Method and system for providing restricted access to a storage medium
DC CAFCFirst Claim
Patent Images
1. A method for applying an operation access privilege to a storage medium, comprising:
- associating an access privilege with at least a portion of the storage medium;
intercepting an attempted operation on said at least a portion of the storage medium, wherein said intercepting occurs regardless of an identity of a user attempting the attempted operation;
comparing the attempted operation to the access privilege; and
allowing, or denying the attempted operation based on comparing the attempted operation to the access privilege.
2 Assignments
Litigations
2 Petitions
Accused Products
Abstract
A method of restricting file access is disclosed wherein a set of file write access commands are determined from data stored within a storage medium. The set of file write access commands are for the entire storage medium. Any matching file write access command provided to the file system for that storage medium results in an error message. Other file write access commands are, however, passed onto a device driver for the storage medium and are implemented. In this way commands such as file delete and file overwrite can be disabled for an entire storage medium.
-
Citations
32 Claims
-
1. A method for applying an operation access privilege to a storage medium, comprising:
-
associating an access privilege with at least a portion of the storage medium; intercepting an attempted operation on said at least a portion of the storage medium, wherein said intercepting occurs regardless of an identity of a user attempting the attempted operation; comparing the attempted operation to the access privilege; and allowing, or denying the attempted operation based on comparing the attempted operation to the access privilege. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. A computer program product for applying an operation access privilege to a storage medium, the computer program product including program logic, which when executed on a computer performs a method, the method comprising:
-
associating an access privilege with at least a portion of the storage medium; intercepting an attempted operation on said at least a portion of the storage medium, wherein said intercepting occurs regardless of an identity of a user attempting the attempted operation; comparing the attempted operation to the access privilege; allowing, or denying the attempted operation based on comparing the attempted operation to the access privilege; and enforcing at least one retention policy comprising; applying a restricted state to said at least a portion of the storage medium; preventing modification of the restricted state portion of the storage medium; and associating a time of expiration with the restricted state portion of the storage medium. - View Dependent Claims (30, 31)
-
-
32. A system for applying an operation access privilege to a storage medium, comprising:
-
means for associating an access privilege with at least a portion of the storage medium; means for intercepting an attempted operation on said at least a portion of the storage medium, wherein said intercepting occurs regardless of an identity of a user attempting the attempted operation; means for comparing the attempted operation to the access privilege; means for allowing, or denying the attempted operation based on comparing the attempted operation to the access privilege; and means for enforcing at least one retention policy comprising applying a restricted state to said at least a portion of the storage medium and preventing modification of the restricted state portion of the storage medium.
-
Specification