CN110427775A - Data query authority control method and device - Google Patents

Data query authority control method and device Download PDF

Info

Publication number
CN110427775A
CN110427775A CN201910679024.7A CN201910679024A CN110427775A CN 110427775 A CN110427775 A CN 110427775A CN 201910679024 A CN201910679024 A CN 201910679024A CN 110427775 A CN110427775 A CN 110427775A
Authority
CN
China
Prior art keywords
data
tags
field
label
tables
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910679024.7A
Other languages
Chinese (zh)
Other versions
CN110427775B (en
Inventor
裴博润
张毅然
庞皓文
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Mininglamp Software System Co ltd
Original Assignee
Beijing Mininglamp Software System Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Mininglamp Software System Co ltd filed Critical Beijing Mininglamp Software System Co ltd
Priority to CN201910679024.7A priority Critical patent/CN110427775B/en
Publication of CN110427775A publication Critical patent/CN110427775A/en
Application granted granted Critical
Publication of CN110427775B publication Critical patent/CN110427775B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/24Querying
    • G06F16/248Presentation of query results
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6227Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database where protection concerns the structure of data, e.g. records, types, queries
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Health & Medical Sciences (AREA)
  • Software Systems (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Bioethics (AREA)
  • Health & Medical Sciences (AREA)
  • Computational Linguistics (AREA)
  • Data Mining & Analysis (AREA)
  • Storage Device Security (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

The present invention provides a kind of data query authority control method and devices, this method comprises: the field to tables of data creates row grade set of tags, wherein, the row grade set of tags includes one or more labels, and each label corresponds to the search access right of a field value of the tables of data;The row grade set of tags is configured in the field of the tables of data;One or more of labels in the row grade set of tags are distributed into user.In the present invention, tagged to data by way of tag control, to realize the control of data line grade permission, data leak or data sensitive information is avoided to be checked by irrelevant personnel.

Description

Data query authority control method and device
Technical field
The present invention relates to the communications fields, in particular to a kind of data query authority control method and device.
Background technique
In big data era, the working process of data is always a cumbersome and rigorous job, in data mart modeling processing Engineering in, each operation layer, business department data collision keep data convergence inevitable, it is rigorous with business, gradually spread out The demand of fine-grained management data is born, and how to avoid data that data leak or data sensitive occur in working process engineering The problem of related datas permissions such as information checked by irrelevant personnel, unofficial biography, always exists.
Summary of the invention
The embodiment of the invention provides a kind of data query authority control method and devices, at least to solve in the related technology The problem of data leak, data sensitive information are checked by irrelevant personnel.
According to one embodiment of present invention, a kind of data query authority control method is provided, comprising: to tables of data Field creates row grade set of tags, wherein the row grade set of tags includes one or more labels, described in each label correspondence The search access right of one field value of tables of data;The row grade set of tags is configured in the field of the tables of data;By the row One or more of labels in grade set of tags distribute to user.
Optionally, after one or more of labels in the row grade set of tags being distributed to user, further includes: connect The user is received to the data inquiry request of the tables of data;Inquiry return the tables of data in, only will comprising with it is described The data entry of the corresponding field value of the label that user is distributed shows the user.
Optionally, only the data entry comprising the corresponding field value of the label that is distributed with the user is shown to described Before user, further includes: match the label that the user is distributed with the field value of the data sheet field.
It optionally, include: that all fields in the tables of data are carried out to the field creation row grade set of tags of tables of data Business diagnosis is to select the field for creating row grade set of tags;It is corresponding according to the creation of the number of the field value of selected field The label of number, all labels form a row grade set of tags.
Optionally, it includes: by each word of the field that the row grade set of tags is configured in the field of the tables of data Segment value is associated with corresponding label.
According to another embodiment of the invention, a kind of data query permission control device is provided, comprising: creation mould Block creates row grade set of tags for the field to tables of data, wherein the row grade set of tags includes one or more labels, often A label corresponds to the search access right of a field value of the tables of data;Configuration module, for the word in the tables of data The row grade set of tags is configured in section;Distribution module, for dividing one or more of labels in the row grade set of tags Provisioned user.
Optionally, device further include: receiving module asks the data query of the tables of data for receiving the user It asks;Display module only will be corresponding comprising the label that is distributed with the user in the tables of data that inquiry returns The data entry of field value shows the user.
Optionally, device further include: matching module, label and the data literary name for being distributed the user The field value of section is matched, and matching result is fed back to the display module.
Optionally, the creation module includes: analytical unit, for carrying out business to all fields in the tables of data Analysis is to select the field for creating row grade set of tags;Creating unit, for according to the field value of selected field The label of number creation corresponding number, all labels form a row grade set of tags.
According to still another embodiment of the invention, a kind of storage medium is additionally provided, meter is stored in the storage medium Calculation machine program, wherein the computer program is arranged to execute the step in any of the above-described embodiment of the method when operation.
According to still another embodiment of the invention, a kind of electronic device, including memory and processor are additionally provided, it is described Computer program is stored in memory, the processor is arranged to run the computer program to execute any of the above-described Step in embodiment of the method.
In the above embodiment of the invention, tagged to data by way of tag control, to realize data The control of row grade permission avoids data leak or data sensitive information from being checked by irrelevant personnel.
Detailed description of the invention
The drawings described herein are used to provide a further understanding of the present invention, constitutes part of this application, this hair Bright illustrative embodiments and their description are used to explain the present invention, and are not constituted improper limitations of the present invention.In the accompanying drawings:
Fig. 1 is the flow chart of data query authority control method according to an embodiment of the present invention;
Fig. 2 is according to embodiments of the present invention one data line grade permission control flow chart;
Fig. 3 is according to embodiments of the present invention two data line grade permission control flow chart;
Fig. 4 is according to embodiments of the present invention three data line grade permission control flow chart;
Fig. 5 is the structural block diagram of data query permission control device according to an embodiment of the present invention;
Fig. 6 is the structural block diagram of data query permission control device according to another embodiment of the present invention.
Specific embodiment
Hereinafter, the present invention will be described in detail with reference to the accompanying drawings and in combination with Examples.It should be noted that not conflicting In the case of, the features in the embodiments and the embodiments of the present application can be combined with each other.
A kind of data query authority control method is provided in the present embodiment, and Fig. 1 is step according to an embodiment of the present invention Rapid flow chart, as shown in Figure 1, the process includes the following steps:
Step S102 creates row grade set of tags to the field of tables of data, wherein the row grade set of tags includes one or more A label, each label correspond to the search access right of a field value of the tables of data;
Step S104 configures the row grade set of tags in the field of the tables of data;
One or more of labels in the row grade set of tags are distributed to user by step S106.
In the step S102 of the present embodiment, business diagnosis is carried out to select one to all fields in the tables of data The field of a creation row grade set of tags;The label of corresponding number is created according to the number of the field value of selected field, it is all Label forms a row grade set of tags.
It, can be by the way that each field value of the field be associated with corresponding label in the step S104 of the present embodiment Configuration line grade set of tags.
It in the present embodiment, after step s 106, can also include: to receive the user to the data of the tables of data Inquiry request;In the tables of data that inquiry returns, it will only include the corresponding field value of the label that is distributed with the user Data entry show the user.
In the present embodiment, only the data entry comprising the corresponding field value of the label that is distributed with the user is being shown Show to before the user, can with comprising steps of label and the data sheet field that the user is distributed field Value is matched.
In order to facilitate the understanding of the present invention, it is described in detail below with reference to the embodiment of concrete application.
Embodiment one
In the present embodiment, a kind of row grade permission implementation method of combination tag is provided, as shown in Fig. 2, the present embodiment Mainly include the following steps:
Step S201, it is assumed that take over N tables from data convergence, wherein there is a Table A, Table A has two fields of X, Y.
Step S202 carries out business diagnosis according to the field X of Table A, is created that a row grade mark into the tag control page Label group G has two labels of D, F in the set of tags.
Next step S203 goes to label to the Table A taken over of convergence, select the field X of Table A, configuration line grade label, Row grade set of tags G is selected, label configuration is completed.
Step S204, to the label in user's alllocated lines grade set of tags G, when the user for possessing label D permission goes to check this Table A, in the data that Table A shows, for each data, if this data, the value of field X is consistent with label D, then exhibitions The user is now given, if instead the value of this data field X and label D are mismatched, is then checked without permission.
Step S205, filter table A all data, a user can possess multiple permissions, if necessary to give the user Other row grade permissions are configured, step S204 is repeated.
Embodiment two
In the present embodiment, the method for realizing row grade permission for permanent resident population's information table is provided, as shown in figure 3, this Embodiment mainly includes the following steps:
Step S301 converges permanent resident population's information table for taking over according to data, to the field of permission control to be carried out into Row business diagnosis;
Step S302 carries out capable grade set of tags according to field and creates.For example, tapping into the permanent resident population's information table come, have " public People's identification card number ", " name ", " inhabitation districts and cities " three fields can create row grade set of tags according to " inhabitation districts and cities " this field " districts and cities' division ", this set of tags is interior, and there are three labels: " Changsha ", " Zhuzhou " and " Yueyang ".
Step S303 configures the page into table, and the table is selected to carry out label configuration, and configuration is that the field of selection table " is lived Districts and cities " give " inhabitation districts and cities " configuration line grade set of tags " districts and cities' division ".
Step S304 carries out authority distribution to user.User's test alllocated lines grade permission, selection mark can be given by administrator Label group " districts and cities' division ", selects wherein one or more labels to distribute to user test.For example, selection label " Changsha " is distributed to User test.
Step S305, is logged in using test user, goes to check table data.For example, the table has 10 datas, wherein 3 numbers According to field " inhabitation districts and cities " value be " Changsha ", then test user can only see inhabitation districts and cities " value be " Changsha " three Data, if test is furnished with multiple labels, it can be seen that multiple values are the data of label allocation.
Embodiment three
In the present embodiment, the detailed process for realizing row grade permission is essentially described, as shown in figure 4, the present embodiment is main Include the following steps:
Step S401 receives a tables of data T, creates row grade set of tags L, the row grade mark for the field a of tables of data T Label group L includes label A, label B and label C;
Row grade set of tags L is configured in the field a of data by step S402;
Label A, label B and label C in row grade set of tags is distributed to user by step S403;
Step S404, the user U for possessing label go the data checked in tables of data T;
Step S405, according to the label that user U is distributed, the data can be checked by judging whether the user U possesses Permission;
Step S406, if the label that the user U is distributed is matched with the field value of data, which possesses can be with Check the permission of the data, which shows user U, and otherwise, which can not check the data.
In the above embodiment of the invention, tagged to data by way of tag control, to realize data The control of row grade permission avoids data leak, data sensitive information from being checked by irrelevant personnel.
Through the above description of the embodiments, those skilled in the art can be understood that according to above-mentioned implementation The method of example can be realized by means of software and necessary general hardware platform, naturally it is also possible to by hardware, but it is very much In the case of the former be more preferably embodiment.Based on this understanding, technical solution of the present invention is substantially in other words to existing The part that technology contributes can be embodied in the form of software products, which is stored in a storage In medium (such as ROM/RAM, magnetic disk, CD), including some instructions are used so that a terminal device (can be mobile phone, calculate Machine, server or network equipment etc.) execute method described in each embodiment of the present invention.
A kind of data query permission control device is additionally provided in the present embodiment, and the device is for realizing above-described embodiment And preferred embodiment, the descriptions that have already been made will not be repeated.As used below, term " module " and " unit " can be with Realize the combination of the software and/or hardware of predetermined function.Although device described in following embodiment is preferably come with software real It is existing, but the realization of the combination of hardware or software and hardware is also that may and be contemplated.
Fig. 5 is the structural block diagram of data query permission control device according to an embodiment of the present invention, as shown in figure 5, the dress It sets including creation module 10, configuration module 20 and distribution module 30.
Creation module 10 is used to create row grade set of tags to the field of tables of data, wherein the row grade set of tags includes one A or multiple labels, each label correspond to the search access right of a field value of the tables of data.
Configuration module 20 in the field of the tables of data for configuring the row grade set of tags.
Distribution module 30 is used to one or more of labels in the row grade set of tags distributing to user.
Fig. 6 is the structural block diagram of data query permission control device according to another embodiment of the present invention, as shown in fig. 6, The device further includes receiving module 40 and display module 50 in addition to including all modules shown in fig. 5.
Receiving module 40 is for receiving the user to the data inquiry request of the tables of data.
Display module 50 is used in the tables of data that inquiry returns, only by the label comprising being distributed with the user The data entry of corresponding field value shows the user.
In an alternative embodiment, which can also include: matching module 60, the mark for being distributed the user Label are matched with the field value of the data sheet field, and matching result is fed back to the display module 50.
In an alternative embodiment, the creation module 10 further comprises: analytical unit 101, for the data All fields in table carry out business diagnosis to select the field of a creation row grade set of tags;Creating unit 102 is used for root According to the label of the number creation corresponding number of the field value of selected field, all labels form a row grade label Group.
It should be noted that above-mentioned modules and unit can be realized by software or hardware, for the latter, It can be accomplished by the following way, but not limited to this: above-mentioned module is respectively positioned in same processor;Alternatively, above-mentioned modules Form in any combination is located in different processors.
The embodiments of the present invention also provide a kind of storage medium, computer program is stored in the storage medium, wherein The computer program is arranged to execute the step in any of the above-described embodiment of the method when operation.
Optionally, in the present embodiment, above-mentioned storage medium can include but is not limited to: USB flash disk, read-only memory (Read- Only Memory, referred to as ROM), it is random access memory (Random Access Memory, referred to as RAM), mobile hard The various media that can store computer program such as disk, magnetic or disk.
The embodiments of the present invention also provide a kind of electronic device, including memory and processor, stored in the memory There is computer program, which is arranged to run computer program to execute the step in any of the above-described embodiment of the method Suddenly.
Optionally, above-mentioned electronic device can also include transmission device and input-output equipment, wherein the transmission device It is connected with above-mentioned processor, which connects with above-mentioned processor.
Obviously, those skilled in the art should be understood that each module of the above invention or each step can be with general Computing device realize that they can be concentrated on a single computing device, or be distributed in multiple computing devices and formed Network on, optionally, they can be realized with the program code that computing device can perform, it is thus possible to which they are stored It is performed by computing device in the storage device, and in some cases, it can be to be different from shown in sequence execution herein Out or description the step of, perhaps they are fabricated to each integrated circuit modules or by them multiple modules or Step is fabricated to single integrated circuit module to realize.In this way, the present invention is not limited to any specific hardware and softwares to combine.
The foregoing is only a preferred embodiment of the present invention, is not intended to restrict the invention, for the skill of this field For art personnel, the invention may be variously modified and varied.It is all within principle of the invention, it is made it is any modification, etc. With replacement, improvement etc., should all be included in the protection scope of the present invention.

Claims (10)

1. a kind of data query authority control method characterized by comprising
Row grade set of tags is created to the field of tables of data, wherein the row grade set of tags includes one or more labels, Mei Gesuo State the search access right that label corresponds to a field value of the tables of data;
The row grade set of tags is configured in the field of the tables of data;
One or more of labels in the row grade set of tags are distributed into user.
2. the method according to claim 1, wherein by one or more of marks in the row grade set of tags Label are distributed to after user, further includes:
The user is received to the data inquiry request of the tables of data;
In the tables of data that inquiry returns, only by the data comprising the corresponding field value of the label that is distributed with the user Entry shows the user.
3. according to the method described in claim 2, it is characterized in that, only will be corresponding comprising the label that is distributed with the user The data entry of field value is shown to before the user, further includes:
The label that the user is distributed is matched with the field value of the data sheet field.
4. the method according to claim 1, wherein the field creation row grade set of tags to tables of data includes:
Business diagnosis is carried out to all fields in the tables of data to select the field of a creation row grade set of tags;
The label of corresponding number is created according to the number of the field value of selected field, all labels form a row grade Set of tags.
5. according to the method described in claim 4, it is characterized in that, configuring the row grade label in the field of the tables of data Group includes:
Each field value of the field is associated with corresponding label.
6. a kind of data query permission control device characterized by comprising
Creation module creates row grade set of tags for the field to tables of data, wherein the row grade set of tags includes one or more A label, each label correspond to the search access right of a field value of the tables of data;
Configuration module, for configuring the row grade set of tags in the field of the tables of data;
Distribution module, for one or more of labels in the row grade set of tags to be distributed to user.
7. device according to claim 6, which is characterized in that further include:
Receiving module, for receiving the user to the data inquiry request of the tables of data;
Display module only will be corresponding comprising the label that is distributed with the user in the tables of data that inquiry returns The data entry of field value show the user.
8. the method according to the description of claim 7 is characterized in that further include:
Matching module, the label for being distributed the user are matched with the field value of the data sheet field, and will Matching result feeds back to the display module.
9. the method according to claim 1, wherein the creation module includes:
Analytical unit, for carrying out business diagnosis to all fields in the tables of data to select a creation row grade label The field of group;
Creating unit, for the label according to the number creation corresponding number of the field value of selected field, all set of tags At a row grade set of tags.
10. a kind of electronic device, including memory and processor, which is characterized in that be stored with computer journey in the memory Sequence, the processor are arranged to run the computer program to execute method described in any one of claim 1 to 5.
CN201910679024.7A 2019-07-25 2019-07-25 Data query authority control method and device Active CN110427775B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910679024.7A CN110427775B (en) 2019-07-25 2019-07-25 Data query authority control method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910679024.7A CN110427775B (en) 2019-07-25 2019-07-25 Data query authority control method and device

Publications (2)

Publication Number Publication Date
CN110427775A true CN110427775A (en) 2019-11-08
CN110427775B CN110427775B (en) 2021-07-27

Family

ID=68410793

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910679024.7A Active CN110427775B (en) 2019-07-25 2019-07-25 Data query authority control method and device

Country Status (1)

Country Link
CN (1) CN110427775B (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111177700A (en) * 2019-12-31 2020-05-19 北京明略软件***有限公司 Method and device for controlling row-level authority
CN112287365A (en) * 2020-10-23 2021-01-29 烽火通信科技股份有限公司 Binary-based database permission control method, device, medium and system
CN112527812A (en) * 2020-12-04 2021-03-19 北京顺达同行科技有限公司 Data permission processing method and device based on multiple dimensions and computer equipment
WO2021190017A1 (en) * 2020-03-25 2021-09-30 支付宝(杭州)信息技术有限公司 Private data access method and apparatus, and electronic device
CN113656827A (en) * 2021-07-19 2021-11-16 中共四川省委组织部 Method for realizing row-level authority control based on domestic database
CN113934995A (en) * 2021-09-15 2022-01-14 南方电网深圳数字电网研究院有限公司 Rank authority setting method and device applied to data access
CN117708884A (en) * 2024-02-04 2024-03-15 珠海金智维信息科技有限公司 Data authority database middleware based on field tagging

Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104484617A (en) * 2014-12-05 2015-04-01 中国航空工业集团公司第六三一研究所 Database access control method on basis of multi-strategy integration
CN107609131A (en) * 2017-09-18 2018-01-19 中国银行股份有限公司 A kind of report file generation method and device
US20180191705A1 (en) * 2015-10-08 2018-07-05 American Express Travel Related Services Company, Inc. Bd - cloaked data system
CN108304732A (en) * 2017-12-22 2018-07-20 石化盈科信息技术有限责任公司 A kind of method and system for refining data library permission
CN108595978A (en) * 2018-03-30 2018-09-28 平安科技(深圳)有限公司 Information screen method, apparatus, terminal and computer readable storage medium
CN108874863A (en) * 2018-04-19 2018-11-23 华为技术有限公司 A kind of control method and database access device of data access
KR20190007559A (en) * 2017-07-12 2019-01-23 주식회사 넷앤드 A DB access control system based on banned-word by using the parser, for enhancing security of personal information
CN109582691A (en) * 2018-11-15 2019-04-05 百度在线网络技术(北京)有限公司 Method and apparatus for controlling data query
US20190121996A1 (en) * 2015-12-21 2019-04-25 Vinyl Development LLC Reach Objects
CN109840250A (en) * 2018-12-14 2019-06-04 平安科技(深圳)有限公司 Access authority management method, device, equipment and the storage medium of middle field
CN109992996A (en) * 2019-03-14 2019-07-09 北京明略软件***有限公司 A kind of data query control method and device, storage medium
CN110019146A (en) * 2018-06-26 2019-07-16 珠海宏桥高科技有限公司 A kind of implementation method and device of list table maintenance function

Patent Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104484617A (en) * 2014-12-05 2015-04-01 中国航空工业集团公司第六三一研究所 Database access control method on basis of multi-strategy integration
US20180191705A1 (en) * 2015-10-08 2018-07-05 American Express Travel Related Services Company, Inc. Bd - cloaked data system
US20190121996A1 (en) * 2015-12-21 2019-04-25 Vinyl Development LLC Reach Objects
KR20190007559A (en) * 2017-07-12 2019-01-23 주식회사 넷앤드 A DB access control system based on banned-word by using the parser, for enhancing security of personal information
CN107609131A (en) * 2017-09-18 2018-01-19 中国银行股份有限公司 A kind of report file generation method and device
CN108304732A (en) * 2017-12-22 2018-07-20 石化盈科信息技术有限责任公司 A kind of method and system for refining data library permission
CN108595978A (en) * 2018-03-30 2018-09-28 平安科技(深圳)有限公司 Information screen method, apparatus, terminal and computer readable storage medium
CN108874863A (en) * 2018-04-19 2018-11-23 华为技术有限公司 A kind of control method and database access device of data access
CN110019146A (en) * 2018-06-26 2019-07-16 珠海宏桥高科技有限公司 A kind of implementation method and device of list table maintenance function
CN109582691A (en) * 2018-11-15 2019-04-05 百度在线网络技术(北京)有限公司 Method and apparatus for controlling data query
CN109840250A (en) * 2018-12-14 2019-06-04 平安科技(深圳)有限公司 Access authority management method, device, equipment and the storage medium of middle field
CN109992996A (en) * 2019-03-14 2019-07-09 北京明略软件***有限公司 A kind of data query control method and device, storage medium

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
崔迎春: "DB2数据库基于标签的访问控制研究", 《中国优秀硕士学位论文全文数据库 信息科技辑(月刊)》 *
熊微: "数据库标签安全测试技术", 《第五届信息安全漏洞分析与风险评估大会》 *

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111177700A (en) * 2019-12-31 2020-05-19 北京明略软件***有限公司 Method and device for controlling row-level authority
WO2021190017A1 (en) * 2020-03-25 2021-09-30 支付宝(杭州)信息技术有限公司 Private data access method and apparatus, and electronic device
CN112287365A (en) * 2020-10-23 2021-01-29 烽火通信科技股份有限公司 Binary-based database permission control method, device, medium and system
CN112527812A (en) * 2020-12-04 2021-03-19 北京顺达同行科技有限公司 Data permission processing method and device based on multiple dimensions and computer equipment
CN113656827A (en) * 2021-07-19 2021-11-16 中共四川省委组织部 Method for realizing row-level authority control based on domestic database
CN113934995A (en) * 2021-09-15 2022-01-14 南方电网深圳数字电网研究院有限公司 Rank authority setting method and device applied to data access
CN117708884A (en) * 2024-02-04 2024-03-15 珠海金智维信息科技有限公司 Data authority database middleware based on field tagging

Also Published As

Publication number Publication date
CN110427775B (en) 2021-07-27

Similar Documents

Publication Publication Date Title
CN110427775A (en) Data query authority control method and device
CN111478961B (en) Multi-tenant service calling method and device
EP2565802B1 (en) Data masking setup
CN107092652B (en) Navigation method and device for target page
CN111277958A (en) Label position determining method and device
CN110019125A (en) The method and apparatus of data base administration
CA2391829A1 (en) Timeshared electronic catalog system and method
CN107465687B (en) Method, device and terminal for realizing permission configuration
CN109981322A (en) The method and apparatus of cloud resource management based on label
CN108228618A (en) The method and apparatus of document verification of data
CN110457346A (en) Data query method, apparatus and computer readable storage medium
CN112667695A (en) Insurance data information generation method and device, server and storage medium
CN110941779A (en) Page loading method and device, storage medium and electronic equipment
CN110059479A (en) Risk information recognition methods and device and electronic equipment
CN111177700A (en) Method and device for controlling row-level authority
CN106156173A (en) Cheating identification method and device and terminal
CN110019229B (en) Database configuration system
CN110134867A (en) Corporation information query method and Related product
CN110347654A (en) A kind of method and apparatus of online cluster features
CN112162731A (en) Data expansion method, device, storage medium and electronic device
CN113342338A (en) Method and device for generating job list and storage medium
CN104156358B (en) A kind of batch read method of table for database, device and system
CN113627837A (en) Goods collection positioning method and device
CN110781191A (en) Processing method of layout data and server
CN103577465A (en) System data processing system and method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant