-
1.发明申请Discoverability and enumeration mechanisms in a hierarchically secure storage system 有权分层安全存储系统中的可发现性和枚举机制公开(公告)号:US20060195449A1
公开(公告)日:2006-08-31
申请号:US11168589
申请日:2005-06-28
申请人: Jason Hunter , Simon Skaria , Kedarnath Dubhashi
发明人: Jason Hunter , Simon Skaria , Kedarnath Dubhashi
IPC分类号: G06F17/30
CPC分类号: G06F21/6227 , Y10S707/99933 , Y10S707/99939
摘要: A system that generates a per user abstraction of a store from a connection point. Filtering a view set of a hierarchically secured containment hierarchy based on the access permissions of the principal is one of the novel features of the invention. The invention can offer a collection of primitives that can operate on this aggregation that span multiple container hierarchies with potentially heterogeneous security descriptors. The model can reduce the necessity to traverse the container hierarchy to discover all the accessible items in a domain.
摘要翻译: 从连接点生成每个用户抽象存储的系统。 基于主体的访问权限来过滤层次安全的包含层次结构的视图集是本发明的新颖特征之一。 本发明可以提供可以对具有潜在的异构安全描述符跨越多个容器层次的该聚合进行操作的原语集合。 该模型可以减少遍历容器层次结构以发现域中所有可访问项目的必要性。
-
公开(公告)号:US20100185629A1
公开(公告)日:2010-07-22
申请号:US12350977
申请日:2009-01-09
申请人: Willard Bruce Jones , Simon Skaria , Naresh Kannan
发明人: Willard Bruce Jones , Simon Skaria , Naresh Kannan
IPC分类号: G06F17/30
CPC分类号: G06F17/30634 , G06F17/30631 , G06F17/30657
摘要: Tools and techniques for indexing and querying data stores using concatenated terms are provided. These tools may receive input queries that include at least two query terms. The query terms are correlated respectively with fields contained within records within a data store, with these fields being populated with respective field values. The query terms are arranged according to an indexing priority according to which the fields are ranked within an indexing table, which is associated with the data store. The tools then concatenate the query terms as arranged according to the indexing priority. In turn, the tools search the index table for any entries that are responsive to the concatenated query terms
摘要翻译: 提供了使用连接术语索引和查询数据存储的工具和技术。 这些工具可能会收到至少包含两个查询项的输入查询。 查询项分别与数据存储内的记录内包含的字段相关联,这些字段用相应的字段值填充。 查询词根据索引优先级排列,根据该索引优先级将这些字段排列在与数据存储相关联的索引表中。 然后,工具将按照索引优先级排列的查询项连接起来。 反过来,这些工具会在索引表中搜索响应于连接的查询条件的任何条目
-
公开(公告)号:US08943579B2
公开(公告)日:2015-01-27
申请号:US13419972
申请日:2012-03-14
CPC分类号: G06F9/547
摘要: A method to identify a child process to a parent process in an operating system includes obtaining a token and login identifier from the operating system. The parent process creates a remote procedure call communications endpoint to communicate with the child process. Thereafter, a child process is spawned by the parent process. A child-initiated request to communicate with the parent process is then received by the parent process. In order to verify the identity of the child-initiated request, the parent process impersonates the child process and receives as identifier that identifies the requestor child process. The requestor process identifier and the spawned child identifier are compared. Based on the comparison, the parent process responds to the child-initiated request. In another embodiment, process identifiers are used by the parent process to verify the identity of a child process the requests communication with the parent process.
摘要翻译: 在操作系统中识别父进程的子进程的方法包括从操作系统获取令牌和登录标识符。 父进程创建远程过程调用通信端点以与子进程通信。 此后,子进程由父进程产生。 父进程接收到与父进程进行通信的子发起请求。 为了验证子发起请求的身份,父进程模拟子进程,并接收标识请求者子进程的标识符。 比较请求者进程标识符和产生的子标识符。 基于比较,父进程响应子发起的请求。 在另一个实施例中,父进程使用进程标识符来验证请求与父进程的通信的子进程的身份。
-
公开(公告)号:US20090089341A1
公开(公告)日:2009-04-02
申请号:US11863382
申请日:2007-09-28
申请人: Simon Skaria , Andrew Sean Watson
发明人: Simon Skaria , Andrew Sean Watson
IPC分类号: G06F12/16
CPC分类号: G06F17/30 , G06F3/00 , G06F15/16 , G06F17/302 , G06F21/6227
摘要: Distributed storage of collaboration data is managed over internal and external data stores in a collaboration service environment based on categorization of the data. The categorization may be based on type of data (e.g. structured vs. unstructured), how the data is accessed, an expected storage life for the data, back-up requirements, and the like. Data that can be stored externally according to its category is then directed to the external storage through a storage provider. A unique identifier associated with the location of the externally stored data is saved in one of the internal data stores for seamless retrieval of data in a transparent manner to the user.
摘要翻译: 协作数据的分布式存储通过基于数据分类的协作服务环境中的内部和外部数据存储进行管理。 分类可以基于数据类型(例如,结构化与非结构化),数据的访问方式,数据的预期存储寿命,备份要求等。 可以根据其类别从外部存储的数据然后通过存储提供商引导到外部存储器。 与外部存储的数据的位置相关联的唯一标识符被保存在内部数据存储器之一中,以透明的方式无缝地检索数据给用户。
-
公开(公告)号:US20080022281A1
公开(公告)日:2008-01-24
申请号:US11488979
申请日:2006-07-19
IPC分类号: G06F9/46
CPC分类号: G06F9/547
摘要: A method to identify a child process to a parent process in an operating system includes obtaining a token and login identifier from the operating system. The parent process creates a remote procedure call communications endpoint to communicate with the child process. Thereafter, a child process is spawned by the parent process. A child-initiated request to communicate with the parent process is then received by the parent process. In order to verify the identity of the child-initiated request, the parent process impersonates the child process and receives as identifier that identifies the requestor child process. The requestor process identifier and the spawned child identifier are compared. Based on the comparison, the parent process responds to the child-initiated request. In another embodiment, process identifiers are used by the parent process to verify the identity of a child process the requests communication with the parent process.
摘要翻译: 在操作系统中识别父进程的子进程的方法包括从操作系统获取令牌和登录标识符。 父进程创建远程过程调用通信端点以与子进程通信。 此后,子进程由父进程产生。 父进程接收到与父进程进行通信的子发起请求。 为了验证子发起请求的身份,父进程模拟子进程,并接收标识请求者子进程的标识符。 比较请求者进程标识符和产生的子标识符。 基于比较,父进程响应子发起的请求。 在另一个实施例中,父进程使用进程标识符来验证请求与父进程的通信的子进程的身份。
-
公开(公告)号:US08301588B2
公开(公告)日:2012-10-30
申请号:US12044744
申请日:2008-03-07
申请人: Naresh Kannan , Simon Peter Clarke , Simon Skaria , Miko Arnab Sakya Singha Bose , Andrew Sean Watson , Mitesh Pankaj Patel
发明人: Naresh Kannan , Simon Peter Clarke , Simon Skaria , Miko Arnab Sakya Singha Bose , Andrew Sean Watson , Mitesh Pankaj Patel
IPC分类号: G06F17/00
CPC分类号: G06F17/30227
摘要: A storage system according to one embodiment for managing a first file includes a blob storage and a handler. The blob storage may be configured to store data related to the first file temporarily. The handler may be configured to store in the blob storage any data related to the first file and received from an application. The handler also may be configured to transfer at least a portion of the data from the blob storage to persistent storage in response to a commit instruction received from an application or generated by the handler. The handler also may be configured to retrieve any portion of the data stored in the blob storage and to send the same to a requesting application in response to an access request.
摘要翻译: 根据一个实施例的用于管理第一文件的存储系统包括blob存储和处理程序。 blob存储器可以被配置为临时存储与第一文件相关的数据。 处理程序可以被配置为在blob存储器中存储与第一文件相关并且从应用程序接收的任何数据。 响应于从应用程序接收到的或由处理程序生成的提交指令,处理程序还可被配置为将数据的至少一部分从blob存储器传送到持久存储器。 处理程序还可以被配置为检索存储在blob存储器中的数据的任何部分,并将其发送到响应于访问请求的请求应用程序。
-
公开(公告)号:US20120174210A1
公开(公告)日:2012-07-05
申请号:US13419972
申请日:2012-03-14
IPC分类号: G06F21/22
CPC分类号: G06F9/547
摘要: A method to identify a child process to a parent process in an operating system includes obtaining a token and login identifier from the operating system. The parent process creates a remote procedure call communications endpoint to communicate with the child process. Thereafter, a child process is spawned by the parent process. A child-initiated request to communicate with the parent process is then received by the parent process. In order to verify the identity of the child-initiated request, the parent process impersonates the child process and receives as identifier that identifies the requestor child process. The requestor process identifier and the spawned child identifier are compared. Based on the comparison, the parent process responds to the child-initiated request. In another embodiment, process identifiers are used by the parent process to verify the identity of a child process the requests communication with the parent process.
摘要翻译: 在操作系统中识别父进程的子进程的方法包括从操作系统获取令牌和登录标识符。 父进程创建远程过程调用通信端点以与子进程通信。 此后,子进程由父进程产生。 父进程接收到与父进程进行通信的子发起请求。 为了验证子发起请求的身份,父进程模拟子进程,并接收标识请求者子进程的标识符。 比较请求者进程标识符和产生的子标识符。 基于比较,父进程响应子发起的请求。 在另一个实施例中,父进程使用进程标识符来验证请求与父进程的通信的子进程的身份。
-
公开(公告)号:US08195700B2
公开(公告)日:2012-06-05
申请号:US11863382
申请日:2007-09-28
申请人: Simon Skaria , Andrew Sean Watson
发明人: Simon Skaria , Andrew Sean Watson
IPC分类号: G06F7/00
CPC分类号: G06F17/30 , G06F3/00 , G06F15/16 , G06F17/302 , G06F21/6227
摘要: Distributed storage of collaboration data is managed over internal and external data stores in a collaboration service environment based on categorization of the data. The categorization may be based on type of data (e.g. structured vs. unstructured), how the data is accessed, an expected storage life for the data, back-up requirements, and the like. Data that can be stored externally according to its category is then directed to the external storage through a storage provider. A unique identifier associated with the location of the externally stored data is saved in one of the internal data stores for seamless retrieval of data in a transparent manner to the user.
摘要翻译: 协作数据的分布式存储通过基于数据分类的协作服务环境中的内部和外部数据存储进行管理。 分类可以基于数据类型(例如,结构化与非结构化),数据的访问方式,数据的预期存储寿命,备份要求等。 可以根据其类别从外部存储的数据然后通过存储提供商引导到外部存储器。 与外部存储的数据的位置相关联的唯一标识符被保存在内部数据存储器之一中,以透明的方式无缝地检索数据给用户。
-
公开(公告)号:US20080021901A1
公开(公告)日:2008-01-24
申请号:US11490410
申请日:2006-07-19
IPC分类号: G06F17/30
CPC分类号: G06F21/6227 , G06F17/30233 , G06F2221/2105 , G06F2221/2143 , G06F2221/2147
摘要: Various mechanisms are provided for the lockdown of an item store. For example, a method is provided that comprises of disabling access to a relational engine for a set of users associated with a filing system utilizing the relational engine to manipulate data in an item store. Following such disabling of access, an exception is created by allowing access to the relational engine for users of the filing system based on a set of privileges the users have been assigned. The disabling of access can be accomplished by removing system users from ownership roles, and the allowing of access can be accomplished by providing certificates to users that have associated set of privileges granted to the users.
摘要翻译: 提供了用于物品存储的锁定的各种机制。 例如,提供了一种方法,其包括禁用对与关联引擎相关联的一组用户的关系引擎的访问,利用关系引擎来操纵项目存储中的数据。 在这种禁用访问之后,通过允许基于用户被分配的一组特权访问归档系统的用户来创建异常。 访问禁用可以通过将系统用户从所有权角色中删除来实现,并且允许访问可以通过向具有授予用户的相关权限集的用户提供证书来实现。
-
公开(公告)号:US08650216B2
公开(公告)日:2014-02-11
申请号:US13485575
申请日:2012-05-31
申请人: Simon Skaria , Andrew Sean Watson
发明人: Simon Skaria , Andrew Sean Watson
CPC分类号: G06F17/30 , G06F3/00 , G06F15/16 , G06F17/302 , G06F21/6227
摘要: Distributed storage of collaboration data is managed over internal and external data stores in a collaboration service environment based on categorization of the data. The categorization may be based on type of data (e.g. structured vs. unstructured), how the data is accessed, an expected storage life for the data, back-up requirements, and the like. Data that can be stored externally according to its category is then directed to the external storage through a storage provider. A unique identifier associated with the location of the externally stored data is saved in one of the internal data stores for seamless retrieval of data in a transparent manner to the user.
摘要翻译: 协作数据的分布式存储通过基于数据分类的协作服务环境中的内部和外部数据存储进行管理。 分类可以基于数据类型(例如,结构化与非结构化),数据的访问方式,数据的预期存储寿命,备份要求等。 可以根据其类别从外部存储的数据然后通过存储提供商引导到外部存储器。 与外部存储的数据的位置相关联的唯一标识符被保存在内部数据存储器之一中,以透明的方式无缝地检索数据给用户。
-
-
-
-
-
-
-
-
-
搜索结果
22 条记录 (耗时 0.022 秒)
