Method and system for providing restricted access to a storage medium
First Claim
1. A method of providing restricted access to a storage medium in communication with a computer comprising the step of:
- executing a file system layer on the computer, the file system layer supporting a plurality of file system commands;
executing a trap layer on the computer, the trap layer logically disposed above the file system layer;
providing to the trap layer at least a disabled file system command relating to the storage medium and supported by the file system for the storage medium;
intercepting data provided to the file system layer including an intercepted file system command;
comparing the intercepted file system command to each of the at least a disabled file system command to produce at least a comparison result, and, when each of the at least a, comparison result is indicative of other than a match, providing the intercepted file system command to the file system layer.
3 Assignments
0 Petitions
Accused Products
Abstract
A method of restricting file access is disclosed wherein a set of file write access commands are determined from data stored within a storage medium. The set of file write access commands are for the entire storage medium. Any matching file write access command provided to the file system for that storage medium results in,an error message. Other file write access commands are, however, passed onto a device driver for the storage medium and are implemented. In this way commands such as file delete and file overwrite can be disabled for an entire storage medium.
31 Citations
35 Claims
-
1. A method of providing restricted access to a storage medium in communication with a computer comprising the step of:
-
executing a file system layer on the computer, the file system layer supporting a plurality of file system commands;
executing a trap layer on the computer, the trap layer logically disposed above the file system layer;
providing to the trap layer at least a disabled file system command relating to the storage medium and supported by the file system for the storage medium;
intercepting data provided to the file system layer including an intercepted file system command;
comparing the intercepted file system command to each of the at least a disabled file system command to produce at least a comparison result, and, when each of the at least a, comparison result is indicative of other than a match, providing the intercepted file system command to the file system layer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method of restricting access to a storage medium in communication with a computer, the method comprising the step of:
-
executing a file system layer on the computer, the file system layer supporting a plurality of file system commands;
providing to the file system layer at least a disabled file system command for the storage medium, the disabled file system, command supported by the file system for the storage medium, the at least a disabled file system command being other than all write commands, other than all read commands, and other than all write commands and all read commands;
comparing file system requests provided to the file system layer to each of the at least a disabled file system command to produce at least a comparison result; and
,when each of the at least a comparison result is indicative of other than a match, executing the file system command. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A method of restricting access by a computer to a logical storage medium other than a write once medium in communication with the computer, the method comprising the steps of:
-
providing an indication of a data write access privilege for the entire logical storage medium, the data write access privilege indicative of a restriction to alteration of a same portion of each file stored on the logical storage medium; and
restricting file access to the logical storage medium in accordance with the indication while allowing access to free space portions of the same logical storage medium. - View Dependent Claims (28, 29, 30)
-
-
31. A method of restricting access by a computer to a storage medium other than a write once medium in communication with the computer, the method comprising the steps of:
-
providing an indication of a data write access privilege for the entire logical storage medium indicating a disabled operation relating to alteration of a portion of each file stored within the logical storage medium, the indication other than a read only indication; and
,restricting file access to each file within the logical storage medium in accordance with the same indication while allowing access to free space portions of the same logical storage medium. - View Dependent Claims (32, 33, 34)
-
-
35. A method of restricting access by a computer to a storage medium other than a write once medium in communication with the computer, the method comprising the steps of:
-
providing an indication of a data write access privilege for the entire logical storage medium indicating a disabled operation relating to alteration of data within the logical storage medium, the indication other than a read only indication, the disabled operations supported by the storage medium; and
restricting write access to data within the logical storage medium in accordance with the same indication while allowing access to free space portions of the same logical storage medium.
-
Specification