APPARATUS AND METHOD FOR MANAGING SECURITY CONTENT USING VIRTUAL FOLDER
First Claim
1. An apparatus for managing security contents comprising:
- a data control unit configured to receive an authority policy on contents from a security content server, and stores the received authority policy in a storage means;
a security processing unit configured to encode or decode the contents based on the authority policy provided from the data control unit; and
a security filesystem interface unit configured to create a virtual folder based on position information of a folder to be virtualized and path information of the virtual folder by driving a virtual folder creation module that is operated in a kernel mode and registers the created virtual folder in a filesystem, and provides, to the security processing unit, contents corresponding to an input and output event for contents which have been recorded or are to be recorded in the virtual folder hooked from the kernel mode and instructs the security processing unit to encode or decode the provided contents.
3 Assignments
0 Petitions
Accused Products
Abstract
Provided are an apparatus and method for managing security contents using a virtual folder. The apparatus for managing security contents includes a data control unit that receives an authority policy on contents from a security content server, and stores the received authority policy in a storage means, a security processing unit that encodes or decodes the contents based on the authority policy provided from the data control unit, and a security filesystem interface unit that creates a virtual folder based on position information of a folder to be virtualized and path information of the virtual folder by driving a virtual folder creation module that is operated in a kernel mode and registers the created virtual folder in a filesystem, and provides, to the security processing unit, contents corresponding to an input and output event for contents which have been recorded or are to be recorded in the virtual folder hooked from the kernel mode and instructs the security processing unit to encode or decode the provided contents. According to the present invention, it is possible to provide contents created in different environments to a user based on authority information without any separate content conversion operation.
-
Citations
20 Claims
-
1. An apparatus for managing security contents comprising:
-
a data control unit configured to receive an authority policy on contents from a security content server, and stores the received authority policy in a storage means; a security processing unit configured to encode or decode the contents based on the authority policy provided from the data control unit; and a security filesystem interface unit configured to create a virtual folder based on position information of a folder to be virtualized and path information of the virtual folder by driving a virtual folder creation module that is operated in a kernel mode and registers the created virtual folder in a filesystem, and provides, to the security processing unit, contents corresponding to an input and output event for contents which have been recorded or are to be recorded in the virtual folder hooked from the kernel mode and instructs the security processing unit to encode or decode the provided contents. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An apparatus for managing security contents comprising:
-
a storage means that stores an authority policy on contents received from a security content server and a security content management program for managing security contents; and a processor that performs security management on the contents by executing the security content management program, wherein the security content management program includes a data control module that stores the authority policy received from the security content server in the storage means, a security processing module that encodes or decodes the contents based on the authority policy provided from the data control module, and a security filesystem interface module that creates a virtual folder based on position information of a folder to be virtualized and path information of the virtual folder by driving a virtual folder creation module that is operated in a kernel mode and registers the created virtual folder in a filesystem, and provides, to the security processing module, contents corresponding to an input and output event for contents which have been recorded or are to be recorded in the virtual folder hooked from the kernel mode and instructs the security processing module to encode or decode the provided contents. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A method for managing security contents comprising:
-
(a) receiving an authority policy on contents from a security content server, and storing the received authority policy in a storage means; (b) creating a virtual folder based on position information of a folder to be virtualized and path information of the virtual folder by driving a virtual folder creation module that is operated in a kernel mode, and registering the created virtual folder in a filesystem; and (c) hooking an input and output event for contents which have been recorded or are to be recorded in the virtual folder from the kernel mode, providing contents corresponding to the hooked input and output event to a security processing unit, and instructing the security processing unit to encode or decode the provided contents. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification