×

File system level data protection during potential security breach

  • US 9,306,956 B2
  • Filed: 05/21/2015
  • Issued: 04/05/2016
  • Est. Priority Date: 04/30/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method for creating a data snapshot and executing file system protection-specific commands to protect data and limit access of the snapshotted data upon suspicion of a potential security breach, the method comprising:

  • in response to identifying a suspected breach to a file system, at a time of the identifying the suspected breach;

    generating a read-only snapshot of at least one file set of data that is stored on a storage volume of the file system;

    invoking at least one file system protection command that restricts access to the snapshot of the at least one file set of data;

    detecting a user credential associated with the suspected breach;

    extracting from an authentication server a user identification indicia and a group identification indicia for the user that is associated with the suspected breach;

    referring to an access table of the file system to identify a first plurality of file sets stored within system storage resources to which the user identification indicia and the group identification indicia have write access and which comprises the at least one file set of the generated read-only snapshot; and

    using the snapshot to roll a current state of the file system data back to a previous data copy of the file set that belongs to the user identification indicia and the group identification indicia associated with the suspected breach.

View all claims
  • 7 Assignments
Timeline View
Assignment View
    ×
    ×