Unlock instant, AI-driven research and patent intelligence for your innovation.
A permission control method and device based on distributed nfs-ganesha V4 ACL
What is Al technical title?
Al technical title is built by PatSnap Al team. It summarizes the technical point description of the patent document.
An access control and distributed technology, applied in computer security devices, instruments, computing, etc., can solve problems such as unfavorable advantages of NFS-GaneshaV4ACL, incompatibility with user management, etc., to facilitate user management, improve security, and improve management efficiency. Effect
Active Publication Date: 2022-07-08
SUZHOU METABRAIN INTELLIGENT TECH CO LTD
View PDF5 Cites 0 Cited by
Summary
Abstract
Description
Claims
Application Information
AI Technical Summary
This helps you quickly interpret patents by identifying the three key elements:
Problems solved by technology
Method used
Benefits of technology
Problems solved by technology
[0004] However, the existing NFS-Ganesha v4 version ACL permission control is not compatible with user management in the form of "user@domain" string, which is not conducive to giving full play to the advantages of NFS-Ganesha V4 ACL
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more
Image
Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
Click on the blue label to locate the original text in one second.
Reading with bidirectional positioning of images and text.
Smart Image
Examples
Experimental program
Comparison scheme
Effect test
Embodiment 1
[0061] like figure 1 As shown, the present invention provides an access control method based on distributed NFS-Ganesha V4 ACL, including:
[0062] Step S1, the NFS-Ganesha v4 client and the NFS-Ganesha v4 server respectively set user mappings for the ACL permissions of the files;
[0063] Step S2, the NFS-Ganesha v4 client obtains the ACL permission user mapping, and completes the ACL invocation.
[0064] Among them, such as figure 2 As shown, in step S1, it specifically includes:
[0065] Step S11, the NFS-Ganesha V4 client sets the file access control authority to the NFSv4 ACL triplet, wherein the NFSv4 ACL triplet includes the user entity;
[0066] Step S12, the NFS-Ganesha V4 client parses the user entity into a digital ID, and then sends the POSIX ACL triplet to the kernel, where the POSIX ACL triplet includes the digital ID. After the kernel receives the POSIX ACL triplet, it will Digital IDs are mapped to user entities;
[0067] Step S13, the NFS-Ganesha v4 clie...
Embodiment 2
[0092] like Figure 4 As shown, the technical solution of the present invention also provides an authority control device based on distributed NFS-Ganesha V4 ACL, including:
[0093] The first setting module 11, the NFS-Ganesha v4 client and the NFS-Ganesha v4 server respectively set user mappings for the ACL permissions of the files;
[0094] In the first obtaining module 12, the NFS-Ganesha v4 client obtains the ACL permission user mapping and completes the ACL invocation.
[0095] Among them, such as Figure 5 As shown, the first setting module 11 includes:
[0096] The second setting submodule 111, the NFS-Ganesha V4 client sets the file access control authority to the NFSv4 ACL triplet, wherein the NFSv4 ACL triplet includes the user entity;
[0097] In the first parsing submodule 112, the NFS-Ganesha V4 client parses the user entity into a digital ID, and then sends the POSIX ACL triplet to the kernel, where the POSIX ACL triplet includes the digital ID, and the kerne...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More
PUM
Login to View More
Abstract
The present invention proposes a method for controlling authority based on distributed NFS-Ganesha V4ACL, which is characterized by comprising: step S1, the NFS-Ganesha v4 client and the NFS-Ganesha v4 server respectively set user mapping for the ACL authority of the file; step S1 S2, the NFS-Ganesha v4 client obtains the ACL permission user mapping and completes the ACL invocation. The present invention also proposes a distributed NFS-Ganesha V4ACL-based permission control device, so that the existing NFS-Ganesha v4 version ACL permission control can be compatible User management in the form of the "user@domain" string can implement more precise control of user access to files and directories, and improve the security of NFS access to shared data.
Description
technical field [0001] The invention relates to the field of user authority control, in particular to a method and device for authority control based on distributed NFS-Ganesha V4 ACL. Background technique [0002] The NFSv2 and NFSv3 protocols are limited to the use of user identification mechanisms centered around 32-bit unsigned uid and gid numeric users or user groups. In order for NFS (network file system, network file system) to overcome the limitations of large work groups, the NFS v4 protocol requires that the owner attribute and group attribute of the file be used as strings in the format of user@nfsv4_domain or group@nfsv4_domain, respectively. In the NFSv4 version User identification is performed between the client and the NFSv4 version server. [0003] NFS-Ganesha V4 is a user-mode network file system. Compared with kernel-mode NFS, NFS-Ganesha (network file system user-space, that is, user-mode network file system) has a flexible memory management mechanism and...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More
Application Information
Patent Timeline
Application Date:The date an application was filed.
Publication Date:The date a patent or application was officially published.
First Publication Date:The earliest publication date of a patent with the same application number.
Issue Date:Publication date of the patent grant document.
PCT Entry Date:The Entry date of PCT National Phase.
Estimated Expiry Date:The statutory expiry date of a patent right according to the Patent Law, and it is the longest term of protection that the patent right can achieve without the termination of the patent right due to other reasons(Term extension factor has been taken into account ).
Invalid Date:Actual expiry date is based on effective date or publication date of legal transaction data of invalid patent.
Login to View More 
Login to View More