US 12,437,100 B1
Priority-based masking policy selection in a database environment
Dmytro Bogatov, Boston, MA (US); Kiran Kumar Chinta, Fremont, CA (US); Todd Jeffrey Green, Davis, CA (US); Yanzhu Ji, Sunnyvale, CA (US); James Claiborne Moore, Boston, MA (US); Gaurav Saxena, Cupertino, CA (US); and Abhishek Rai Sharma, Sunnyvale, CA (US)
Assigned to Amazon Technologies, Inc., Seattle, WA (US)
Filed by Amazon Technologies, Inc., Seattle, WA (US)
Filed on Nov. 25, 2022, as Appl. No. 18/058,816.
Int. Cl. G06F 21/62 (2013.01); G06F 16/22 (2019.01); G06F 16/245 (2019.01)
CPC G06F 21/6227 (2013.01) [G06F 16/221 (2019.01); G06F 16/245 (2019.01); G06F 21/6254 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A computer-implemented method comprising:
receiving, at a database service, a request to execute a query involving at least a column of a table of a database, wherein the request was issued on behalf of a user through a user account;
identifying, based on a data structure, one or more roles associated with the user account;
identifying multiple masking policies that are attached to the table, are associated with the column, and are applicable for all users or are applicable for the user account or are applicable for users associated with any of the one or more roles;
selecting a masking policy from among the multiple masking policies based on the one or more roles associated with the user account, and based on an analysis of user-configured priority values associated with the multiple masking policies, whereby the masking policy is selected due to it having a highest or lowest priority value from among the user-configured priority values; and
executing the query to generate a result, the executing comprising modifying values of the column based on the masking policy.