TECHNIQUES FOR RETAINING SECURITY RESTRICTIONS WITH FILE VERSIONING
First Claim
Patent Images
1. A machine-implemented method, comprising:
- detecting an event indicating that a file is to be versioned;
acquiring a directory path for the file in its native location where it is to be versioned from and acquiring metadata associated with the directory path, wherein the metadata includes access permissions on the file;
prefixing the directory path with a root path on an archive volume where the file is to be archived in order to create a full path, wherein the full path includes the root path, the directory path, and a file name for the file;
hashing the full path to acquire a hashed string;
indexing the hashed string to a particular subdirectory on the archive volume, wherein the subdirectory is used to store the metadata and the file as a new version of the file, and when the new version is accessed from the particular subdirectory, the access permissions in the metadata are enforced against requesters.
16 Assignments
0 Petitions
Accused Products
Abstract
Techniques are presented for retaining security restrictions with file versioning. Files are versioned in such a manner that metadata including full directory paths and access restrictions are retained for each version of the file and enforced when each version is accessed. The files are versioned to hashed subdirectories for space and management efficiencies. In an embodiment, prior versions of a particular file are maintained as delta data structures while a most-recent version of that file is maintained in its full or complete data state.
44 Citations
25 Claims
-
1. A machine-implemented method, comprising:
-
detecting an event indicating that a file is to be versioned; acquiring a directory path for the file in its native location where it is to be versioned from and acquiring metadata associated with the directory path, wherein the metadata includes access permissions on the file; prefixing the directory path with a root path on an archive volume where the file is to be archived in order to create a full path, wherein the full path includes the root path, the directory path, and a file name for the file; hashing the full path to acquire a hashed string; indexing the hashed string to a particular subdirectory on the archive volume, wherein the subdirectory is used to store the metadata and the file as a new version of the file, and when the new version is accessed from the particular subdirectory, the access permissions in the metadata are enforced against requesters. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A machine-implemented method, comprising:
-
receiving a first instruction to establish a first version of a file; archiving the first version along with a directory path and first access restrictions associated with the first version; receiving a second instruction to establish a second version of the file; archiving the second version along with the directory path and second access restrictions associated with the second version; generating a delta data structure that when applied to the second version permits the first version to be reproduced; retaining the delta data structure; and deleting the first version. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A machine-implemented method, comprising:
-
versioning a file by retaining its native directory path and metadata that includes access permissions in a hashed subdirectory that is date and time stamped and labeled; receiving a request access to the versioned file and directory path; re-establishing the native directory and the date and time stamped label from the hashed subdirectory in an exported path; and enforcing the access permissions within the exported path. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. A system, comprising:
-
a versioning service implemented in a computer-readable medium as instructions and to process on a server machine of a network; and a delta file control service implemented in a computer-readable medium as instructions and to process on the server machine and one or more additional machines of the network; wherein the versioning service is to version files by retaining native directory paths for those files and retaining native metadata for those files and directories associated the directory paths, wherein the metadata includes access restrictions for accessing the files and the directories, and wherein the delta file control service is to retain as a full file just a most-recent version of any particular file and manage prior versions of that full file as delta data structures that when applied to the full file produces a particular prior version, each particular version of a particular file includes its own unique access restrictions that is enforced when an access attempt is made. - View Dependent Claims (22, 23, 24, 25)
-
Specification