Apparatus and methods for scanning data in a cloud storage service
First Claim
Patent Images
1. A method for scanning objects stored in a cloud storage system, the scanning of the objects being for a purpose other than detecting a volume failure issue, comprising:
- determining that at least one of the objects stored in the cloud storage system requires scanning;
scanning each of the at least one object, wherein the scanning is performed using at least one scanning engine;
tracking objects that have been scanned by;
assigning a monotonically increasing sequence number to each object;
setting a high watermark value, wherein the high watermark value is a highest sequence number that has been scanned, thereby the high watermark value determines in part if subsequent scanning for the at least one object is required; and
storing the high watermark value;
wherein, in the determining step, only objects having a sequence number higher than the stored high watermark are determined to require scanning; and
synchronizing the at least one object with a plurality of devices connected to the cloud storage system based on the scanning results.
7 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparati for scanning objects stored in a cloud storage system are disclosed. In an embodiment, the method includes determining at least one object that requires scanning; scanning each of the at least one object, wherein the scanning is performed using at least one scanning engine; and synchronizing the scanning results of the at least one object with a plurality of devices connected to the cloud store system.
43 Citations
27 Claims
-
1. A method for scanning objects stored in a cloud storage system, the scanning of the objects being for a purpose other than detecting a volume failure issue, comprising:
-
determining that at least one of the objects stored in the cloud storage system requires scanning; scanning each of the at least one object, wherein the scanning is performed using at least one scanning engine; tracking objects that have been scanned by; assigning a monotonically increasing sequence number to each object; setting a high watermark value, wherein the high watermark value is a highest sequence number that has been scanned, thereby the high watermark value determines in part if subsequent scanning for the at least one object is required; and storing the high watermark value; wherein, in the determining step, only objects having a sequence number higher than the stored high watermark are determined to require scanning; and synchronizing the at least one object with a plurality of devices connected to the cloud storage system based on the scanning results. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for scanning objects stored in a cloud storage system, the scanning of the objects being for a purpose other than detecting a volume failure issue, comprising:
-
determining that at least one of the objects stored in the cloud storage system requires scanning; scanning each of the at least one object, wherein the scanning is performed using at least one scanning engine; and synchronizing the at least one object with a plurality of devices connected to the cloud storage system based on the scanning results wherein the at least one scanning engine is a threat detection engine that employs pattern matching on blocks of the at least one object to determine if the at least one object is a threat, wherein determining that an object is a threat is based on the object containing at least one suspect block, wherein a suspect block contains at least one of a non-trivial prefix or non-trivial suffix match; and wherein the synchronizing is performed by, when the scanning results is that the least one object is a threat, neutralizing the threat from the at least one object from the cloud store system and any device synchronized with the cloud storage system, wherein neutralizing the threat includes any one of;
deleting the object from the cloud storage system and the plurality of devices, quarantining the object at the cloud storage system and the plurality of devices, and replacing the object by a safe version of the object at the cloud storage system and the plurality of devices. - View Dependent Claims (10, 11, 12, 13, 14, 16)
-
-
15. An apparatus for scanning objects stored in a cloud storage system, the scanning of the objects being for a purpose other than detecting a volume failure issue, comprising:
-
a processing unit; and a memory coupled to the processing unit, the memory contains instructions that when executed by the processing unit configures the apparatus to; determine that at least one of the objects stored in the cloud storage system that requires scanning; scan each of the at least one object, wherein the scanning is performed using at least one scanning engine; track objects that have been scanned by; assign a monotonically increasing sequence number to each object; set a high watermark value, wherein the high watermark value is a highest sequence number that has been scanned, thereby the high watermark value determines in part if subsequent scanning for the at least one object is required; and store the high watermark value; wherein only objects having a sequence number higher than the stored high watermark are determined to require scanning; and synchronize the at least one object with a plurality of devices connected to the cloud store system based on the scanning results. - View Dependent Claims (17, 18, 19, 20, 21)
-
-
22. An apparatus for scanning objects stored in a cloud storage system, the scanning of the objects being for a purpose other than detecting a volume failure issue, comprising:
-
a processing unit; and a memory coupled to the processing unit, the memory contains instructions that when executed by the processing unit configures the apparatus to; determine that at least one of the objects stored in the cloud storage system that requires scanning; scan each of the at least one object, wherein the scanning is performed using at least one scanning engine; and synchronize the at least one object with a plurality of devices connected to the cloud store system based on the scanning results; wherein the at least one scanning engine is a threat detection engine that employs pattern matching on blocks of the at least one object to determine if the at least one object is a threat, wherein determining that an object is a threat is based on the object containing at least one suspect block, wherein a suspect block contains at least one of a non-trivial prefix or non-trivial suffix match; and wherein the synchronizing is performed by, when the scanning results is that the least one object is a threat, neutralizing the threat from the at least one object from the cloud store system and any device synchronized with the cloud storage system, wherein neutralizing the threat includes any one of;
deleting the object from the cloud storage system and the plurality of devices, quarantining the object at the cloud storage system and the plurality of devices, and replacing the object by a safe version of the object at the cloud storage system and the plurality of devices. - View Dependent Claims (23, 24, 25, 26, 27)
-
Specification