Data processing: database and file management or data structures – Database design – Data structure types
Reexamination Certificate
2001-08-30
2003-12-09
Rones, Charles (Department: 2175)
Data processing: database and file management or data structures
Database design
Data structure types
Reexamination Certificate
active
06662198
ABSTRACT:
FIELD OF THE INVENTION
The instant invention generally relates to systems for file sharing, backing up and distributing data and more specifically to a method and system for asynchronous transmission, backup, distribution of data and file sharing.
BACKGROUND AND SUMMARY OF THE INVENTION
From the inception of the introduction of personal computers in the workplace, a significant problem relates to sharing, preserving by backing-up, and distributing data between multiple users. This problem becomes even more difficult when the users are scattered over the country and reside in autonomous organizations. For example, if a company wishes to work on single project with another company, an individual, a group of individuals or various combinations of entities the question of how to selectively grant access and distribute data arises. How do you insure that only data necessary for the project is distributed? How do you prevent unauthorized access to files or data which must remain segregated? And how do you simply keep track of exactly what stage the document is in?
One methodology includes the use of a local area network (commonly known as a LAN) or a wide area network (WAN) together with one or more fileservers, said file server being at least one centralized computer where the data is stored. Fileserver systems include NFS, Novell Netware, Microsoft's SMB, AFS, and other systems. These systems function well when employed by a single large user, such as a company, to allow its employees to access files and other data. A recognized shortcoming attendant to LAN systems is that they preclude third party usage by preventing access to an organizations internal network. The distribution of data is somewhat secure, but often members of the same organization can access data without proper need authorization or clearance. It should be noted that a LAN interconnects computers within a limited geographical area and LAN systems are susceptible to unacknowledged viruses. Notwithstanding, the fact that the employee is authorized, each person with LAN access has, as of right, access to all the files on the server. The files stored on a fileserver can be changed, deleted, modified, or updated. Of more importance, a “crash” of the central server, militates to a loss of data and failure, even with daily backup procedures, since the data may have been changed in between the time of the last backup and the crash. Additionally, the users will not be able to access the data while the data is being restored from a traditional backup device, and immediate access to older versions of files is not possible. Another method utilizes a wide area network (WAN). WAN systems allow third parties to receive distributed data by a distributed network. WAN systems are cumbersome, expensive and do not address the “need to know” aspects of transmitting, storing, distributing and backing up data.
Distributed file systems arise from the communication between a file server and interconnected computers which enable users to share data. It is preferred that the system should include a number of replicated central file servers to distribute the data. One such system is the Andrew File System (AFS), distributed by Transarc Corporation. AFS is a network of computers where there is a hierarchy of client machines and server machines. A user is granted access to the server machine either with or without the power to change data. Distributed file servers solve some of the issues of data reliability, but still do not provide access to older versions of data except in a limited way. For example, distributed file servers may provide snapshots every hour from the past day only.
The Internet has made file and data sharing an everyday occurrence, whether it is within an organization or with third parties. The best known mode is e-mail (electronic mail), which allows the user to send files and data, via the Internet, to others by sending same to a URL and user name. E-mail transmission occurs over what may be termed a public network. The vagaries and frailties of Internet transmission of data are legion. They include omission of attachments, transmission to unintended parties, and the unauthorized access to confidential data.
Well known in the art is the use of firewalls and encryption. A firewall is merely a software/hardware gateway utilizing an access filter, which is installed where a network is connected to the Internet. By checking all requests against acceptable access criteria the software either allows or denies access to the server where the files and data are stored. Identifying information like a token, user's machine identification, and the Internet Packet at the firewall results in access or denial. The frailties of this system are well known, since anyone who can intercept access information can enter the system. Conversely, often users who have valid access are denied by corrupted information or software incompatibility.
One method allowing third parties access to internal fileservers is the virtual private network (commonly known as a VPN). A VPN allows one or more third party users to penetrate the firewall and gain access to the distributor's server. The VPN moderates data communications between members of a defined VPN group, and allows access to the file server on the internal organization network. While data reception may require various passwords, encryption/decryption techniques, authentication, each group of users must have a set series of rules therefore. In order to utilize a VPN a user must be connected to the Internet, for example by dialing into an Internet Service Provider (commonly known as an ISP) and maintain at least a temporary membership via a name and password (See U.S. Pat. No. 6,055,575 issued to Paulsen et al).
VPNs by their very nature suffer from a series of vagaries. First, the user must be connected to the Internet in order to access the data. If the connection fails on either side—the users or the organization's—the user will not be able to access the data. Second, after access is granted through the firewall, the user has potential access to all of the internal network. Therefore, the proprietor must insure that all of its servers do not respond to requests from outside computers and that users with limited access cannot access, delete, or modify requested data or files. By using a modality which labels and reads Internet Packet level information relating to the address and destination of information identifies the user so that clearance or rejection may take place. This method is complex and at times does not prevent unauthorized or inadvertent access to data, since every computer on the internal network must be protected. VPNs therefore are of limited use for giving third party access to data. Similar remote access methods such as SSH and PC Anywhere have similar problems.
Other distributed file systems and file sharing systems include the following: Coda, The Cedar Filesystem, Freenet, and CVS. None of the foregoing as set out in the description below provide the same or similar utility.
PRIOR ART
U.S. Pat. No. 6,175,917. Method and Apparatus for Swapping A Computer Operating System. The '917 patent discloses an invention which utilizes a computer system with a number of different storage memories, each with an operating system program and an identifier. The identifier may be switched between storage memories so if there is a failure, one can switch to the other version. The VPN unit is utilized to maintain lookup tables for members of particular groups. When data packets are sent between members of the same VPN, the VPN unit processes the packet, makes sure it is properly encrypted and adds authentication information to it. The receiving end also makes sure the corresponding VPN is authenticated, then decrypts and decompresses the packet.
U.S. Pat. No. 6,173,399. Apparatus for Implementing Virtual Private Networks. Discloses a protocol and architecture for implementing virtual private networks for using a public network space for secure private n
Satyanarayanan Mahadev
Shtull-Trauring Itamar
Mofiz Apu M
Rones Charles
Schafrann Jonathan B.
Zoteca Inc.
LandOfFree
Method and system for asynchronous transmission, backup,... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for asynchronous transmission, backup,..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for asynchronous transmission, backup,... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3104990