list. DoS attack prevention can also be performed based on consumer identities included in packets.