Internet-based shared file service with native PC client access and semantics and distributed access control
First Claim
1. A method for providing multi user file storage comprising the steps of:
- (a) enabling each user of a pre-subscribed user group of one or more users to connect an arbitrary client node at an arbitrary geographic location to a remote file server node via a wide area network,(b) enabling each user of the pre-subscribed user group to access files of a file group at the remote file server node via the respective client node connected to the remote file server node via the wide area network, including permitting, when the pre-subscribed user group includes at least two users, more than one user of the pre-subscribed user group to access the same file of the file group at the remote file server node simultaneously,(c) maintaining the integrity of the files at the remote file server node by controlling each access to each of the files at the remote file server node so that each access to each of the files at the remote file server node is performed, if at all, on a respective portion of the respective file as most recently updated at the remote file server node, wherein the respective portion is less than all of the respective file, thereby enabling all native operating system application programming interfaces to operate so that all multi-user applications accessing the files function as if the remote file server node, which stores the files, and client nodes, at which such multi-user applications execute, were on the same local area network, and(d) delegating both privileged rights access control and file sharing mode access control to a particular file of the group of files to one or more distributed nodes other than the remote file server node which provides the data.
5 Assignments
0 Petitions
Accused Products
Abstract
A multi-user file storage service and system enable each user of a pre-subscribed user group to communicate with a remote file server node via a wide area network and to access the files of the file group via the respective client node. More than one user of the pre-subscribed user group is permitted to access the file group at the remote file server node simultaneously. Integrity of the files at the remote file server node are maintained by controlling each access to each file at the remote file server node so that each access to files at the remote file server is performed, if at all, on a respective portion of each file as most recently updated at the remote file server node. Additionally, an encrypted key is transferred from the file server node to a particular client node via a secure channel. The encrypted key uses an encryption function and a decryption function not known locally at the remote file server. Furthermore, both privileged access control rights and file sharing mode access control to a particular file of the group of files are delegated to one or more distributed nodes other than the remote file server node which provides the data.
-
Citations
68 Claims
-
1. A method for providing multi user file storage comprising the steps of:
-
(a) enabling each user of a pre-subscribed user group of one or more users to connect an arbitrary client node at an arbitrary geographic location to a remote file server node via a wide area network, (b) enabling each user of the pre-subscribed user group to access files of a file group at the remote file server node via the respective client node connected to the remote file server node via the wide area network, including permitting, when the pre-subscribed user group includes at least two users, more than one user of the pre-subscribed user group to access the same file of the file group at the remote file server node simultaneously, (c) maintaining the integrity of the files at the remote file server node by controlling each access to each of the files at the remote file server node so that each access to each of the files at the remote file server node is performed, if at all, on a respective portion of the respective file as most recently updated at the remote file server node, wherein the respective portion is less than all of the respective file, thereby enabling all native operating system application programming interfaces to operate so that all multi-user applications accessing the files function as if the remote file server node, which stores the files, and client nodes, at which such multi-user applications execute, were on the same local area network, and (d) delegating both privileged rights access control and file sharing mode access control to a particular file of the group of files to one or more distributed nodes other than the remote file server node which provides the data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for providing multi user file storage comprising the steps of:
-
(a) enabling each user of a pre subscribed user group of one or more users operating an arbitrary client node at an arbitrary geographic location to communicate with a remote file server node via a wide area network, (b) enabling each user of the pre subscribed user group to access files of a file group at the remote file server node via the respective client node in communication with the remote file server node via the wide area network, including permitting, when the pre-subscribed user group includes at least two users, more than one user of the pre subscribed user group to access the same file of the file group at the remote file server node simultaneously, (c) providing an interface for adapting file access at a particular client node by designating at the particular client node each accessible file of the file group as stored on a virtual storage device, and enabling access to the designated files in a fashion which is indistinguishable, by users of, and applications executing at, the particular client node, with access to one or more files stored on a physical storage device that is locally present at the particular client node, and (d) delegating both privileged rights access control and file sharing mode access control to a particular file of the group of files to one or more distributed nodes other than the remote file server node which provides the data, such that access to the particular file maintained at the remote file server node occurs on a most up to date version of the particular file. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
-
-
24. A method for providing multi user file storage comprising the steps of:
-
(a) enabling each user of a pre subscribed user group of one or more users operating an arbitrary client node at an arbitrary geographic location to communicate with a remote file server node via a wide area network, (b) enabling each user of the pre subscribed user group to access files of a file group at the remote file server node via the respective client node in communication with the remote file server node via the wide area network, including permitting, when the pre-subscribed user group includes at least two users, more than one user of the pre subscribed user group to access the same file of the file group at the remote file server node simultaneously, (c) transferring an encrypted key from the remote file server node to a particular client node via a secure channel, the encrypted key being encrypted using an encryption function not known locally at the remote file server node, the key being decryptable using a decryption function not known locally at the remote file server node, the decryption function being also not known locally at any other client node usable by others of the pre-subscribed user group, (d) decrypting the transferred key at the particular client node, (e) using the key at the particular client node to decrypt information of a file downloaded from the remote file server node or to encrypt information of a file prior to uploading for storage at the remote file server node, and (f) delegating both privileged rights access control and file sharing mode access control to a particular file of the group of files to one or more distributed nodes other than the remote file server node which provides the data. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
-
-
35. A system for providing multi user file storage comprising the steps of:
-
a remote file server node for enabling each user of a pre subscribed user group of one or more users to connect an arbitrary client node at an arbitrary geographic location to communicate with said remote file server node via a wide area network, a storage device at the remote file server node for enabling each user of the pre subscribed user group to access files of a file group at the remote file server node via the respective client node in communication with the remote file server node via the wide area network, including permitting, when the pre-subscribed user group includes at least two users, more than one user of the pre subscribed user group to access the same file of the file group at the remote file server node simultaneously, and wherein the remote file server node is also for while enabling a plurality of the users to access the same file, concurrently maintaining the integrity of the files at the remote file server node by controlling each access to each of the files at the remote file server node so that each access to each of the files at the remote file server node is performed, if at all, on a respective portion of the respective file as most recently updated at the remote file server node, wherein the respective portion is less than all of the respective file, thereby enabling all native operating system application programming interfaces to operate so that all multi user applications accessing the files function as if the remote file server node, which stores the files, and client nodes, at which such multi user applications execute, were on the same local area network, and wherein the remote file server node is also for delegating both privileged rights access control and file sharing mode access control to a particular file of the group of files to one or more distributed nodes other than the remote file server node which provides the data. - View Dependent Claims (36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46)
-
-
47. A system for providing multi user file storage comprising:
-
a specific client node at an arbitrary geographic location, usable by a user of a pre subscribed user group for communicating with a remote file server node via a wide area network, the remote file server enabling each user of the pre subscribed user group to access files of a file group at the remote file server node via the respective client node in communication with the remote file server node via the wide area network, including permitting, when the pre-subscribed user group includes at least two users, more than one user of the pre subscribed user group to access the same file of the file group at the remote file server node simultaneously, and an interface for adapting file access at the specific client node by designating at the specific client node each accessible file of the file group as stored on a virtual storage device, and enabling access to the designated files in a fashion which is indistinguishable, by users of, and applications executing at, the specific client node, with access to one or more files stored on a physical storage device that is locally present at the specific client node, and wherein the remote file server node is also for delegating both privileged rights access control and file sharing mode access control to a particular file of the group of files to one or more distributed nodes other than the remote file server node which provides the data, such that access to the particular file maintained at the remote file server node occurs on a most up to date version of the particular file. - View Dependent Claims (48, 49, 50, 51, 52, 53, 54, 55, 56, 57)
-
-
58. A system for providing multi user file storage comprising:
-
a remote file server node for enabling each user of a pre subscribed user group of one or more users operating an arbitrary client node at an arbitrary geographic location to communicate with a remote file server node via a wide area network, a storage device at the remote file server node for enabling each user of the pre subscribed user group to access files of a file group at the remote file server node via the respective client node in communication with the remote file server node via the wide area network, including permitting, when the pre-subscribed user group includes at least two users, more than one user of the pre subscribed user group to access the same file of the file group at the remote file server node simultaneously, and a particular client node, wherein the remote file server node is also configured for transferring an encrypted key from the remote file server node to a particular client node via a secure channel, the encrypted key being encrypted using an encryption function not known locally at the remote file server node, the key being decryptable using a decryption function not known locally at the remote file server node, the decryption function being also not known locally at any other client node usable by others of the pre subscribed user group, wherein the particular client node is also configured for decrypting the transferred key at the particular client node, and for using the key at the particular client node to decrypt information of a file downloaded from the remote file server node or to encrypt information of a file prior to uploading for storage at the remote file server node, and wherein the remote file server node is also for delegating both privileged rights access control and file sharing mode access control to a particular file of the group of files to one or more distributed nodes other than the remote file server node which provides the data. - View Dependent Claims (59, 60, 61, 62, 63, 64, 65, 66, 67, 68)
-
Specification