| 发明名称 | Methods and systems of encrypting file system directories | ||
| 摘要 | An electronic device implements a method of encrypting directories of a file system. A processor receives a request to access a directory entry of a file system, and identifies a user who is logged into the electronic device. The processor determines whether the user has access to a directory encryption key associated with the directory entry and, if not, identifies an encrypted file name stored in the directory entry, and determines whether the encrypted file name complies with one or more naming rules. If the encrypted file name does not comply with one or more naming rules, the processor applies one or more functions to a file name associated with the encrypted file name to generate an encoded encrypted file name that complies with the one or more naming rules, and causes the encoded encrypted file name to be displayed as a representation of the directory entry. | ||
| 申请公布号 | US9639708(B2) | 申请公布日期 | 2017.05.02 |
| 申请号 | US201514829095 | 申请日期 | 2015.08.18 |
| 申请人 | GOOGLE INC. | 发明人 | Savagaonkar Uday Ramesh;Halcrow Michael;Ts'o Theodore Yue Tak;Muslukhov Ildar |
| 分类号 | G06F12/14;G06F21/60;G06F21/62 | 主分类号 | G06F12/14 |
| 代理机构 | Fox Rothschild LLP | 代理人 | Fox Rothschild LLP |
| 主权项 | 1. A method of encrypting directories of a file system on an electronic device, the method comprising: by a processor: receiving, from a process running on an electronic device, a request to access a directory entry of a file system;identifying a user who is logged into the electronic device;determining whether the user has access to a directory encryption key associated with the directory entry, andin response to determining that the user does not have access to the directory encryption key: identifying an encrypted file name stored in the directory entry, wherein the encrypted file name comprises an encrypted user-domain file name,determining whether the encrypted file name complies with one or more naming rules,in response to determining that the encrypted file name does not comply with one or more naming rules, applying one or more functions to a file name associated with the encrypted file name to generate an encoded encrypted file name that complies with the one or more naming rules and an access hash value for the directory entry,storing the access hash value in a directory indexing structure such that it is associated with the directory entry, andcausing the encoded encrypted file name to be displayed via a user interface of the electronic device as a representation of the directory entry. | ||
| 地址 | Mountain View CA US | ||