-
公开(公告)号:US12039066B1
公开(公告)日:2024-07-16
申请号:US17019325
申请日:2020-09-13
申请人: Egnyte, Inc.
CPC分类号: G06F21/6218 , G06F21/31 , G06F2221/2113 , G06F2221/2145
摘要: Systems and methods for simplifying and consolidating permission sets from multiple heterogeneous file storage systems are disclosed. An example method includes acquiring from the first file storage system a first set of file system permissions having a first set of permission semantics, and acquiring from a second file storage system a second set of file system permissions having a second set of permission semantics that are different from the first set of permission semantics. The first set of file system permissions and the second set of file system permissions are converted to a unified set of file system permissions having unified permission semantics that are different from the first set of permission semantics and the second set of permission semantics. The unified set of file system permissions can be analyzed to make a determination regarding security levels of the first file storage system and of the second file storage system.
-
42.发明公开公开(公告)号:US20230367895A1
公开(公告)日:2023-11-16
申请号:US18136721
申请日:2023-04-19
申请人: Egnyte, Inc.
发明人: Hakan Ancin , Xi Chen , Amrit Jassal , Daniel H. Jung , Gregory B. Neustaetter , Sean H. Puttergill , Ramakrishnan Sundararaj , Sanjay Vedanthan , Chandra Yalangi , Ramanathan Kavasseri , Ravi Wijayaratne , Shishir Sharma
IPC分类号: G06F21/62 , G06F16/178 , G06F16/11 , G06F16/182 , G06F16/14 , H04L9/40 , G06F16/27 , G06F15/173
CPC分类号: G06F21/6227 , G06F16/178 , G06F16/122 , G06F16/1844 , G06F21/6209 , G06F16/14 , G06F21/62 , H04L63/20 , G06F16/27 , H04L63/105 , G06F15/17331 , H04L63/10 , H04L63/08
摘要: A method for providing access to objects associated with a particular client in a cloud storage system is disclosed. The method includes the steps of establishing a connection with a user, providing a client namespace associated with the client to the user, where the client namespace represents objects stored on the cloud storage system and objects stored on a private storage system apart from the cloud storage system, receiving a request from the user to access an object stored on the private storage system, and providing information to the user to facilitate access to the object stored on the private storage system by said user. Other systems and methods are also disclosed. Important advantages of the present invention are facilitated by separating the logic for user access (control plane) from the actual storage (Storage plane). Private file system access can still be managed from the cloud, while keeping the client data private.
-
公开(公告)号:US20230362133A1
公开(公告)日:2023-11-09
申请号:US18097878
申请日:2023-01-17
申请人: Egnyte, Inc.
发明人: Sachin Shetty , Amrit Jassal , Shishir Sharma , Yogesh Rai , Manoj Chauhan , Leszek Jakubowski , Krishanu Lahiri
IPC分类号: H04L9/40 , H04L9/08 , G06F21/62 , H04L9/32 , H04L67/10 , G06F16/174 , H04L67/1097 , G06F16/182
CPC分类号: H04L63/0281 , H04L9/0822 , G06F21/6218 , H04L9/0897 , H04L9/3263 , H04L63/0471 , H04L67/10 , G06F16/1748 , H04L67/1097 , G06F16/182 , H04L63/0209 , H04L2463/062 , H04L63/0272
摘要: Methods in a cloud object store facilitate strong data encryption, customer-management of object (encryption) keys, reductions in latency, globally-distributed object storage, and handling of streamed uploads. A method for encrypting objects stored in a cloud includes encrypting each object with a unique encryption (object) key. The plaintext object keys are generated in advance of uploads. The plaintext object keys can be stored in an object database in the cloud. Alternatively, the plaintext object keys can be provided to a customer's HSM, encrypted, and returned to the cloud, such that encrypted object keys, encrypted by the customer, are stored in the cloud. The cloud can alternatively encrypt the customer's object keys with a master key for the customer, which is then encrypted by the customer's HSM before being stored in the cloud. Proxies are also deployed for efficiently communicating with customer security modules.
-
公开(公告)号:US20230325360A1
公开(公告)日:2023-10-12
申请号:US18132952
申请日:2023-04-10
申请人: Egnyte, Inc.
发明人: Ravi Wijayaratne , Remus Koos , Ray White , Manish Marathe , Dmitry Tisnek , Harikesavan Krishnan , Amrit Jassal
IPC分类号: G06F16/178 , H04L67/1095 , G06F16/16 , G06F16/176
CPC分类号: G06F16/178 , H04L67/1095 , G06F16/16 , G06F16/176
摘要: A method for synchronizing a local file system (LFS) and a remote (cloud) file system (RFS) includes the step of storing events indicative of differences between the LFS and the RFS, where the events are associated with file system objects of the LFS and RFS. The method further includes the steps of prioritizing the events, generating file system operations for the events based at least in part on the prioritization of the events, and performing at least some of the file system operations to synchronize the LFS and RFS. Prioritizing the events includes defining a plurality of service classes (e.g., based on type of event, event attribute, etc.), assigning a priority to each of the service classes, and assigning each event to one of said service classes. Systems are also described. The invention allocates limited synchronization resources based on a predefined policy to synchronize important file system objects sooner.
-
公开(公告)号:US20230315694A1
公开(公告)日:2023-10-05
申请号:US18132873
申请日:2023-04-10
申请人: Egnyte, Inc.
发明人: Remus Koos , Ray White , Manish Marathe , Markku Mielityinen , Amrit Jassal , Rajesh Ram , Sriram Gopalan , Aahz , Heikki J. Toivonen , Ravi Wijayaratne
IPC分类号: G06F16/178 , G06F16/11
CPC分类号: G06F16/178 , G06F16/11
摘要: A method for synchronizing a file system (FS) and a remote file system (RFS) includes monitoring the FS for FS events, generating FS event records, receiving RFS event records of RFS events, generating file system operations (FSOs) based on the FS and RFS event records, and communicating the FSOs to the FS and RFS to synchronize them. A method for generating the FSOs includes accessing a plurality of FS and/or RFS event records, processing the accessed records to generate processed event records, generating the FSOs based on the processed event records, and outputting the FSOs to cause synchronization of the FS and RFS. Systems are also described. The invention facilitates event-based, steady-state synchronization of local and remote file systems.
-
公开(公告)号:US11768810B2
公开(公告)日:2023-09-26
申请号:US17553436
申请日:2021-12-16
申请人: Egnyte, Inc.
发明人: Amrit Jassal , Ravi Kariyawasam Bodhitantri Wijayaratne , Ray White , Manish Marathe , Aahz , Rajesh Ram
IPC分类号: G06F16/182 , G06F16/188 , G06F21/62 , H04L9/40 , H04W12/08
CPC分类号: G06F16/182 , G06F16/188 , G06F21/6236 , H04L63/101 , H04W12/08
摘要: A method of managing file permissions in a remote file storage system includes defining permissions for the remote file storage system and controlling access to objects on the remote file storage system according to the permissions of the remote file storage system. The permissions are transferred to a client file storage system remote from the remote file storage system, and access to objects on the client file storage system is controlled according to the permissions of the remote file storage system. A remote file storage system includes a permissions file generator operative to generate a permissions file, which is transmitted to a client file storage system for enforcement at the client file storage system.
-
公开(公告)号:US11714842B1
公开(公告)日:2023-08-01
申请号:US16862482
申请日:2020-04-29
申请人: Egnyte, Inc.
发明人: Shishir Sharma , Amrit Jassal , Sean H. Puttergill , Willy Lanig Picard , Marcin Artur Zablocki
IPC分类号: G06F16/35 , G06F16/182
CPC分类号: G06F16/353 , G06F16/183
摘要: Example systems and methods for efficient data governance are disclosed. Metadata associated with file objects is analyzed to estimate, for each file object, likelihood that the file object includes sensitive data. The estimates are used to prioritize the file objects for analysis of the file objects’ content to determine the objects include data deemed to be of a sensitive nature. In cloud-based systems/methods the estimates are also used to prioritize the file objects for transfer from a remote file storage system to the cloud-based system for analysis of content. The disclosed systems and methods significantly reduce the time required to identify sensitive file content in a large number of file objects.
-
公开(公告)号:US11494503B2
公开(公告)日:2022-11-08
申请号:US15487947
申请日:2017-04-14
申请人: Egnyte, Inc.
IPC分类号: G06F21/00 , G06F21/62 , G06F16/11 , G06F16/182 , G06F16/23
摘要: A cloud-based data governance system includes a processing unit, a network adapter, and memory for storing data and code. The network adapter establishes a connection with a remote data storage system associated with a remote file system over a wide-area network (WAN). The code includes an event collection interface, a data governance service, and an enforcement service. The event collection interface is configured to capture an event from the remote data storage system. The event is indicative of a file system operation executed on a data object of the remote file system. The data governance service is configured to receive the event from the event collection interface and to process the event to determine whether the file system operation conflicts with a governance policy of the data governance system. The enforcement service executes a set of remediation actions if the file system operation does conflict with the governance policy.
-
公开(公告)号:US11449596B2
公开(公告)日:2022-09-20
申请号:US15808425
申请日:2017-11-09
申请人: Egnyte, Inc.
发明人: Shishir Sharma , Debjit Bhattacharjee , Amrit Jassal , Kalpesh Patel , Deepak Mehta , Przemek Grzedzielski , Sachin Shetty , Krzysztof Gardo , Daniil Iaitskov , Harikesavan Krishnan , Manish Marathe
摘要: Cloud storage systems and methods provide event-based user state synchronization among the various cloud elements. A global user directory is maintained on a remote cloud storage system. The global user directory includes a plurality of global user definitions associated with a plurality of user accounts, where each of the user accounts has access to one of a remote file system (RFS) hosted by the remote cloud storage system and a local file system (LFS) hosted by a local cloud storage system. As global user definition are altered on the remote cloud storage system, user events are generated and communicated to the local cloud storage system, where they are applied to synchronize the local user definitions with the global user definitions. The invention facilitates centralized control of user definitions, near real-time event delivery to local cloud storage systems, and separation of authentication processes from customers' active directory services.
-
公开(公告)号:US20210255991A1
公开(公告)日:2021-08-19
申请号:US17161484
申请日:2021-01-28
申请人: Egnyte, Inc.
发明人: Remus Koos , Ray White , Manish Marathe , Markku Mielityinen , Amrit Jassal , Rajesh Ram , Sriram Gopalan , Aahz , Heikki J. Toivonen , Ravi Wijayaratne
IPC分类号: G06F16/178 , G06F16/11
摘要: A method for synchronizing a file system (FS) and a remote file system (RFS) includes monitoring the FS for FS events, generating FS event records, receiving RFS event records of RFS events, generating file system operations (FSOs) based on the FS and RFS event records, and communicating the FSOs to the FS and RFS to synchronize them. A method for generating the FSOs includes accessing a plurality of FS and/or RFS event records, processing the accessed records to generate processed event records, generating the FSOs based on the processed event records, and outputting the FSOs to cause synchronization of the FS and RFS. Systems are also described. The invention facilitates event-based, steady-state synchronization of local and remote file systems.
-
-
-
-
-
-
-
-
-
搜索结果
80 条记录 (耗时 0.028 秒)
