Design and Implementation of Views: Isolated Perspectives of a File System for Regulatory Compliance
Pagano, Matthew W.
Peterson, Zachary N. J.
MetadataShow full item record
We present Views, a ﬁle system architecture designed to meet the role-based access control (RBAC) requirement of federal regulations, such as those in HIPAA. Views allows for discrete IO entities, such as users, groups or processes, to have a logically complete but isolated perspective of the ﬁle system. Entities may perform IO using the standard system call interface without affecting the views of other entities. Views is designed to be ﬁle system independent, extremely easy to use and manage, and ﬂexible in deﬁning isolation and sharing polices. Our implementation of Views is built on ext3cow, which additionally provides versioning capabilities to all entities. Preliminary results show the performance of Views is comparable with other traditional disk ﬁle systems.