| CPC G06F 21/6218 (2013.01) [G06F 21/31 (2013.01); G06F 21/45 (2013.01); G06F 21/602 (2013.01); G06F 2221/2107 (2013.01); G06F 2221/2111 (2013.01); G06F 2221/2137 (2013.01); G06F 2221/2141 (2013.01)] | 20 Claims |
|
1. A method to implement application-specific permissions using an interceptor, the method comprising:
receiving, by the interceptor, a request by a user to access a specified file on a file system through an application, the file system comprising a computer file system;
retrieving, from a permission repository, a permission record based on information about the application, the user, and the specified file;
determining whether the user has permission to access a directory in the file system in which the specified file is located;
determining, by the interceptor and based on the permission record, whether the application has permission to access the specified file comprising identifying a type of the specified file, and determining whether the application is compatible with the type of the specified file;
upon determining that the application does not have permission to access the specified file comprising determining that the application is not compatible with the type of the specified file, blocking the application from accessing the specified file; and
upon determining that the user has permission to access the directory in which the specified file is located and determining that the application has permission to access the specified file comprising determining that the application is compatible with the type of the specified file, retrieving the specified file from the directory and granting the application access to the specified file.
|