-
公开(公告)号:US09229850B1
公开(公告)日:2016-01-05
申请号:US12495473
申请日:2009-06-30
申请人: Yidong Wang , Neil F. Schutzman , Russell R. Laporte , Gregory W. Lazar , Deene A. Dafoe , Feng Zhou
发明人: Yidong Wang , Neil F. Schutzman , Russell R. Laporte , Gregory W. Lazar , Deene A. Dafoe , Feng Zhou
CPC分类号: G06F12/023 , G06F3/06 , G06F9/5016
摘要: A method is used in mapping data storage and virtual machines. A logical volume from a data storage system is provided for use by a hypervisor. The hypervisor is queried through a web service to identify a virtual machine of the hypervisor. It is determined that the virtual machine is using the logical volume.
摘要翻译: 一种方法用于映射数据存储和虚拟机。 来自数据存储系统的逻辑卷被提供供管理程序使用。 虚拟机管理程序通过Web服务进行查询,以识别管理程序的虚拟机。 确定虚拟机正在使用逻辑卷。
-
2.发明授权Providing secure access to a set of credentials within a data security mechanism of a data storage system 有权提供对数据存储系统的数据安全机制内的一组凭证的安全访问公开(公告)号:US08555342B1
公开(公告)日:2013-10-08
申请号:US12645857
申请日:2009-12-23
申请人: Gregory W. Lazar , Greg Mogavero , Michael Hamel , Yidong Wang , Prakash Chanderia , Feng Zhou , Ashwin Ramkrishna Tidke
发明人: Gregory W. Lazar , Greg Mogavero , Michael Hamel , Yidong Wang , Prakash Chanderia , Feng Zhou , Ashwin Ramkrishna Tidke
CPC分类号: G06F21/31 , G06F21/44 , H04L63/083 , H04L63/0876
摘要: A technique provides secure access to a set of credentials within a data storage system. The technique involves obtaining a unique identifier (e.g., a hostname which is unique to the system) and a set of stable values (e.g., machine-generated codes which are random to users of the system); and, in response to a storage request from a client application, storing a set of credentials of the client application within a data security mechanism of the data storage system. The set of credentials is in encrypted form when stored within the data security mechanism of the data storage system. The technique further involves configuring the data security mechanism of the data storage system to provide the set of credentials in non-encrypted form in response to new fingerprints matching a system fingerprint which is formed at least in part from the unique identifier and the set of stable values.
摘要翻译: 一种技术提供对数据存储系统内的一组凭证的安全访问。 该技术包括获得唯一的标识符(例如,系统唯一的主机名)和一组稳定的值(例如,对于系统的用户而言是随机的机器生成的代码); 以及响应于来自客户端应用的存储请求,将所述客户端应用的一组凭证存储在所述数据存储系统的数据安全机制内。 当存储在数据存储系统的数据安全机制内时,该凭证集是加密形式。 该技术还涉及配置数据存储系统的数据安全机制,以响应于至少部分地根据唯一标识符和一组稳定形成的系统指纹匹配的新指纹来提供非加密形式的凭证集合 价值观。
-
公开(公告)号:US08578093B1
公开(公告)日:2013-11-05
申请号:US13338131
申请日:2011-12-27
IPC分类号: G06F12/00
CPC分类号: G06F3/0604 , G06F3/0629 , G06F3/067
摘要: A method is used in managing indications in data storage systems. A threshold value is associated with a storage object. A client subscribes to a server for receiving an indication indicating a change in a property of the storage object. A determination is made as to whether a number of indications processed by the server exceeds the threshold value. A bulk status is associated with the indication based on the determination. The indication is send to the client. The client performs an action based on the bulk status associated with the indication.
摘要翻译: 一种方法用于管理数据存储系统中的指示。 阈值与存储对象相关联。 客户端订阅服务器以接收指示存储对象的属性变化的指示。 确定由服务器处理的指示符是否超过阈值。 批量状态与基于确定的指示相关联。 该指示发送给客户端。 客户端根据与指示相关联的批量状态执行操作。
-
公开(公告)号:US08892750B1
公开(公告)日:2014-11-18
申请号:US11324785
申请日:2006-01-03
IPC分类号: G06F12/00
CPC分类号: G06F3/067 , G06F3/0622 , G06F3/0637
摘要: Described is a technique for providing a host identifier for a host. A first portion associated with a characteristic of said host is received. A second portion including a non-deterministic component is received. The host identifier is formed using the first portion and the second portion. The host identifier is used to uniquely identify the host in a storage area network.
摘要翻译: 描述了一种用于为主机提供主机标识符的技术。 接收与所述主机的特性相关联的第一部分。 接收包括非确定性分量的第二部分。 使用第一部分和第二部分形成主机标识符。 主机标识符用于唯一标识存储区域网络中的主机。
-
公开(公告)号:US08631114B1
公开(公告)日:2014-01-14
申请号:US11324751
申请日:2006-01-03
IPC分类号: G06F15/173
CPC分类号: G06F17/30545
摘要: Described is a technique for gathering information about a property. A request is received at a first node of a plurality of nodes. The request requests information in accordance with the property for a set of one or more objects defined in a portion of the plurality of nodes. The first node determines information about said property for objects of said set which are defined at said first node. Each of the other nodes determines information about said property for objects of said set which are defined at said each node. Information is communicated to the first node from the other nodes about said property for objects of said set which are defined at each of said other nodes. The first node performs processing to produce final information representing information received from said other nodes and information determined by said first node regarding said property.
摘要翻译: 描述了一种用于收集关于属性的信息的技术。 在多个节点的第一节点处接收到请求。 该请求根据在多个节点的一部分中定义的一个或多个对象的集合的属性请求信息。 第一节点确定关于在所述第一节点处定义的所述集合的对象的所述属性的信息。 每个其他节点确定关于在所述每个节点处定义的所述集合的对象的所述属性的信息。 关于在所述其他节点中的每个节点处定义的所述集合的对象的信息,从其他节点将信息传送到第一节点。 第一节点执行处理以产生表示从所述其他节点接收的信息的最终信息和由所述第一节点确定的关于所述属性的信息。
-
公开(公告)号:US08346735B1
公开(公告)日:2013-01-01
申请号:US12241417
申请日:2008-09-30
申请人: Xuan Tang , Russell R. Laporte , Gregory W. Lazar , Sriram Krishnan , Ying Xie
发明人: Xuan Tang , Russell R. Laporte , Gregory W. Lazar , Sriram Krishnan , Ying Xie
IPC分类号: G06F17/00
CPC分类号: G06F11/1474 , G06F3/0605 , G06F3/0631 , G06F3/0683
摘要: A method is used in controlling multi-step storage management operations. From a specification of a desired configuration of a data storage system, a description of a multi-step transaction for producing the desired configuration is derived. The description includes directions for reacting to results of an intermediate step within the multi-step transaction. Management operations are invoked based on the description.
摘要翻译: 一种方法用于控制多步骤存储管理操作。 根据数据存储系统的期望配置的规范,导出用于产生所需配置的多步交易的描述。 该描述包括对多步交易中的中间步骤的结果进行反应的指示。 基于描述调用管理操作。
-
公开(公告)号:US08185639B2
公开(公告)日:2012-05-22
申请号:US11324786
申请日:2006-01-03
IPC分类号: G06F15/16
CPC分类号: H04L67/1097 , H04L29/1232 , H04L29/12801 , H04L61/2092 , H04L61/6004
摘要: Described are techniques for providing a host identifier for a host. A first portion including a first identifier associated with a system for the host is received. A second portion including a second identifier generated in accordance with a hardware property of the host is received. The host identifier is formed using the first and second portions. The host identifier is used to uniquely identify the host in a storage area network.
摘要翻译: 描述了用于为主机提供主机标识符的技术。 接收包括与用于主机的系统相关联的第一标识符的第一部分。 接收包括根据主机的硬件属性生成的第二标识符的第二部分。 使用第一和第二部分形成主机标识符。 主机标识符用于唯一标识存储区域网络中的主机。
-
公开(公告)号:US08635707B1
公开(公告)日:2014-01-21
申请号:US12893347
申请日:2010-09-29
IPC分类号: G06F21/00
CPC分类号: G06F21/6218 , G06F2221/2113
摘要: A method for use in managing object access is disclosed. A request is received at a reference monitor, wherein the request comprises an object type, an action associated with the object, credentials associated with a user, and access information. Template information is received at the reference monitor, wherein the template information specifies allowable access for the object using qualifiers for the object. For the user, determining at a management request engine whether to allow the action associated with the object based on the request and the template. Also disclosed is a system for use in managing object access.
摘要翻译: 公开了一种用于管理对象访问的方法。 在参考监视器处接收到请求,其中所述请求包括对象类型,与对象相关联的动作,与用户相关联的凭证以及访问信息。 在参考监视器处接收模板信息,其中模板信息使用对象的限定符指定对象的允许访问。 对于用户,在管理请求引擎处确定是否基于请求和模板来允许与对象相关联的动作。 还公开了一种用于管理对象访问的系统。
-
公开(公告)号:US08621178B1
公开(公告)日:2013-12-31
申请号:US13200288
申请日:2011-09-22
申请人: Gregory W. Lazar
发明人: Gregory W. Lazar
IPC分类号: G06F12/00
CPC分类号: G06F12/0223 , G06F3/0605 , G06F3/0631 , G06F3/067 , G06F3/0689
摘要: Described are techniques for performing data storage system management. The data storage system is divided into a plurality of virtual partitions. A plurality of policy sets are specified where each of the policy sets includes one or more policies. One of the plurality of policy sets is assigned to each of the plurality of virtual partitions. Each of the plurality of policy sets includes an access control policy that assigns a portion of data storage of the data storage system as a resource for exclusive use in one of the plurality of virtual partitions that is assigned said each policy set.
摘要翻译: 描述了执行数据存储系统管理的技术。 数据存储系统被分成多个虚拟分区。 指定多个策略集,其中每个策略集包括一个或多个策略。 多个策略集中的一个被分配给多个虚拟分区中的每一个。 多个策略集合中的每一个包括访问控制策略,其将数据存储系统的数据存储的一部分分配为被分配给每个策略集的多个虚拟分区之一的专用资源。
-
公开(公告)号:US07054910B1
公开(公告)日:2006-05-30
申请号:US10027694
申请日:2001-12-20
CPC分类号: G06F17/30194 , G06F11/1435 , G06F11/2094 , G06F11/2097 , H04L29/12132 , H04L61/1552 , H04L67/1095 , Y10S707/99953 , Y10S707/99955
摘要: A data replication facility for distributed computing environments. A computer network having a plurality of network nodes utilizes a distributed directory provider service (DPS) having an established master node. The DPS supports a file replication service (FRS). The FRS establishes one of the nodes as originator node which receives new or updated files from one or more user/GUIs and/or from one or more software providers such as a security provider. The originator node in cooperation with the master node establish a backup copy of the new or updated file in the master node. Thereafter, the originator node publishes a File Version Variable (FVV) representation of the new or updated file to other network nodes (slave nodes) which obtain such file from the originator or, if need be, from the backup master node. Object observers are utilized to determine changes to the file version variables thereby triggering the downloading of new or updated files into the network nodes, whereby data file replication is accomplished throughout the network. In addition to avoiding a single point of failure, embodiments of the present invention also are network-topology independent. Additional syncing threads are employed as part of the file replication service to further ensure synchronization of the network nodes' data files within a predetermined interval, regardless of network failure modes. Embodiments of the present invention are particularly useful with networks of the client-server storage network variety.
-
-
-
-
-
-
-
-
-
搜索结果
25 条记录 (耗时 0.039 秒)
