Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Security kernel or utility
Reexamination Certificate
2007-12-25
2007-12-25
Moise, Emmanuel L. (Department: 2137)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Security kernel or utility
C726S027000
Reexamination Certificate
active
09972385
ABSTRACT:
A technique for secure file access control via directory encryption. Filenames of data files stored by a network server are encrypted so as to protect them in the event the server is untrustworthy, such as in a distributed computing environment. Two encryption keys are employed so as to provide different access capabilities. For example, clients of the server that are authorized to perform read-only operations on the files may be prevented from modifying the files, while client that are authorized to perform write operations, may modify the files or even delete the files. In a preferred embodiment, encrypted filenames replace plaintext files in a directory structure without otherwise changing the directory structure. Because the directory structure is otherwise unchanged, the server may still have adequate information to perform file management and space management functions.
REFERENCES:
patent: 6301660 (2001-10-01), Benson
patent: 6523116 (2003-02-01), Berman
patent: 6847995 (2005-01-01), Hubbard et al.
patent: 2002/0062451 (2002-05-01), Scheidt et al.
patent: 2002/0194484 (2002-12-01), Bolosky et al.
patent: 0636962 (1995-01-01), None
H. Gobioff, G. Gibson, and D. Tygar. Security for network attached storage devices. “Technical report,” CMU-CS-97-185, Oct. 23, 1997.
D. Mazieres, M. Kaminsky, M. Kaashoek, and E. Witchel. Separating key management from file system secruity. “SOSP”, Dec. 1999.
M. Satyanarayana. Scalable, secure, and highly available distributed file access. “ACM Computer,” May 1990.
P. Reiher, J. Cook, S. Crocker. Truffles—A secure service for widespread file sharing. “PSRG Workshop on Network and Distributed System Security,” 1993.
K. Fu, M. Kaashoek and D. Mazieres. Fast and secure distributed read-only file system. “OSDI,” Oct. 2000.
M. Blaze. A cryptographic file system for UNIX. “Proceedings of 1st ACM Conference on Communications and Computing Security,” 1993.
E. Zadok, I. Badulescu and A. Shender. Cryptfs: A stackable vnode level encryption file system. “Technical Report CUCS-021-98,” 1998.
G. Cattaneo, G. Persiano, A. Del Sorbo, A. Cozzolino, E. Mauriello and R. Pisapia. Design and implementation of a transparent cryptographic file system for UNIX. “Technical Report, University of Salerno,” 1997.
Kallahalla Mahesh
Riedel Erik
Swaminathan Ram
Abyaneh Ali S
Hewlett--Packard Development Company, L.P.
Moise Emmanuel L.
LandOfFree
Secure file access control via directory encryption does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Secure file access control via directory encryption, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Secure file access control via directory encryption will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3873363