CROSS-ACL MULTI-MASTER REPLICATION
First Claim
Patent Images
1. A computing system comprising:
- one or more processors;
storage media; and
one or more programs stored in the storage media and configured for execution by the one or more processors, the one or more programs comprising instructions configured for;
storing a data object at a first replication site of a plurality of replication sites arranged in a multi-master replication topology;
wherein the data object stored at the first replication site comprises;
a first access controlled data object data unit, anda second access controlled data object data unit;
wherein first access controls are associated at the first replication site with the first access controlled data object data unit of the data object at the first replication site;
wherein second access controls are associated at the first replication site with the second access controlled data object data unit of the data object at the first replication site;
wherein the first access controls specify that the first access controlled data object data unit, of the data object at the first replication site, is permitted to be shared from the first replication site with a first set of zero or more other replication sites of the plurality of replication sites;
wherein the second access controls specify that the second access controlled data object data unit, of the data object at the first replication site, is permitted to be shared from the first replication site with a second set of zero or more other replication sites of the plurality of replication sites;
wherein the first set of zero or more other replication sites, of the plurality of replication sites, is different than the second set of zero or more other replication sites, of the plurality of replication sites;
receiving a data object change update for the data object from a second replication site of the plurality of replication sites;
wherein the data object change update comprises a first data object data unit update for the first access controlled data object data unit of the data object at the first replication site;
wherein the data object change update does not include a data object data unit update for the second access control data object data unit of the data object at the first replication site;
wherein the data object change update further comprises a third data object data unit update for the data object at the first replication site;
detecting a concurrency conflict between the first data object data unit update, of the data object change update, and the first access controlled data object data unit, of the data object at the first replication site; and
applying the third data object data unit update, of the data object change update, to the data object stored at the first replication site only after the concurrency conflict is deconflicted.
0 Assignments
0 Petitions
Accused Products
Abstract
Techniques for cross-ACL multi-master replication are provided. The techniques allow a replication site in a multi-master replication system implementing an asynchronous replication protocol and an access control policy to appropriately apply received data change updates to data maintained at the site even where a data change update is missing information because of the implemented access control policy.
-
Citations
1 Claim
-
1. A computing system comprising:
-
one or more processors; storage media; and one or more programs stored in the storage media and configured for execution by the one or more processors, the one or more programs comprising instructions configured for; storing a data object at a first replication site of a plurality of replication sites arranged in a multi-master replication topology; wherein the data object stored at the first replication site comprises; a first access controlled data object data unit, and a second access controlled data object data unit; wherein first access controls are associated at the first replication site with the first access controlled data object data unit of the data object at the first replication site; wherein second access controls are associated at the first replication site with the second access controlled data object data unit of the data object at the first replication site; wherein the first access controls specify that the first access controlled data object data unit, of the data object at the first replication site, is permitted to be shared from the first replication site with a first set of zero or more other replication sites of the plurality of replication sites; wherein the second access controls specify that the second access controlled data object data unit, of the data object at the first replication site, is permitted to be shared from the first replication site with a second set of zero or more other replication sites of the plurality of replication sites; wherein the first set of zero or more other replication sites, of the plurality of replication sites, is different than the second set of zero or more other replication sites, of the plurality of replication sites; receiving a data object change update for the data object from a second replication site of the plurality of replication sites; wherein the data object change update comprises a first data object data unit update for the first access controlled data object data unit of the data object at the first replication site; wherein the data object change update does not include a data object data unit update for the second access control data object data unit of the data object at the first replication site; wherein the data object change update further comprises a third data object data unit update for the data object at the first replication site; detecting a concurrency conflict between the first data object data unit update, of the data object change update, and the first access controlled data object data unit, of the data object at the first replication site; and applying the third data object data unit update, of the data object change update, to the data object stored at the first replication site only after the concurrency conflict is deconflicted.
-
Specification