安全标签是按组件逐一比较的。
该函数在选择操作中检索行安全标签列。
This function is used in select operations to retrieve the row security label column.
安全标签和豁免权统称为 LBAC凭证。
Together, the security labels and exemptions are called LBAC credentials.
DBSECADM可以像下面这样创建安全标签。
一共有三种类型的安全标签组件:数组、集合和树。
There are three types of security label components: arrays, sets, and trees.
安全标签组件是用于安全策略和安全标签的构建块。
Security label components are the building blocks for security policies and labels.
点击顶部的安全标签,你可以看到这里展示的窗口。
Click on the Security TAB at the top, and you will see the window we have displayed here.
用户的LBAC凭证是他所持有的安全标签和豁免权。
A user's LBAC credentials are any security labels he holds plus any exemptions that he holds.
当用户试图读带安全标签的数据时,则应用读访问规则。
Read access rules are applied when a user attempts to read labeled data.
DBSECADM可以像下面这样向用户授予安全标签。
A security label can be granted to users by DBSECADM as follows.
IDS提供了3个用于处理安全标签的内置sql函数。
IDS provides three built-in SQL functions for dealing with security labels.
LBAC通过为表对象添加安全标签来控制对它的访问。
LBAC controls access to table objects by attaching security labels to them. Users attempting to access an object must have its security label granted to them.
如果安全标签没有用于某个组件的值,那么设定该值为空值。
If a security label does not have a value for one of the components, then an empty value is assumed.
豁免权使原本安全标签权限不足的用户可以访问受保护数据。
An exemption allows users access to protected data that the user's security labels might have otherwise prevented from accessing.
当一个列与一个安全标签相关联时,那个列被称作受保护的列。
When a column is associated with a security label, that column is referred to as a protected column.
豁免权使用户可以访问其安全标签不允许其访问的受保护数据。
An exemption allows a user to access protected data that their security labels might otherwise prevent them from accessing.
创建安全策略之后,安全管理员将创建安全策略中的安全标签。
After creating a security policy, the security administrator creates security labels that are part of that policy.
安全标签组件是一个新的数据库实体,可以被创建、删除和修改。
A security label component is a new database entity that can be created, dropped, and altered.
一个表中的数据只能受到保护该表的安全策略的安全标签的保护。
Data in a table can only be protected by security labels that are part of the security policy protecting the table.
安全管理员通过为用户授予安全标签来允许用户访问受保护的数据。
The security administrator allows users access to protected data by granting them security labels.
安全策略定义安全标签的组成,并指定控制敏感数据的访问的规则。
Security policy defines the composition of the security labels and specifies the rules used to control access to sensitive data.
数组安全标签组件:数组是一组有序的元素,可用于表示简单的层次结构。
Array security label component: an array is an ordered list of elements that can be used to represent a simple hierarchy.
数据库安全管理员通过向用户授予安全标签来允许他们访问受保护的数据。
The database security administrator allows users access to protected data by granting them security labels.
创建好安全策略后,安全管理员创建安全标签,安全标签也是安全策略的一部分。
After creating a security policy, the security administrator creates objects, called security labels that are also part of that policy.
树安全标签组件:树是一个元素集合,用于表示有多个节点和分支的复杂层次关系。
Tree security label component: a tree is a collection of elements representing a complex hierarchy having multiple nodes and branches.
一个安全标签归属于一个安全策略,并且为安全策略中的每个安全组件包含一个值。
A security label belongs to a security policy and contains a value for each security component in that security policy.
每一行或列都可以贴上一个安全标签,标签中存储着关于数据的类别或敏感性的信息。
Each row or column can be assigned a security label that stores information about the classification, or sensitivity, of the data.
创建好安全标签之后,便可以将安全标签与表中的行和列相关联,以保护其中保存的数据。
Once created, a security label can be associated with individual columns and rows in a table to protect the data held there.
当一个用户试图访问受保护的数据时,必须将他的安全标签与保护数据的安全标签进行比较。
When a user tries to access protected data, his security label is compared to the security label that is protecting the data.
IDS引入了一个新的数据类型IDSSECURITYLABEL,用于存储行安全标签。
IDS has introduced a new data type, IDSSECURITYLABEL, for storing row security labels.
应用推荐