| CPC G06F 16/217 (2019.01) [G06F 9/4411 (2013.01); G06F 9/541 (2013.01); G06F 16/219 (2019.01); G06F 16/24524 (2019.01); G06F 16/252 (2019.01)] | 24 Claims |
|
1. A tangible, non-transitory, machine-readable medium storing instructions that when executed by one or more processors effectuate operations comprising:
obtaining, by a driver of a client executing an application, a database request generated by the application executing on the client;
detecting, by the driver, at least one value indicative of a user of the application or the client executing the application that generated the database request;
obtaining, by the driver, policy information conveying permissions to access information in at least some records within a database arrangement for some users or some client devices;
determining, by the driver, based on the permissions and the detected value, whether the user of the application or the client executing the application is requesting access to a portion of restricted information from one or more records within the database arrangement among a set of records implicated by the database request;
obtaining, by the driver, information of records in the set of records implicated by the database request by conveying one or more requests for the information to the database arrangement;
identifying, by the driver, based on the permissions, the portion of restricted information from the one or more records among the set of records within the obtained information from the records in the set of records;
modifying, by the driver, the portion of restricted information identified in the obtained information from the one or more records in the set of records without modifying at least some other portion of the obtained information from the records in the set of records; and
providing, by the driver, to the application responsive to the database request, a database response including the at least some other portion of the obtained information.
|