System and method for applying a file system security model to a query system
First Claim
Patent Images
1. A system, comprising:
- a storage device configured to store file system content items including a plurality of files and metadata records associated with said files, wherein each of said files is associated with a respective file identity;
a file system configured to manage application accesses to said storage device, to store said file system content items to said storage device, and to implement a first security model, wherein said first security model is configured to control access to said file system content items, wherein said file system is further configured to implement a file system application programming interface (API), wherein said file system API is configured to receive a request from an application distinct from said file system to access one or more particular ones of said plurality of files, wherein said request is dependent upon respective file identities of said one or more particular files;
a query system configured to query said file system content items in response to receiving, via a query API, a query directed to said file system content items from said application, wherein said query is formulated in a query language, wherein to query said file system content items, said query system is further configured to evaluate said query, and wherein said query system is distinct from said file system; and
security mapping functionality configured to apply said first security model to said query system such that application accesses to said file system content via said query API occur dependent upon security information included in said first security model.
9 Assignments
0 Petitions
Accused Products
Abstract
A system and method for applying a file system security model to a query system. In one embodiment, the system may include a storage device configured to store data and a file system configured to manage access to the storage device, to store file system content, and to implement a first security model, where the first security model is configured to control access to the file system content. The system may further include a query system configured to query the file system content, and security mapping functionality configured to apply the first security model to the query system.
-
Citations
27 Claims
-
1. A system, comprising:
-
a storage device configured to store file system content items including a plurality of files and metadata records associated with said files, wherein each of said files is associated with a respective file identity; a file system configured to manage application accesses to said storage device, to store said file system content items to said storage device, and to implement a first security model, wherein said first security model is configured to control access to said file system content items, wherein said file system is further configured to implement a file system application programming interface (API), wherein said file system API is configured to receive a request from an application distinct from said file system to access one or more particular ones of said plurality of files, wherein said request is dependent upon respective file identities of said one or more particular files; a query system configured to query said file system content items in response to receiving, via a query API, a query directed to said file system content items from said application, wherein said query is formulated in a query language, wherein to query said file system content items, said query system is further configured to evaluate said query, and wherein said query system is distinct from said file system; and security mapping functionality configured to apply said first security model to said query system such that application accesses to said file system content via said query API occur dependent upon security information included in said first security model. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method, comprising:
-
storing file system content items to a storage device, wherein said file system content items include a plurality of files and metadata records associated with said files, wherein each of said files is associated with a respective file identity; a file system managing application accesses to said storage device, storing said file system content items to said storage device, and implementing a first security model, wherein said first security model is configured to control access to said file system content items; said file system receiving, via a file system application programming interface (API), a request from an application distinct from said file system to access one or more particular ones of said plurality of files, wherein said request is dependent upon respective file identities of said one or more particular files; a query system querying said file system content items in response to receiving, via a query API, a query directed to said file system content items from said application, wherein said query is formulated in a query language, wherein querying said file system content items comprises evaluating said query, and wherein said query system is distinct from said file system; and security mapping functionality applying said first security model to a query system configured to query said file system content such that application accesses to said file system content via said query API occur dependent upon security information included in said first security model. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer-accessible storage medium comprising program instructions, wherein the program instructions are executable to implement:
-
storing file system content items to a storage device, wherein said file system content items include a plurality of files and metadata records associated with said files, wherein each of said files is associated with a respective file identity; a file system managing application accesses to said storage device, storing said file system content items to said storage device, and implementing a first security model, wherein said first security model is configured to control access to said file system content items; said file system receiving, via a file system application programming interface (API), a request from an application distinct from said file system to access one or more particular ones of said plurality of files, wherein said request is dependent upon respective file identities of said one or more particular files; a query system querying said file system content items in response to receiving, via a query API, a query directed to said file system content items from said application, wherein said query is formulated in a query language, wherein querying said file system content items comprises evaluating said query, and wherein said query system is distinct from said file system; and security mapping functionality applying said first security model to a query system configured to query said file system content such that application accesses to said file system content via said query API occur dependent upon security information included in said first security model. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27)
-
Specification