Method and system for providing restricted access to a storage medium
DCFirst Claim
1. A computer implemented method for applying, by at least one computer processor, a computer file system operation access privilege to a computer storage medium, comprises:
- electronically associating, by the at least one computer processor, the computer file system operation access privilege with at least a portion of the computer storage medium;
electronically intercepting, by the at least one computer processor, by at least one computer file system trap layer or at least one file system filter layer of the at least one computer processor, an attempted operation on said at least a portion of the computer storage medium,wherein said electronically intercepting occurs regardless of an identity of a user electronically attempting the attempted operation;
electronically comparing, by the at least one computer processor, the attempted operation to the computer file system operation access privilege; and
electronically allowing, or electronically denying, by the at least one computer processor, the attempted operation based on the electronically comparing the attempted operation to the computer file system operation access privilege.
2 Assignments
Litigations
0 Petitions
Accused Products
Abstract
A system, apparatus, method, or computer program product of restricting file access is disclosed wherein a set of file write access commands are determined from data stored within a storage medium. The set of file write access commands are for the entire storage medium. Any matching file write access command provided to the file system for that storage medium results in an error message. Other file write access commands are, however, passed onto a device driver for the storage medium and are implemented. In this way commands such as file delete and file overwrite can be disabled for an entire storage medium.
-
Citations
20 Claims
-
1. A computer implemented method for applying, by at least one computer processor, a computer file system operation access privilege to a computer storage medium, comprises:
-
electronically associating, by the at least one computer processor, the computer file system operation access privilege with at least a portion of the computer storage medium; electronically intercepting, by the at least one computer processor, by at least one computer file system trap layer or at least one file system filter layer of the at least one computer processor, an attempted operation on said at least a portion of the computer storage medium, wherein said electronically intercepting occurs regardless of an identity of a user electronically attempting the attempted operation; electronically comparing, by the at least one computer processor, the attempted operation to the computer file system operation access privilege; and electronically allowing, or electronically denying, by the at least one computer processor, the attempted operation based on the electronically comparing the attempted operation to the computer file system operation access privilege. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A computer program product embodied on a nontransitory computer accessible medium, said computer program product for applying a computer file system operation access privilege to a computer storage medium when executed on at least one computer processor, performing a method comprising:
-
electronically associating, by the at least one computer processor, the computer file system operation access privilege with at least a portion of the computer storage medium; electronically intercepting, by the at least one computer processor, by at least one computer file system trap layer or said at least one computer file system filter layer an attempted operation on said at least a portion of the computer storage medium, wherein said electronically intercepting occurs regardless of an identity of a user electronically attempting the attempted operation; electronically comparing, by the at least one computer processor, the attempted operation to the operation access privilege; and electronically allowing, or electronically denying, by the at least one computer processor, the attempted operation based on the comparing of the attempted operation to the operation access privilege. - View Dependent Claims (17, 18, 19)
-
-
20. A system for applying a computer file system operation access privilege to at least one computer storage medium, comprising:
-
at least one computer processor; and at least one memory storage device, coupled to said at least one computer processor; and the at least one computer storage medium, coupled to said at least one computer processor, wherein said at least one computer processor is configured to; electronically associate the computer file system operation access privilege with at least a portion of the computer storage medium; electronically intercept by at least one computer file system trap layer or at least one file system filter layer of the at least one computer processor, an attempted operation on said at least a portion of the computer storage medium, wherein said at least one computer processor configured to electronically intercept is configured to do so regardless of an identity of a user electronically attempting the attempted operation; electronically compare the attempted operation to the computer file system operation access privilege; and electronically allow, or electronically deny, by the at least one computer processor, the attempted operation based on a result of the electronic comparison of the attempted operation to the computer file system operation access privilege.
-
Specification