×

System and method for storage operation access security

  • US 8,655,914 B2
  • Filed: 03/30/2007
  • Issued: 02/18/2014
  • Est. Priority Date: 10/17/2006
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method of securing storage operations in a data management system, comprising:

  • receiving a request to perform a storage operation that includes creating a secondary copy of data from a source location,wherein the created secondary copy of the data is stored at an external remote storage location that is remote from the source location, andwherein the secondary copy stored at the external remote storage location is not actively being used by a live data server; and

    executing a storage access control system to provide a security infrastructure to selectively limit access to the secondary copy of data, wherein executing the storage access control system includes;

    querying a file system at the source location for preexisting access control information,wherein the access control information is associated with the source location, andwherein the preexisting access control information is used by at least a portion of the file system at the source location to perform file system operations,wherein the preexisting access control information defines access rights of individual users and groups of users to the data from the source location; and

    applying the access control information to the secondary copy at the external remote storage location,wherein applying the access control information only includes referencing the access control information by the storage access control system or only incorporating the access control information into the storage access control system,wherein the applying of the access control information to the secondary copy at the external remote storage location comprises permitting, prohibiting, or modifying at least part of the requested storage operation, andwherein the applying of the access control information to the secondary copy at the external remote storage location further comprises storing metadata describing the access control information in a content index that controls access for the individual users and groups of users to secondary copies of data stored at the remote storage location that are not actively being used by a live data server.

View all claims
  • 4 Assignments
Timeline View
Assignment View
    ×
    ×