-
公开(公告)号:US07861302B1
公开(公告)日:2010-12-28
申请号:US09715681
申请日:2000-11-17
IPC分类号: G06F11/00
CPC分类号: G06F21/564
摘要: Scanning a storage device for viruses includes determining physical portions of the storage device that have been modified since a previous virus scan and scanning at least parts of the physical portions for viruses. The physical portions may correspond to tracks of the storage device, sectors of the storage device, and/or to subportions of the storage device. Determining the physical portions of the storage device that have been modified may include creating a table that is indexed according to each of the portions and has entries indicating whether a corresponding one of the portions has been modified, the entries being cleared after a virus scan to indicate that no portions have been modified and setting a specific one of the entries in response to a corresponding one of the portions of the storage device being subject to a write operation. Creating the table may include copying an other table provided by the storage device and/or using an other table provided by the storage device.
摘要翻译: 扫描用于病毒的存储设备包括确定存储设备的物理部分,该物理部分自先前的病毒扫描已被修改,并扫描至少部分物理部分以用于病毒。 物理部分可以对应于存储设备的轨道,存储设备的扇区,和/或存储设备的子部分。 确定已经修改的存储设备的物理部分可以包括创建根据每个部分被索引的表,并且具有指示相应部分是否已经被修改的条目,在病毒扫描之后清除条目 指示没有部分被修改并且响应于存储设备的对应的一个部分进行写入操作来设置特定的一个条目。 创建表可以包括复制由存储设备提供的另一表和/或使用存储设备提供的其他表。
-
公开(公告)号:US07216366B1
公开(公告)日:2007-05-08
申请号:US09715643
申请日:2000-11-17
IPC分类号: G06F21/06
CPC分类号: G06F21/562 , G06F2221/2115
摘要: Detecting computer viruses includes providing a disk space having at least a portion that is partitioned into separate segments, each segment being accessed by at least one of a plurality of hosts. A first one of the segments is accessed using a different file system than a second one of the segments. An antivirus unit scans at least part of the disk space for viruses. The part of the disk space that is scanned by the antivirus unit includes at least some parts of the first and second segments. The first and second segments may correspond to different physical portions of the disk space. The first and second segments may or may not overlap. The first and second segments may correspond to logical entities. Part of the disk space that is scanned by the antivirus unit may correspond to particular types of files stored in the disk space. The disk space that is scanned by the antivirus unit may correspond to files that have been modified since a previous virus scan.
摘要翻译: 检测计算机病毒包括提供具有至少一部分被划分成单独的段的磁盘空间,每个段由多个主机中的至少一个访问。 使用与第二个段不同的文件系统访问第一个段。 防病毒单元扫描至少部分磁盘空间的病毒。 由防病毒单元扫描的磁盘空间的一部分包括第一和第二段的至少一些部分。 第一和第二段可对应于磁盘空间的不同物理部分。 第一和第二段可以重叠或不重叠。 第一和第二段可对应于逻辑实体。 防病毒单元扫描的部分磁盘空间可能对应于存储在磁盘空间中的特定文件类型。 防病毒单元扫描的磁盘空间可能对应于自先前病毒扫描以来已被修改的文件。
-
3.发明授权公开(公告)号:US06574667B1
公开(公告)日:2003-06-03
申请号:US09753373
申请日:2001-01-02
申请人: Steven M. Blumenau , Yoav Raz
发明人: Steven M. Blumenau , Yoav Raz
IPC分类号: G06F1516
CPC分类号: G06F9/505
摘要: A data network includes a switch that links a number of host processors to shared resources such as network ports of a cached storage subsystem. The switch routes resource requests from its inputs to selected ones of its outputs in accordance with programmed routing information. The routing information is changed dynamically based on measured loading characteristics of requests from the switch inputs or the respective hosts, in order to reduce the probability of blocked paths. In a specific example, respective subsets of output ports of the switch are assigned to each respective input port, the loading of each input port of the switch is measured, and the respective subset of output ports assigned to each input port are repetitively changed, and the respective subset of an input port is changed in response to blocking of the output ports assigned to the input port. A respective subset is selected based on the measured loading characteristics and a priority assigned to the input port, in order to balance loading on the output ports. In another specific example, a respective subset of the output ports is assigned to each host, based on host loading characteristics and a respective priority assigned to each host.
摘要翻译: 数据网络包括将多个主机处理器链接到诸如高速缓存存储子系统的网络端口的共享资源的交换机。 交换机根据编程的路由信息将资源请求从其输入路由到其输出的选择路由。 基于来自交换机输入或相应主机的请求的负载特性,动态地改变路由信息,以减少阻塞路径的概率。 在具体示例中,将开关的输出端口的各个子集分配给每个相应的输入端口,测量开关的每个输入端口的负载,并且分配给每个输入端口的输出端口的相应子集重复地改变,并且 响应于分配给输入端口的输出端口的阻塞,输入端口的相应子集被改变。 基于测量的加载特性和分配给输入端口的优先级来选择相应的子集,以平衡输出端口上的负载。 在另一具体示例中,基于主机负载特性和分配给每个主机的相应优先级,将输出端口的相应子集分配给每个主机。
-
4.发明授权Storage mapping and partitioning among multiple host processors in the presence of login state changes and host controller replacement 失效在存在登录状态更改和主机控制器更换的情况下,在多个主机处理器之间进行存储映射和分区公开(公告)号:US06260120B1
公开(公告)日:2001-07-10
申请号:US09106025
申请日:1998-06-29
申请人: Steven M. Blumenau , Yoav Raz
发明人: Steven M. Blumenau , Yoav Raz
IPC分类号: G06F1200
CPC分类号: G06F9/5016 , G06F3/0622 , G06F3/0637 , G06F3/067 , G06F3/0689 , G06F21/80 , Y10S707/99933 , Y10S707/99934 , Y10S707/99935 , Y10S707/99942
摘要: A storage controller for controling access to data storage has a memory and at least one data port for a data network including host processors. The memory is programmed to define a respective specification for each host processor of a respective subset of the data storage to which access by the host processor is restricted, and each specification is associated with a host identifier stored in the memory. When the storage controller receives a data access request from a host processor, it decodes a host identifier from the data access request, and searches the memory for a host identifier matching the host identifier decoded from the request. Upon finding a match, the respective specification of the respective subset for the host processor is accessed to determine whether or not storage specified by the storage access request is contained in the respective subset. If so, then storage access can continue, and otherwise, storage access is denied. Preferably the host identifier decoded from the request is a temporary address assigned by the network, and also stored in the memory in association with each respective specification is a relatively permanent identifier for the host processor.
摘要翻译: 用于控制对数据存储的访问的存储控制器具有用于包括主机处理器的数据网络的存储器和至少一个数据端口。 存储器被编程为为主机处理器的访问限制的数据存储器的相应子集的每个主处理器定义相应的规范,并且每个规范与存储在存储器中的主机标识符相关联。 当存储控制器从主处理器接收到数据访问请求时,它从数据访问请求解码主机标识符,并且在存储器中搜索与从请求解码的主机标识符匹配的主机标识符。 在找到匹配后,访问主机处理器的相应子集的相应规范以确定存储访问请求指定的存储是否包含在相应的子集中。 如果是这样,那么存储访问可以继续,否则存储访问被拒绝。 优选地,从请求解码的主机标识符是由网络分配的临时地址,并且还与每个相应规范相关联地存储在存储器中,是用于主处理器的相对永久的标识符。
-
5.发明授权公开(公告)号:US07093021B2
公开(公告)日:2006-08-15
申请号:US10058651
申请日:2002-01-28
申请人: Steven M. Blumenau , Yoav Raz
发明人: Steven M. Blumenau , Yoav Raz
IPC分类号: H04L9/00
CPC分类号: G06F21/602 , G06F2221/2153
摘要: An object is authenticated by transmitting a random number to the object. The object has an integrated circuit chip including a memory and encryption circuitry. The memory stores information defining an encryption scheme preassigned to the object. The encryption circuitry reads the memory, and encrypts the random number according to the encryption scheme defined by the information read from the memory to produce encrypted data. The memory cannot be read from any output of the integrated chip, and the chip is constructed so that it is virtually impossible to recover the information contained in the memory by visual inspection, probing, or disassembly of the chip. The object is authenticated by checking whether the encrypted data is a correct result of encrypting the data using the encryption scheme pressigned to the object.
-
公开(公告)号:US06438595B1
公开(公告)日:2002-08-20
申请号:US09104597
申请日:1998-06-24
申请人: Steven M. Blumenau , Yoav Raz
发明人: Steven M. Blumenau , Yoav Raz
IPC分类号: G06F1517
CPC分类号: H04L29/12047 , G06F9/5083 , H04L29/12009 , H04L29/12783 , H04L61/15 , H04L61/35 , H04L67/1002 , H04L67/1006 , H04L67/1008 , H04L67/1036 , H04L67/1097 , H04L67/2842 , H04L69/329
摘要: A data network links a number of host processors to alternative shared resources. In order to allocate a respective subset of the alternative shared resources to each host, a directory service of the network is programmed to present a respective view of the network to each host. For example, hosts on the same network loop may see a different picture of the network. When a host logs into the network, the directory service reports to the host information about the alternative shared resources that the host should use. The host then commences a sequence of data processing operations during which the host accesses only the shared resources that were reported to it by the directory service. The shared resources, for example, are ports of a storage subsystem, and a respective subset of the ports is assigned to each host to balance loading of the hosts on the ports.
摘要翻译: 数据网络将多个主机处理器链接到备用共享资源。 为了将替代共享资源的相应子集分配给每个主机,网络的目录服务被编程为向每个主机呈现网络的相应视图。 例如,同一网络环路上的主机可能会看到网络的不同图片。 当主机登录到网络中时,目录服务向主机报告有关主机应使用的备用共享资源的信息。 然后,主机开始一系列数据处理操作,在此期间主机仅访问目录服务向其报告的共享资源。 例如,共享资源是存储子系统的端口,并且将相应的端口子集分配给每个主机以平衡端口上的主机的负载。
-
公开(公告)号:US06421711B1
公开(公告)日:2002-07-16
申请号:US09106299
申请日:1998-06-29
申请人: Steven M. Blumenau , Yoav Raz
发明人: Steven M. Blumenau , Yoav Raz
IPC分类号: G06F15167
CPC分类号: H04L61/35 , G06F3/0605 , G06F3/0617 , G06F3/0635 , G06F3/0662 , G06F3/067 , H04L29/12009 , H04L29/12783 , H04L67/28 , H04L67/2819 , H04L69/329
摘要: A storage controller has at least one physical data port for a data network including host processors. The storage controller is programmed to provide a plurality of virtual ports for access to storage, and a virtual switch for routing storage access requests from the physical port to the virtual ports. The virtual ports and the virtual switch are defined by software. The virtual ports appear to the hosts as physical ports in the data network. For example, in a Fiber-Channel network, the virtual ports have World Wide Names (WWNs) and are assigned temporary addresses (S_Ds), and the virtual switch provides a name server identifying the WWNs and S_IDs of the virtual ports. For convenient partitioning of storage among host processors, one or more virtual ports are assigned to each host, and a set of storage volumes are made accessible from each virtual port. A host can access storage at a virtual port only if the virtual port has been assigned to the host. Preferably, storage can be accessed through each virtual port by no more than one assigned host, although a shared volume may be accessible from more than one virtual port. The storage controller may provide a service for reporting to a host the virtual ports through which the host can access storage, and the storage volumes that are accessible to the host through each of the virtual ports.
摘要翻译: 存储控制器具有用于包括主处理器的数据网络的至少一个物理数据端口。 存储控制器被编程为提供用于访问存储的多个虚拟端口,以及用于将存储访问请求从物理端口路由到虚拟端口的虚拟交换机。 虚拟端口和虚拟交换机由软件定义。 虚拟端口作为数据网络中的物理端口显示给主机。 例如,在光纤通道网络中,虚拟端口具有万维网名称(WWN),并分配临时地址(S_Ds),虚拟交换机提供标识虚拟端口的WWN和S_ID的名称服务器。 为了方便主机处理器之间的存储划分,一个或多个虚拟端口被分配给每个主机,并且一组存储卷可从每个虚拟端口访问。 仅当虚拟端口已分配给主机时,主机才能访问虚拟端口上的存储。 优选地,可以通过不超过一个分配的主机的每个虚拟端口来访问存储,尽管可以从多于一个虚拟端口访问共享卷。 存储控制器可以提供用于向主机报告主机可以访问存储的虚拟端口的服务以及主机通过每个虚拟端口可访问的存储卷。
-
8.发明授权Configuring vectors of logical storage units for data storage partitioning and sharing 失效配置用于数据存储分区和共享的逻辑存储单元的向量公开(公告)号:US06295575B1
公开(公告)日:2001-09-25
申请号:US09106293
申请日:1998-06-29
申请人: Steven M. Blumenau , Yoav Raz
发明人: Steven M. Blumenau , Yoav Raz
IPC分类号: G06F1208
CPC分类号: G06F3/0622 , G06F3/0644 , G06F3/0674 , G06F12/0607
摘要: In a data storage subsystem providing data storage to host processors, a process of configuration defines a subset of the data storage that each host may access. A vector specification is a convenient mechanism for specifying a set of storage volumes that a host may access. For example, for each host processor, there is stored in memory of the data storage subsystem a list of contiguous ranges or vectors of the storage volumes that the host may access. To determine whether or not a specified logical volume number is included in the vector, a modulus of the stride of the vector is computed from the difference between the address of the specified logical volume and the beginning address of the vector, and the modulus is compared to zero. To provide a mapping between logical unit numbers specified by the host and the logical volumes, a contiguous range of logical unit numbers may also be specified for each contiguous range or vector of storage volumes. The logical volume number is computed from a specified logical unit number by computing a difference between the specified logical unit number and the beginning logical unit number, multiplying the difference by the stride of the vector to produce a product, and adding the product to the beginning address of the vector.
摘要翻译: 在向主处理器提供数据存储的数据存储子系统中,配置过程定义每个主机可以访问的数据存储的子集。 向量规范是一种方便的机制,用于指定主机可以访问的一组存储卷。 例如,对于每个主处理器,在数据存储子系统的存储器中存储主机可以访问的存储卷的连续范围或向量的列表。 为了确定向量中是否包括指定的逻辑卷号,根据指定逻辑卷的地址与向量的起始地址之间的差计算向量的步幅的模数,并且比较模数 到零。 为了提供由主机和逻辑卷指定的逻辑单元号之间的映射,也可以为每个连续的存储卷的范围或向量指定连续的逻辑单元编号范围。 通过计算指定的逻辑单元号和起始逻辑单元号之间的差,从指定的逻辑单元号计算逻辑卷号,将差乘以向量的步幅以产生乘积,并将乘积加到开头 地址的向量。
-
9.发明授权Mapping of hosts to logical storage units and data storage ports in a data processing system 有权将主机映射到数据处理系统中的逻辑存储单元和数据存储端口公开(公告)号:US07051182B2
公开(公告)日:2006-05-23
申请号:US10655693
申请日:2003-09-05
申请人: Steven M Blumenau , Yoav Raz
发明人: Steven M Blumenau , Yoav Raz
IPC分类号: G06F9/26
CPC分类号: H04L61/35 , G06F3/0605 , G06F3/0617 , G06F3/0635 , G06F3/0662 , G06F3/067 , H04L29/12009 , H04L29/12783 , H04L67/28 , H04L67/2819 , H04L69/329
摘要: An apparatus has host ports for coupling hosts to data storage devices. The data storage devices are configured into logical storage units, and the apparatus is programmed with a mapping of the hosts to respective logical storage units. The apparatus decodes a host identifier and a logical storage unit specification from each data access request received at each host port, and determines whether or not the decoded host identifier and logical storage unit specification are in conformance with the mapping in order to permit or deny data access of the logical storage unit through the host port. For example, the apparatus includes a switch for routing the data storage access requests from the host ports to ports that provide access to the data storage, and a set of logical volumes of storage are accessible from each of the ports that provide access to the data storage.
摘要翻译: 一种装置具有用于将主机连接到数据存储装置的主机端口。 数据存储设备被配置成逻辑存储单元,并且该设备用主机到相应逻辑存储单元的映射来编程。 该设备从在每个主机端口处接收的每个数据访问请求解码主机标识符和逻辑存储单元规范,并且确定解码的主机标识符和逻辑存储单元规范是否与映射一致以允许或拒绝数据 通过主机端口访问逻辑存储单元。 例如,该装置包括用于将来自主机端口的数据存储访问请求路由到提供对数据存储的访问的端口的交换机,并且可以从提供对数据的访问的每个端口访问一组逻辑存储容量 存储。
-
10.发明授权Method and apparatus for performing a modified prefetch which sends a list identifying a plurality of data blocks 失效用于执行修改的预取的方法和装置,其发送标识多个数据块的列表
公开(公告)号:US5887151A
公开(公告)日:1999-03-23
申请号:US889905
申请日:1997-07-10
申请人: Yoav Raz , Steven M. Blumenau
发明人: Yoav Raz , Steven M. Blumenau
CPC分类号: G06F9/383
摘要: A method of prefetching data within a data storage system that includes at least two levels of data storage including a first level and a second level and that also includes an intelligent controller that interprets and executes received commands from a host processor connected to the data storage system, the method including the steps of receiving a prefetch command that identifies a list of data blocks within the first level of data storage; and prefetching from the first level of data storage into the second level of data storage all of the data blocks identified in the list.
摘要翻译: 一种在数据存储系统内预取数据的方法,其包括包括第一级和第二级的至少两级数据存储,并且还包括智能控制器,其从连接到数据存储系统的主处理器解释并执行接收的命令 所述方法包括以下步骤:接收预取命令,所述预取命令标识所述第一数据存储级别内的数据块的列表; 并且从第一级数据存储器预取到列表中标识的所有数据块的第二级数据存储。
-
-
-
-
-
-
-
-
-
搜索结果
29 条记录 (耗时 0.036 秒)
