Clustered filesystems for mix of trusted and untrusted nodes

US 10,534,681 B2
Filed: 07/26/2016
Issued: 01/14/2020
Est. Priority Date: 06/05/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method for controlling access to data, the method comprising:

interconnecting, with a network a plurality of nodes including a server node and a plurality of client nodes;

receiving, via the network, a request to the server node from a first client node of the plurality of client nodes to update an access control list attribute maintained by the server node, each of said plurality of client nodes and the server node being coupled to a storage area network via an independent connection;

sending a message, via the network from the server node to one or more other client nodes of the plurality of client nodes that have a read token of one or more read tokens, wherein the message sent to the one or more other client nodes instructs the one or more other client nodes to release the one or more read tokens, wherein the releasing of the one or more read tokens invalidates information cached at the one or more other client nodes regarding the access control list attribute;

updating the access control list attribute according to the received request;

receiving, at the server node, a request from a second client node of the plurality of client nodes for a current content of an access control list, wherein the current content of the access control list includes the updated access control list attribute; and

providing a read token and the current content of the access control list to the second client node after receiving the request from the second client node, wherein the read token provided to the second client node identifies that the current content of the access control list provided to the second client node is valid.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A cluster of computer system nodes share direct read/write access to storage devices via a storage area network using a cluster filesystem. At least one trusted metadata server assigns a mandatory access control label as an extended attribute of each filesystem object regardless of whether required by a client node accessing the filesystem object. The mandatory access control label indicates the sensitivity and integrity of the filesystem object and is used by the trusted metadata server(s) to control access to the filesystem object by all client nodes.

Citations

20 Claims

1. A method for controlling access to data, the method comprising:
- interconnecting, with a network a plurality of nodes including a server node and a plurality of client nodes;
  
  receiving, via the network, a request to the server node from a first client node of the plurality of client nodes to update an access control list attribute maintained by the server node, each of said plurality of client nodes and the server node being coupled to a storage area network via an independent connection;
  
  sending a message, via the network from the server node to one or more other client nodes of the plurality of client nodes that have a read token of one or more read tokens, wherein the message sent to the one or more other client nodes instructs the one or more other client nodes to release the one or more read tokens, wherein the releasing of the one or more read tokens invalidates information cached at the one or more other client nodes regarding the access control list attribute;
  
  updating the access control list attribute according to the received request;
  
  receiving, at the server node, a request from a second client node of the plurality of client nodes for a current content of an access control list, wherein the current content of the access control list includes the updated access control list attribute; and
  
  providing a read token and the current content of the access control list to the second client node after receiving the request from the second client node, wherein the read token provided to the second client node identifies that the current content of the access control list provided to the second client node is valid.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 9, 10)
- - 2. The method of claim 1, wherein the access control list attribute is associated with a short form structure and a long form structure.
  - 3. The method of claim 1, wherein the current content of the access control list attribute is stored in a space associated with an unused portion of file system data.
  - 4. The method of claim 1, wherein the read token provided to the second client node is an attribute (ATTR) read token.
  - 5. The method of claim 1, wherein an application program executing on the first client node sends the request to update the access control list attribute to the server, and the application program is associated with a privileged access level.
  - 6. The method of claim 1, wherein a single directory of a plurality of directories are associated with the access control list that controls user access according to a control function.
  - 7. The method of claim 6, wherein the access control list attribute is also associated with mandatory access control information that includes a first portion identifying a sensitivity of data associated with the control function and a second portion that corresponds to the integrity of the data associated with the control function.
  - 9. The non-transitory computer readable storage medium of claim 1, wherein the access control list attribute is associated with a short form structure and a long form structure.
  - 10. The non-transitory computer readable storage medium of claim 1, wherein the current content of the access control list attribute is stored in a space associated with an unused portion of file system data.

8. A non-transitory computer readable storage medium having embodied thereon a program executable by a processor for implementing a method for controlling access to data, the method comprising:
- Interconnecting, with a network, a plurality of nodes including a server node and a plurality of client nodes;
  
  receiving, via the network, a request to the server node from a first client node of the plurality of client nodes to update an access control list attribute maintained by the server node, each of said plurality of client nodes being coupled to a storage area network via an independent connection;
  
  sending a message, via the network, from the server node to one or more other client nodes of the plurality of client nodes that have a read token of one or more read tokens, wherein the message sent to the one or more other client nodes instructs the one or more other client nodes to release the one or more read tokens, wherein the releasing of the one or more read tokens invalidates information cached at the one or more other client nodes regarding the access control list attribute;
  
  updating the access control list according to the received request;
  
  receiving, at the server node, a request from a second client node of the plurality of client nodes for a current content of an access control list, wherein the current content of the access control list includes the updated access control list attribute; and
  
  providing a read token and the current content of the access control list to the second client node after receiving the request from the second client node, wherein the read token provided to the second client node identifies that the current content of the access control list provided to the second client node is valid.
- View Dependent Claims (11, 12, 13, 14)
- - 11. The non-transitory computer readable storage medium of claim 8, wherein the read token provided to the second client node is an attribute (ATTR) read token.
  - 12. The non-transitory computer readable storage medium of claim 8, wherein an application program executing on the first client node sends the request to update the access control list attribute to the server, and the application program is associated with a privileged access level.
  - 13. The non-transitory computer readable storage medium of claim 8, wherein a single directory of a plurality of directories are associated with the access control list that controls user access according to a control function.
  - 14. The non-transitory computer readable storage medium of claim 13, wherein the access control list attribute is also associated with mandatory access control information that includes a first portion identifying a sensitivity of data associated with the control function and a second portion that corresponds to the integrity of the data associated with the control function.

15. A system for controlling access to data, the system comprising:
- a plurality of client nodes interconnected by a communication network and each being coupled to a storage area network via an independent connection, wherein each of the plurality of client nodes includes a processor, a memory, and a network communication interface; and
  
  a server communicatively coupled to the plurality of client nodes via the communication network and coupled to the storage area network via an independent connection, wherein the server;
  
  receives, via the communication network, a request from a first client node of the plurality of client nodes to update an access control list attribute,sends a message, via the communication network, to one or more other client nodes of the plurality of client nodes that have a read token of one or more read tokens, wherein the message sent to the one or more other client nodes instructs the one or more other client nodes to release the one or more read tokens, wherein the releasing of the one or more read tokens invalidates information cached at the one or more other client nodes regarding the access control list attribute,updates the access control list attribute according to the received request,receives a request from a second client node of the plurality of client nodes for a current content of an access control list, wherein the current content of the access control list includes the updated access control list attribute, andprovides a read token and the current content of the access control list to the second client node according to the request from the second client node, wherein the read token provided to the second client node identifies that the current content of the access control list provided to the second client node is valid.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The system of claim 15, wherein the access control list attribute is associated with a short form structure and a long form structure.
  - 17. The system of claim 15, wherein the current content of the access control list attribute is stored in a space associated with an unused portion of file system data.
  - 18. The system of claim 15, wherein the read token provided to the second client node is an attribute (ATTR) read token.
  - 19. The system of claim 15, wherein an application program executing on the first client node sends the request to update the access control list attribute to the server, and the application program is associated with a privileged access level.
  - 20. The system of claim 15, wherein the attribute is also associated with wherein the access control list attribute is also associated with mandatory access control information that includes a first portion identifying a sensitivity of data associated with a control function and a second portion that corresponds to the integrity of the data associated with the control function.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hewlett Packard Enterprise Development LP (Hewlett-Packard Enterprise Company)
Original Assignee
Hewlett Packard Enterprise Development LP (Hewlett-Packard Enterprise Company)
Inventors
Beck, Kenneth S.
Primary Examiner(s)
Contino, Paul

Application Number

US15/219,797
Publication Number

US 20170026378A1
Time in Patent Office

1,267 Days
Field of Search
US Class Current
CPC Class Codes

G06F 11/0709   in a distributed system con...

G06F 11/0745   in an input/output transact...

G06F 11/0772   Means for error signaling, ...

G06F 11/3006   where the computing system ...

G06F 21/6218   to a system of files or obj...

G06F 9/4843   by program, e.g. task dispa...

G06F 9/485   Task life-cycle, e.g. stopp...

H04L 63/101   Access control lists [ACL]

H04L 63/12   Applying verification of th...

Y10S 707/99931   Database or file accessing

Clustered filesystems for mix of trusted and untrusted nodes

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Clustered filesystems for mix of trusted and untrusted nodes

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links