×

Data security for distributed file systems

  • US 20020157016A1
  • Filed: 04/19/2001
  • Published: 10/24/2002
  • Est. Priority Date: 04/19/2001
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method for controlling access by a plurality of client applications to file data in a distributed file system including a distributed file system interface coupled to the client applications and a storage server and a meta-data server coupled to the distributed file system interface, comprising:

  • receiving at the meta-data server an open-file request, the open-file request specifying a name of a first file, wherein the first file includes a first set of blocks;

    creating a security object at the meta-data server in response to the open-file request;

    generating an encryption key at the meta-data server and the storage server and storing the encryption key in the security object;

    encrypting a list that identifies the first set of blocks, whereby an encrypted block list is formed;

    adding the encrypted block list to the security object; and

    transmitting the security object to the distributed file interface.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×