System, method and apparatus for enterprise policy management

US 7,805,449 B1
Filed: 10/28/2005
Issued: 09/28/2010
Est. Priority Date: 10/28/2004
Status: Expired due to Fees

First Claim

Patent Images

1. A method for enterprise policy management, comprising:

harvesting metadata about managed objects across network file systems residing in a computing environment, wherein the network file systems operate under various file system protocols at one or more physical locations, wherein the managed objects comprise files and directories, and wherein the harvesting comprises;

interacting with a file system abstraction layer/protocol adaptor to access the managed files and directories across the network file systems;

collecting raw metadata of the managed files and directories;

filtering the raw metadata in real time;

placing the filtered raw metadata in one or more volume metadata caches;

synthesizing synthetic metadata from the filtered raw metadata;

generating content-based metadata, wherein generating content-based metadata for a managed file comprises processing content of the file according to a type of the file to determine one or more content-specific entities within the file;

transforming the filtered raw metadata, the synthetic metadata, and the content-based metadata into metadata records having a common representation, wherein each of the metadata record comprises a set of attributes associated with a file or directory residing on the file systems;

processing the metadata records; and

placing processed metadata records in a metadata repository, each record linking a set of attributes to one of the managed objects in the network file systems;

configuring a management device with at least one filtering mechanism, wherein the management device is coupled to the network file systems and the metadata repository;

enabling a user to define a policy rule via a user interface to the management device, wherein the policy rule comprises a condition and a corresponding action and the condition is associated with the raw metadata, the synthetic metadata or the content-based metadata;

selecting from the metadata repository one or more metadata records having one or more attributes that satisfy the condition defined in the policy rule; and

applying the action defined in the policy rule to one or more of the managed objects in the network file systems that are associated with the one or more metadata records, thereby changing a state of the network file systems in accordance with the policy rule.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed are systems, methods and apparatuses for managing objects in an enterprise environment according to policies. According to the invention, each policy rule ties a condition that conceptually lives in a repository to an appropriate action(s). Since each condition can be expressed in terms of metadata, policies can be applied and enforced over managed objects (files and directories) by allowing users to program appropriate corresponding action(s) via manipulating metadata stored in a metadata repository, e.g., a policy could prohibit storing MP3 files in corporate storage. In one embodiment, a user can specify a policy rule that ties the condition “no MP3 files in volumes A-Z” to an action “delete MP3 files from volumes A-Z” via a Web-based user interface. A harvester is disclosed for harvesting metadata across file systems.

Citations

20 Claims

1. A method for enterprise policy management, comprising:
- harvesting metadata about managed objects across network file systems residing in a computing environment, wherein the network file systems operate under various file system protocols at one or more physical locations, wherein the managed objects comprise files and directories, and wherein the harvesting comprises;
  
  interacting with a file system abstraction layer/protocol adaptor to access the managed files and directories across the network file systems;
  
  collecting raw metadata of the managed files and directories;
  
  filtering the raw metadata in real time;
  
  placing the filtered raw metadata in one or more volume metadata caches;
  
  synthesizing synthetic metadata from the filtered raw metadata;
  
  generating content-based metadata, wherein generating content-based metadata for a managed file comprises processing content of the file according to a type of the file to determine one or more content-specific entities within the file;
  
  transforming the filtered raw metadata, the synthetic metadata, and the content-based metadata into metadata records having a common representation, wherein each of the metadata record comprises a set of attributes associated with a file or directory residing on the file systems;
  
  processing the metadata records; and
  
  placing processed metadata records in a metadata repository, each record linking a set of attributes to one of the managed objects in the network file systems;
  
  configuring a management device with at least one filtering mechanism, wherein the management device is coupled to the network file systems and the metadata repository;
  
  enabling a user to define a policy rule via a user interface to the management device, wherein the policy rule comprises a condition and a corresponding action and the condition is associated with the raw metadata, the synthetic metadata or the content-based metadata;
  
  selecting from the metadata repository one or more metadata records having one or more attributes that satisfy the condition defined in the policy rule; and
  
  applying the action defined in the policy rule to one or more of the managed objects in the network file systems that are associated with the one or more metadata records, thereby changing a state of the network file systems in accordance with the policy rule.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1, wherein the filtering mechanism comprises a filter definition with filtering criteria specifying which of the records of the harvested metadata in the metadata repository are to be selected.
  - 3. The method according to claim 1, wherein the action comprises deleting one or more files.
  - 4. The method according to claim 1, wherein the action comprises moving one or more files.
  - 5. The method according to claim 1, wherein the action comprises flagging one or more files for backup.
  - 6. The method according to claim 1, wherein the action comprises checking one or more files into a document management system.
  - 7. The method according to claim 1, wherein the action comprises indexing files for use in content search.

8. A computer program product comprising one or more computer readable storage media storing instructions translatable by one or more processors to perform:
- harvesting metadata about managed objects across network file systems residing in a computing environment, wherein the network file systems operate under various file system protocols at one or more physical locations and wherein the managed objects comprise files and directories, wherein the harvested metadata comprises filtered raw metadata, synthetic metadata and content-based metadata and the content-based metadata for a managed file is generated by processing content of the file according to a type of the file to determine one or more content-specific entities within the file;
  
  storing records of harvested metadata in a metadata repository, each record linking a set of attributes to one of the managed objects in the network file systems;
  
  configuring a management device with at least one filtering mechanism, wherein the management device is coupled to the network file systems and the metadata repository;
  
  enabling a user to define a policy rule via a user interface to the management device, wherein the policy rule comprises a condition and a corresponding action and the condition is associated with the raw metadata, the synthetic metadata or the content-based metadata;
  
  selecting from the metadata repository one or more metadata records having one or more attributes that satisfy the condition defined in the policy rule; and
  
  applying the action defined in the policy rule to one or more of the managed objects in the network file systems that are associated with the one or more metadata records, thereby changing a state of the network file systems in accordance with the policy rule.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The computer program product of claim 8, wherein the filtering mechanism comprises a filter definition with filtering criteria specifying which of the records of the harvested metadata in the metadata repository are to be selected.
  - 10. The computer program product of claim 8, wherein the action comprises deleting one or more files.
  - 11. The computer program product of claim 8, wherein the action comprises moving one or more files.
  - 12. The computer program product of claim 8, wherein the action comprises flagging one or more files for backup.
  - 13. The computer program product of claim 8, wherein the action comprises checking one or more files into a document management system.
  - 14. The computer program product of claim 8, wherein the action comprises indexing files for use in content search.

15. A system for enterprise policy management, comprising:
- a management device coupled to network file systems over a network, wherein the file systems operate under various file system protocols at one or more physical locations and wherein the management device is configured with at least one filtering mechanism and a user interface;
  
  one or more processors; and
  
  one or more computer readable storage media storing instructions translatable by the one or more processors to perform;
  
  harvesting metadata about managed objects across the network file systems, wherein the managed objects comprise files and directories, wherein the harvested metadata comprises filtered raw metadata, synthetic metadata and content-based metadata and the content-based metadata for a managed file is generated by processing content of the file according to a type of the file to determine one or more content-specific entities within the file;
  
  storing records of harvested metadata in a metadata repository, each record linking a set of attributes to one of the managed objects in the network file systems;
  
  enabling a user to define a policy rule via the user interface to the management device, wherein the policy rule comprises a condition and a corresponding action and the condition is associated with the raw metadata, the synthetic metadata or the content-based metadata;
  
  selecting from the metadata repository one or more metadata records having one or more attributes that satisfy the condition defined in the policy rule; and
  
  applying the action defined in the policy rule to one or more of the managed objects in the network file systems that are associated with the one or more metadata records, thereby changing a state of the network file systems in accordance with the policy rule.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The system of claim 15, wherein the filtering mechanism comprises a filter definition with filtering criteria specifying which of the records of the harvested metadata in the metadata repository are to be selected.
  - 17. The system of claim 15, wherein the action comprises deleting one or more files.
  - 18. The system of claim 15, wherein the action comprises moving one or more files.
  - 19. The system of claim 15, wherein the action comprises flagging one or more files for backup.
  - 20. The system of claim 15, wherein the action comprises checking one or more files into a document management system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
Stored Iq
Inventors
Kaplan, Jeremy, Arbilla, Laura, Lee, Peter, Zoellner, Keith, Belkin, Morry, Bone, Jeff G., Might, Bradley
Primary Examiner(s)
Rones; Charles
Assistant Examiner(s)
MACKES, KRIS E

Application Number

US11/262,282
Time in Patent Office

1,796 Days
Field of Search

707/101
US Class Current

707/751
CPC Class Codes

G06F 16/13 File access structures, e.g...

System, method and apparatus for enterprise policy management

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System, method and apparatus for enterprise policy management

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links