POLICY-BASED SECURE INFORMATION DISCLOSURE
First Claim
1. A data storage system, comprising:
- a retention component that stores a selection portion of contextual information; and
a policy component that regulates access of the stored contextual information through use of an access policy.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for storing data and retrieving data from a smart storage device is provided, where smart storage includes processing capabilities along with the ability to store information. In one aspect, a method includes detecting via bidirectional settings one or more capabilities of rules enforcement logic associated with a storage device and selecting a set of criteria and policies to be downloaded from a host or a management server that are to be downloaded onto the storage device. This includes dynamically generating conditional context aware policies syntax based on user settings or network policy and downloading a set of policies onto the storage device for future policy enforcement.
35 Citations
20 Claims
-
1. A data storage system, comprising:
-
a retention component that stores a selection portion of contextual information; and a policy component that regulates access of the stored contextual information through use of an access policy. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method of placing criteria and related keys onto a smart storage device, comprising:
-
detecting via bidirectional settings one or more capabilities of rules enforcement logic associated with a storage device; selecting a set of criteria and policies to be downloaded from a host or a management server that are to be downloaded onto the storage device; dynamically generating conditional context aware policies syntax based on user settings and network policy; and downloading a set of policies onto the storage device for future policy enforcement. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A system for creating customized executable policy rules to be executed dynamically inside a storage device before releasing access to stored data in the device, comprising:
-
means for processing templates, where the templates are stored in a policy store on a host or enterprise network associated with a host storage management system, the templates employed to create policy rules as language macros; means for downloading the macros into a storage device in a secure manner; and means for executing the macros when an access decision is performed by the storage device based on user keys, content metadata, or context settings - View Dependent Claims (20)
-
Specification