| CPC G06F 21/6218 (2013.01) [G06F 12/0875 (2013.01); G06F 15/17331 (2013.01); G06F 16/9574 (2019.01); G06F 2212/45 (2013.01)] | 20 Claims |
|
1. A system that comprises:
a memory that stores program instructions; and
a processing system, comprising at least one processor, configured to execute the program instructions that, when executed, cause the processing system to:
receive at each of a plurality of database servers in the system, from a central policy storage managed externally to the plurality of database servers, a plurality of external access policies that correspond to users;
in response to receiving the plurality of external access policies, store at each of the plurality of database servers, in a cache of a respective database, the plurality of external access policies that are received;
responsive to a resource access request received from a device of a user that specifies a resource internal to the database server, determine an access condition via a policy engine of one of the database servers, based at least on one of the plurality of external access policies and one of a plurality of internal access policies;
determine that both the one of the plurality of external access policies and the one of the plurality of internal access policies indicate a grant of access; and
provide data associated with the resource to the device of the user based at least on the access condition being met to access the resource.
|