Evaluating removal of access permissions
US8239925B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Apr 26, 2007 |
| Grant date | Aug 7, 2012 |
| Priority date | — |
| Expiry date | May 24, 2030 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/6218
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Methods and systems are provided for controlling access to a file system. A record of actual accesses by users of the file system is maintained. Before a user is removed from a set of users or before a privilege for a set of users to access a data element is removed, it is determined whether the actual recorded accesses of the user are allowed by residual access permissions that would remain after implementing the proposed removal of access permission. An error condition is generated if the proposed removal of the access permission would have prevented at least one of the actual accesses. In another aspect of the invention, the system determines if the users would have alternate access to the storage element following implementation of the proposal.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.