Credential caching for clustered storage systems
First Claim
1. A method for efficiently transmitting credentials among nodes of a clustered storage system, comprising:
- adding a credential of a requester to a N-module cache of a N-module, the N-module operatively connected to the requester over a network;
creating a corresponding credential handle that indexes the credential in the N-module cache;
relaying the credential and the credential handle between the N-module and a D-module, the D-module operatively connected to a storage device served by the D-module;
adding the credential to a corresponding D-module cache of the D-module at a location indexed by the corresponding credential handle; and
sending an access request of the requester between the N-module and the D-module to access data at the storage device using the credential handle to authenticate the requester.
3 Assignments
0 Petitions
Accused Products
Abstract
A technique efficiently transmits credentials between network elements and disk elements in a clustered storage system. According to the novel technique, in response to a user request to access data served by a data element, a network element inserts (adds) a credential associated with the user to a network element credential cache and creates a corresponding credential handle that indexes the credential in that cache. The network element relays the credential and credential handle to the disk element, which adds the credential to a corresponding disk element credential cache at a location indexed by the corresponding credential handle. Requests may then be sent between the elements using the credential handle. In addition, the network element may further send a series of chained requests to the disk element for the same credential/credential handle with an indication that the requests are for the same credential without sending the credential or credential handle.
-
Citations
30 Claims
-
1. A method for efficiently transmitting credentials among nodes of a clustered storage system, comprising:
-
adding a credential of a requester to a N-module cache of a N-module, the N-module operatively connected to the requester over a network; creating a corresponding credential handle that indexes the credential in the N-module cache; relaying the credential and the credential handle between the N-module and a D-module, the D-module operatively connected to a storage device served by the D-module; adding the credential to a corresponding D-module cache of the D-module at a location indexed by the corresponding credential handle; and sending an access request of the requester between the N-module and the D-module to access data at the storage device using the credential handle to authenticate the requester. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method for efficiently transmitting credentials among nodes of a clustered storage system, comprising:
-
sending a first request of a series of chained requests comprising a credential between a N-module and a D-module, the N-module enabled to operatively connect to a client, and the D-module operatively connected to a storage device served by the D-module; specifying a corresponding credential handle indexing the credential in a cache of the clustered storage system associated with the series of chained requests in the first request; and sending remaining requests of the series of chained requests with an indication that the remaining requests are for the credential without sending the corresponding credential handle between the N-module and the D-module. - View Dependent Claims (20, 21, 22)
-
-
23. A clustered storage system for transmitting credentials among nodes of the clustered storage system, comprising:
-
a N-module configured to operatively connect to a requester over a network; a cache of the N-module configured to store a credential of the requester; the cache further configured to store a credential handle that corresponds to the credential configured to index the credential in the cache; one or more D-modules operatively connected to a storage device served by the D-module; and the N-module and the one or more D-modules configured to send one or more requests of the requester between the N-module and the one or more D-modules using the credential handle to authenticate the requester. - View Dependent Claims (24, 25, 26, 27, 28, 29)
-
-
30. A non-transitory computer readable storage medium containing executable program instructions for execution by a processor, comprising:
-
program instructions that add a credential of a requester to a N-module cache of a N-module, the N-module operatively connected to the requester over a network; program instructions that create a corresponding credential handle that indexes the credential in the N-module cache; program instructions that relay the credential and the credential handle between the N-module and a D-module, the D-module operatively connected to a storage device served by the D-module; and program instructions that send an access request of the requester between the N-module and the D-module to access data at the storage device using the credential handle to authenticate the requester.
-
Specification