| CPC G06F 21/6227 (2013.01) [G06F 16/137 (2019.01); G06F 16/1827 (2019.01); G06F 21/602 (2013.01)] | 14 Claims |
|
1. A method comprising:
receiving a first request to generate a directory entry in a distributed file system for a file;
generating the directory entry in a directory stored in a storage node of a plurality of storage nodes, the directory entry comprising a file name and an index number, the index number referencing an index node of a plurality of index nodes that stores first metadata for the file;
encrypting the file name to generate an encrypted file name;
encoding the encrypted file name to generate an encoded file name that replaces the file name in the directory entry, wherein the encoded file name is usable by a client system for performing a file system operation with respect to the file and the encrypted file name is unusable by the client system for performing the file system operation with respect to the file;
attaching the encrypted file name to the directory entry as second metadata, the second metadata being distinct from the encoded file name and the index number and being usable by the client system for decrypting the encrypted file name; and
subsequent to attaching the encrypted file name to the directory entry as second metadata and encoding the encrypted file name to generate the encoded file name:
receiving, from the client system using the encoded file name, a second request for the encrypted file name;
retrieving, using the encoded file name from the second request, the second metadata comprising the encrypted file name in response to receiving the second request; and
transmitting, to the client system, the retrieved second metadata comprising the encrypted file name.
|