公开(公告)号：US08612710B2

公开(公告)日：2013-12-17

申请号：US13764495

申请日：2013-02-11

Applicant: Google Inc.

Inventor： David R. Hanson ,  Erkki Ville Aikas

IPC: G06F12/14

CPC classification number: G06F12/1483 ,  G06F12/14 ,  G06F12/1416 ,  G06F21/00 ,  G06F21/6218 ,  G06F2221/2141

Abstract: A data object is stored in a hosted storage system and includes an access control list specifying access permissions for data object stored in the hosted storage system. The hosted storage system provides hosted storage to a plurality of clients that are coupled to the hosted storage system. A request to store a second data object is received. The request includes an indicator that the first data object stored in the hosted storage system should be used as an access control list for the second data object. The second data object is stored in the hosted storage system. The first data object is assigned as an access control list for the second data object stored in the hosted storage system.

公开(公告)号：US09209973B2

公开(公告)日：2015-12-08

申请号：US13681516

申请日：2012-11-20

Applicant: Google Inc.

Inventor： Erkki Ville Aikas ,  David Erb

IPC: H04L29/06 ,  H04L9/28 ,  H04L29/08 ,  G06F21/62 ,  G06F17/30

CPC classification number: H04L9/28 ,  G06F17/3056 ,  G06F21/6209 ,  G06F2221/2141 ,  H04L9/0822 ,  H04L9/0894 ,  H04L63/101 ,  H04L67/1097

Abstract: At a hosted storage service, a resource and a request to store the resource are received. The request includes a location of an access control service. The access control service is separate from the hosted storage service and controls access permissions for the resource. A request to access the stored resource is received. The hosted storage service accesses metadata stored in association with the resource and determines that access permissions for the resource are controlled by the access control service. An access request is from the hosted storage service to the access control service, the access request identifying the resource and a user of the client system.

Abstract translation: 在托管存储服务中，接收资源和存储资源的请求。 该请求包括访问控制服务的位置。 访问控制服务与托管存储服务分离，并控制资源的访问权限。 接收到访问存储的资源的请求。 托管存储服务访问与资源相关联存储的元数据，并确定资源的访问权限由访问控制服务控制。 访问请求来自托管存储服务到访问控制服务，识别资源的访问请求和客户端系统的用户。

公开(公告)号：US09154502B2

公开(公告)日：2015-10-06

申请号：US13756383

申请日：2013-01-31

Applicant: Google Inc.

Inventor： David Erb ,  Erkki Ville Aikas

IPC: G06F7/04 ,  H04L29/06

CPC classification number: H04L63/10

Abstract: A hosted storage service stores a virtual data object that corresponds to data. The virtual data object includes metadata that enables access to the data in a delegated storage service but does not include the data. A delegate storage service stores the data. The hosted storage service receives a request for access to the virtual object and sends a response that includes metadata to access the data in a delegated storage service. The delegate storage service receives a request for access to the data based on the metadata. In response to receiving the request for access to the data object, the delegate storage service sends the data to the client application.

Abstract translation: 托管存储服务存储与数据对应的虚拟数据对象。 虚拟数据对象包括允许访问委托的存储服务中的数据但不包括数据的元数据。 委托存储服务存储数据。 托管存储服务接收对虚拟对象的访问请求，并发送包含元数据的响应以访问委派的存储服务中的数据。 代理存储服务基于元数据接收对数据的访问请求。 响应于接收到访问数据对象的请求，代理存储服务将数据发送到客户端应用程序。

公开(公告)号：US20140143543A1

公开(公告)日：2014-05-22

申请号：US13681516

申请日：2012-11-20

Applicant: Google Inc.

Inventor： Erkki Ville Aikas ,  David Erb

IPC: H04L29/06 ,  H04L9/28

CPC classification number: H04L9/28 ,  G06F17/3056 ,  G06F21/6209 ,  G06F2221/2141 ,  H04L9/0822 ,  H04L9/0894 ,  H04L63/101 ,  H04L67/1097

Abstract: At a hosted storage service, a resource and a request to store the resource are received. The request includes a location of an access control service. The access control service is separate from the hosted storage service and controls access permissions for the resource. A request to access the stored resource is received. The hosted storage service accesses metadata stored in association with the resource and determines that access permissions for the resource are controlled by the access control service. An access request is from the hosted storage service to the access control service, the access request identifying the resource and a user of the client system.

Abstract translation: 在托管存储服务中，接收资源和存储资源的请求。 该请求包括访问控制服务的位置。 访问控制服务与托管存储服务分离，并控制资源的访问权限。 接收到访问存储的资源的请求。 托管存储服务访问与资源相关联存储的元数据，并确定资源的访问权限由访问控制服务控制。 访问请求来自托管存储服务到访问控制服务，识别资源的访问请求和客户端系统的用户。