×

Access control based on operation expiry data

  • US 10,223,363 B2
  • Filed: 10/30/2014
  • Issued: 03/05/2019
  • Est. Priority Date: 10/30/2014
  • Status: Active Grant
First Claim
Patent Images

1. A method, implemented at a computer system that includes one or more processors, for controlling access to a particular file of a plurality of files within a file system, the method comprising:

  • atomically associating, at the computer system, access control information with the particular file such that when the particular file is independently moved or copied, the access control information and the particular file are moved or copied atomically together, wherein the access control information includes operation expiry data that is correlated with at least one location and at least one file operation type, wherein atomically associating the access control information with the particular file Includes at least one of attaching the access control information to the particular file by using a separate file that contains the access control information for the particular file, or modifying properties of the file to include the control information, or providing or the control information in an alternate data stream;

    receiving, at the computer system, an operation request to perform an operation of a particular file operation type on the particular file;

    identifying, at the computer system, a location associated with the operation request;

    identifying within the access control information that is atomically associated with the particular file, at the computer system, the operation expiry data that corresponds to both the location associated with the operation request and the particular file operation type of the operation request; and

    using, at the computer system, the identified operation expiry data that corresponds to both the location associated with the operation request and the particular file operation type, to selectively penult or, alternatively, deny the requested operation of the particular file operation type on the particular file.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×