Design and Implementation of Views: Isolated Perspectives of a File System for Regulatory Compliance

Embargo until
Date
2009-08-24T13:15:00Z
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
We present Views, a file system architecture designed to meet the role-based access control (RBAC) requirement of federal regulations, such as those in HIPAA. Views allows for discrete IO entities, such as users, groups or processes, to have a logically complete but isolated perspective of the file system. Entities may perform IO using the standard system call interface without affecting the views of other entities. Views is designed to be file system independent, extremely easy to use and manage, and flexible in defining isolation and sharing polices. Our implementation of Views is built on ext3cow, which additionally provides versioning capabilities to all entities. Preliminary results show the performance of Views is comparable with other traditional disk file systems.
Description
Keywords
Versioning, Ext3cow, Isolation, HIPAA, Role-Based Access Control, Regulatory Compliance, File System
Citation