公开(公告)号：JP2008305418A

公开(公告)日：2008-12-18

申请号：JP2008177614

申请日：2008-07-08

Applicant: Network Appliance Inc ,  ネットワーク アプライアンス, インコーポレイテッド

Inventor： MUHLESTEIN MARK

IPC: G06F21/22 ,  G06F21/24 ,  G06F20060101 ,  G06F7/00 ,  G06F11/00 ,  G06F11/30 ,  G06F11/34 ,  G06F17/30 ,  G06F21/00 ,  G06F21/20

CPC classification number: G06F21/562 ,  G06F2221/2115 ,  Y10S707/99931

Abstract: PROBLEM TO BE SOLVED: To provide a technique for scanning viruses and other malicious or unwanted content. SOLUTION: This method includes steps of: receiving a request for an object stored at a server; determining whether to cause a cluster device to perform operations to data relevant to the object according to the request; causing the cluster device to execute operations including permitting the cluster device to access to the object in order to make the cluster device execute the operations by the server when the object is locked by other user; receiving operation results from the cluster device; and permitting the user to access to the object based on the operation results. COPYRIGHT: (C)2009,JPO&INPIT

Abstract translation: 要解决的问题：提供扫描病毒和其他恶意或不需要的内容的技术。 解决方案：该方法包括以下步骤：接收对存储在服务器上的对象的请求; 确定是否使集群设备根据请求对与对象相关的数据执行操作; 使集群设备执行包括允许集群设备访问对象的操作，以便当对象被其他用户锁定时使集群设备执行服务器的操作; 从集群设备接收操作结果; 并且允许用户基于操作结果访问对象。 版权所有（C）2009，JPO＆INPIT

公开(公告)号：JP2007323674A

公开(公告)日：2007-12-13

申请号：JP2007212313

申请日：2007-08-16

Applicant: Network Appliance Inc ,  ネットワーク・アプライアンス・インコーポレイテッド

Inventor： MUHLESTEIN MARK

IPC: G06F21/22 ,  G06F20060101 ,  G06F7/00 ,  G06F11/00 ,  G06F11/30 ,  G06F11/34 ,  G06F17/30 ,  G06F21/00

CPC classification number: G06F21/562 ,  G06F2221/2115 ,  Y10S707/99931

Abstract: PROBLEM TO BE SOLVED: To provide a method and a system for virus scanning of specialized computing devices. SOLUTION: A filer (130) is connected to one or more supplementary computing devices (140) that scan requested files to ensure whether they are virus free prior to delivery to end users. When an end user (111) requests a file, the following steps occur: the server judges whether the file requested must be scanned before delivery to the end user; the filer opens a channel to one (141) of external computing devices and sends a filename (203); the external computing device opens the file (205) and scans it (207); the external computing device notifies the filer of a status of the file scan operation (209); and the filer sends the file to the end user (211) provided the status indicates it may do so. COPYRIGHT: (C)2008,JPO&INPIT

Abstract translation: 要解决的问题：提供专用计算设备的病毒扫描的方法和系统。 解决方案：文件管理器（130）被连接到一个或多个辅助计算设备（140），所述补充计算设备（140）扫描所请求的文件以确保在递送给最终用户之前它们是否是无病毒的。 当最终用户（111）请求文件时，执行以下步骤：服务器判断在发送给最终用户之前是否必须扫描所请求的文件; 文件管理器打开一个（141）外部计算设备的通道，并发送文件名（203）; 外部计算设备打开文件（205）并对其进行扫描（207）; 外部计算装置向文件管理器通知文件扫描操作的状态（209）; 并且文件管理器将该文件发送给最终用户（211），前提是该状态指示可以这样做。 版权所有（C）2008，JPO＆INPIT

公开(公告)号：CA2322320C

公开(公告)日：2010-02-09

申请号：CA2322320

申请日：1999-03-02

Applicant: NETWORK APPLIANCE INC

Inventor： HITZ DAVID ,  BORR ANDREA ,  HAWLEY ROBERT J ,  MUHLESTEIN MARK ,  PEARSON JOAN

IPC: G06F12/00 ,  G06F1/00 ,  G06F21/41 ,  G06F21/62

Abstract: The invention provides a method and system for enforcing file access control among client devices using multiple diverse access control models and multiple diverse file server protocols. A multi-protocol file server identifies each file with one particular access control model out of a plurality of possible models, and enforces that one particular model for all accesses to that file. When the file server receives a file server request for that file using a different access control model, the file server translates the access control limits for that file into no-less-restrictive limits in the different model. The file server restricts access by the client device using the translated access control limits. Each file is assigned the access control model of the user who created the file or who last set access control limits for the file. When a user having a different access control model sets access control limits, the access control model for the file is changed to the new model. Files are organized in a tree hierarchy, in which each tree is limited to one or more access control models (which can limit the ability of users to set access control limits for files in that tree). Each tree can be limited to NT-model-only format, Unix-model-only format, or mixed NT-or-Unix-models format.

公开(公告)号：WO9945456B1

公开(公告)日：1999-11-11

申请号：PCT/US9904550

申请日：1999-03-02

Applicant: NETWORK APPLIANCE INC

Inventor： HITZ DAVID ,  BORR ANDREA ,  HAWLEY ROBERT J ,  MUHLESTEIN MARK ,  PEARSON JOAN

IPC: G06F12/00 ,  G06F1/00 ,  G06F21/41 ,  G06F21/62

CPC classification number: G06F21/6218 ,  G06F21/41 ,  G06F21/6236 ,  G06F2221/2141

Abstract: The invention provides a method and system for enforcing file access control among client devices using multiple diverse access control models and multiple diverse file server protocols. A multi-protocol file server identifies each file with one particular access control model out of a plurality of possible models, and enforces that one particular model for all accesses to that file. When the file server receives a file server request for that file using a different access control model, the file server translates the access control limits for that file into no-less-restrictive limits in the different model. The file server restricts access by the client device using the translated access control limits. Each file is assigned the access control model of the user who created the file or who last set access control limits for the file. When a user having a different access control model sets access control limits, the access control model for the file is changed to the new model. Files are organized in a tree hierarchy, in which each tree is limited to one or more access control models (which can limit the ability of users to set access control limits for files in that tree). Each tree can be limited to NT-model-only format, Unix-model-only format, or mixed NT-or-Unix-models format.

Abstract translation: 本发明提供一种用于使用多种不同的访问控制模型和多种多样的文件服务器协议来实施客户端设备之间的文件访问控制的方法和系统 多协议文件服务器使用多个可能模型中的一个特定的访问控制模型识别每个文件，并对该文件的所有访问执行该特定模型。 当文件服务器使用不同的访问控制模型接收到该文件的文件服务器请求时，文件服务器将该文件的访问控制限制转换为不同模型中的无限制限制。 文件服务器使用翻译的访问控制限制来限制客户端设备的访问。 每个文件都分配了创建文件的用户的访问控制模型，或者最后为文件设置访问控制限制的访问控制模型。 当具有不同访问控制模型的用户设置访问控制限制时，将文件的访问控制模型更改为新模型。 文件以树状层次结构组织，其中每个树被限制到一个或多个访问控制模型（这可以限制用户为该树中的文件设置访问控制限制的能力）。 每个树可以限制为仅NT型格式，仅限Unix模型格式或混合的NT或Unix模型格式。

公开(公告)号：CA2322320A1

公开(公告)日：1999-09-10

申请号：CA2322320

申请日：1999-03-02

Applicant: NETWORK APPLIANCE INC

Inventor： MUHLESTEIN MARK ,  HAWLEY ROBERT J ,  PEARSON JOAN ,  BORR ANDREA ,  HITZ DAVID

IPC: G06F12/00 ,  G06F1/00 ,  G06F21/41 ,  G06F21/62

Abstract: The invention provides a method and system for enforcing file access control among client devices using multiple diverse access control models and multiple diverse file server protocols. A multi-protocol file server identifies each file with one particular access control model out of a plurality of possible models, and enforces that one particular model for all accesses to that file. When the file server receives a file server request for that file using a different access control model, the file server translates the access control limits for that file into no-less-restrictive limits in the different model. The file server restricts access by the client device using the translated access control limits. Each file is assigned the access control model of the user who created the file or who last set access control limits for the file. When a user having a different access control model sets access control limits, the access control model for the file is changed to the new model. Files are organized in a tree hierarchy, in which each tree is limited to one or more access control models (which can limit the ability of users to set access control limits for files in that tree). Each tree can be limited to NTmodel-only format, Unix-model-only format, or mixed NT-or-Unix-models format.

公开(公告)号：DE69929772T2

公开(公告)日：2006-11-09

申请号：DE69929772

申请日：1999-03-02

Applicant: NETWORK APPLIANCE INC

Inventor： HITZ DAVID ,  BORR ANDREA ,  HAWLEY J ,  MUHLESTEIN MARK ,  PEARSON JOAN

IPC: G06F12/00 ,  G06F1/00 ,  G06F21/41 ,  G06F21/62

公开(公告)号：AT317566T

公开(公告)日：2006-02-15

申请号：AT99909745

申请日：1999-03-02

Applicant: NETWORK APPLIANCE INC

Inventor： HITZ DAVID ,  BORR ANDREA ,  HAWLEY ROBERT J ,  MUHLESTEIN MARK ,  PEARSON JOAN

IPC: G06F12/00 ,  G06F1/00 ,  G06F21/41 ,  G06F21/62

公开(公告)号：WO0244862A3

公开(公告)日：2003-05-30

申请号：PCT/US0146688

申请日：2001-11-30

Applicant: NETWORK APPLIANCE INC

Inventor： MUHLESTEIN MARK

IPC: G06F21/22 ,  G06F20060101 ,  G06F7/00 ,  G06F11/00 ,  G06F11/30 ,  G06F11/34 ,  G06F17/30 ,  G06F21/00

CPC classification number: G06F21/562 ,  G06F2221/2115 ,  Y10S707/99931

Abstract: The invention provides a method and system for scanning specialized computing devices for viruses. In a preferred embodiment, a filer 130 is connected to one or more supplementary computing devices 140 that scan requested files to ensure they are virus free prior to delivery to end users. When an end user 111 requests a file the following steps occur: First, the filer determines whether the file requested must be scanned before delivery to the end user. Second, the filer opens a channel to one 141 of the external computing devices and sends 203 the filename. Third, the external computing device opens 205 the file and scans 207 it. Fourth, the external computing device notifies the filer the results of the file scan operation. Fifth, the filer sends 211 the file to the end user provided the status indicates it may do so.

Abstract translation: 本发明提供了用于扫描用于病毒的专用计算设备的方法和系统。 在优选实施例中，文件管理器130被连接到一个或多个补充计算设备140，扫描请求的文件以确保它们在递送给最终用户之前是无病毒的。 当最终用户111请求文件时，发生以下步骤：首先，文件管理器确定在发送给最终用户之前是否必须扫描所请求的文件。 第二，文件管理器打开一个外部计算设备的141个通道，并发送203个文件名。 第三，外部计算设备打开205文件并扫描207。 第四，外部计算设备通知文件管理器文件扫描操作的结果。 第五，文件管理器将文件发送到最终用户，只要状态表示可以这样做。

公开(公告)号：WO9966401B1

公开(公告)日：2000-02-03

申请号：PCT/US9913784

申请日：1999-06-17

Applicant: NETWORK APPLIANCE INC

Inventor： MUHLESTEIN MARK

IPC: G06F11/14

CPC classification number: G06F11/1464 ,  G06F11/1456 ,  Y10S707/99942 ,  Y10S707/99943 ,  Y10S707/99945 ,  Y10S707/99953 ,  Y10S707/99955

Abstract: The invention provides a file server that provides for backup and restore of files in a heterogeneous file server environment. Metadata associated with each file by each model or protocol is preserved across backup and restore operations. The file server performs at least three tasks as part of the backup and restore operations. The file server notes all file attributes associated with each file in either model. These file attributes can include Unix perms, ownership and timestamp information, and link information. On backup, the file server records those file attributes in an analogous record using a different model. The file server records each element of Unix metadata as an NT Extended Attribute for use by an NT backup element. On restore, the file server restores those file attributes from the analogous record. The NT Extended Attributes provided by an NT restore element are translated into Unix metadata. The file server provides an element for translating between Unix metadata and NT Extended Attributes transparently tothe NT backup and restore elements, so that NT backup and restore elements that were created without reference to the heterogeneous file server environment can be used.

Abstract translation: 本发明提供了一种文件服务器，其提供异构文件服务器环境中的文件的备份和恢复。 每个模型或协议与每个文件相关联的元数据将跨备份和还原操作进行保留。 文件服务器至少执行三个任务作为备份和还原操作的一部分。 文件服务器注释与任一模型中的每个文件相关联的所有文件属性。 这些文件属性可以包括Unix perms，所有权和时间戳信息以及链接信息。 在备份时，文件服务器使用不同的模型将这些文件属性记录在类似的记录中。 文件服务器将Unix元数据的每个元素记录为NT扩展属性，供NT备份元素使用。 恢复时，文件服务器从类似的记录中恢复这些文件属性。 由NT恢复元素提供的NT扩展属性被转换为Unix元数据。 文件服务器提供了一种用于将Unix元数据和NT扩展属性之间的数据透明地转换为NT备份和还原元素的元素，以便可以使用在不引用异构文件服务器环境的情况下创建的NT备份和恢复元素。

公开(公告)号：WO02095588B1

公开(公告)日：2003-09-04

申请号：PCT/US0151581

申请日：2001-11-30

Applicant: NETWORK APPLIANCE INC

Inventor： MUHLESTEIN MARK

IPC: G06F21/22 ,  G06F20060101 ,  G06F7/00 ,  G06F11/00 ,  G06F11/30 ,  G06F11/34 ,  G06F17/30 ,  G06F21/00

CPC classification number: G06F21/562 ,  G06F2221/2115 ,  Y10S707/99931

Abstract: The invention provides a method and system for performing specialized services for files (133) at a server (130), such as scanning files for viruses. A filer (130) or other server (130) is connected to one or more supplementary computing devices (141) that scan requested files (133) to ensure they are virus free prior to delivery to end users. When an end user requests a file (133) the following steps occur: The server (130) determines whether the file (133) requested must be scanned before delivery to the end user (111). The server (130) opens a channel (135) to one of the external computing devices (141) and sends the filename. The external computing device (141) opens the file and scans it. The external computing device (141) notifies the filer (130) the results of the file scan operation. The server (130) sends the file to the end user (111) provided the status indicates it may do so.

Abstract translation: 本发明提供了一种方法和系统，用于对服务器（130）上的文件（133）执行专门的服务，例如扫描病毒文件。 文件管理器（130）或其他服务器（130）连接到扫描所请求的文件（133）的一个或多个辅助计算设备（141），以确保在递送给最终用户之前它们是无病毒的。 当最终用户请求文件（133）时，发生以下步骤：服务器（130）确定在发送给最终用户（111）之前是否必须扫描被请求的文件（133）。 服务器（130）向外部计算设备（141）中的一个打开通道（135）并发送文件名。 外部计算设备（141）打开文件并对其进行扫描。 外部计算装置（141）向文件管理器（130）通知文件扫描操作的结果。 服务器（130）将文件发送给最终用户（111），只要状态指示可以这样做。