BR112015002347A2 - clonagem de máquina virtual em ambiente de execução confiável - Google Patents
clonagem de máquina virtual em ambiente de execução confiávelInfo
- Publication number
- BR112015002347A2 BR112015002347A2 BR112015002347A BR112015002347A BR112015002347A2 BR 112015002347 A2 BR112015002347 A2 BR 112015002347A2 BR 112015002347 A BR112015002347 A BR 112015002347A BR 112015002347 A BR112015002347 A BR 112015002347A BR 112015002347 A2 BR112015002347 A2 BR 112015002347A2
- Authority
- BR
- Brazil
- Prior art keywords
- virtual machine
- execution environment
- source
- target virtual
- trusted execution
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
- G06F21/53—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Stored Programmes (AREA)
- Debugging And Monitoring (AREA)
Abstract
resumo patente de invenção: "clonagem de máquina virtual em ambiente de execução confiável". a presente invenção refere-se a clonagem de uma máquina virtual possuindo um ambiente de execução confiável tal como um módulo de plataforma confiável baseado em software. de modo a clonar a máquina virtual, o estado da máquina virtual da máquina virtual fonte é copiado para formular um estado da máquina virtual alvo que é para ser associado com uma máquina virtual alvo. a máquina virtual alvo é um clone do estado da máquina virtual fonte, e assim, a hierarquia de armazenamento do ambiente de execução confiável pode ser a mesma para o ambiente de execução confiável nos estados da máquina virtual fonte e alvo. entretanto, devido à identidade da máquina virtual alvo ser diferente desta da máquina virtual fonte, a hierarquia de endosso do estado da máquina virtual alvo é alterada de modo que ela seja baseada na identidade da máquina virtual alvo, ao invés da máquina virtual fonte.
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US13/566,250 US8954965B2 (en) | 2012-08-03 | 2012-08-03 | Trusted execution environment virtual machine cloning |
US13/566,250 | 2012-08-03 | ||
PCT/US2013/053109 WO2014022604A1 (en) | 2012-08-03 | 2013-08-01 | Trusted execution environment virtual machine cloning |
Publications (3)
Publication Number | Publication Date |
---|---|
BR112015002347A2 true BR112015002347A2 (pt) | 2017-07-04 |
BR112015002347A8 BR112015002347A8 (pt) | 2021-06-01 |
BR112015002347B1 BR112015002347B1 (pt) | 2022-03-15 |
Family
ID=48986236
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
BR112015002347-9A BR112015002347B1 (pt) | 2012-08-03 | 2013-08-01 | Método para clonar estado de máquina virtual fonte possuindo um ambiente de execução confiável associado para formular um estado de máquina virtual alvo e meio de armazenamento em computador |
Country Status (5)
Country | Link |
---|---|
US (1) | US8954965B2 (pt) |
EP (1) | EP2880589B1 (pt) |
CN (1) | CN104520869B (pt) |
BR (1) | BR112015002347B1 (pt) |
WO (1) | WO2014022604A1 (pt) |
Families Citing this family (33)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9202062B2 (en) * | 2010-12-21 | 2015-12-01 | International Business Machines Corporation | Virtual machine validation |
WO2015003310A1 (en) * | 2013-07-09 | 2015-01-15 | Hua Zhong University Of Science Technology | Synchronized virtual trusted platform modules (vtpm) and virtual machine (vm) rollbacks |
US9633210B2 (en) | 2013-09-13 | 2017-04-25 | Microsoft Technology Licensing, Llc | Keying infrastructure |
US9612859B2 (en) | 2014-07-21 | 2017-04-04 | Vmware, Inc. | Comparing states of a virtual machine |
US11635979B2 (en) * | 2014-07-21 | 2023-04-25 | Vmware, Inc. | Modifying a state of a virtual machine |
US20160019081A1 (en) * | 2014-07-21 | 2016-01-21 | Vmware,Inc. | Viewing a snapshot of a virtual machine |
CN105446793B (zh) | 2014-08-28 | 2018-08-28 | 国际商业机器公司 | 迁移虚拟资产的方法和设备 |
US10097513B2 (en) | 2014-09-14 | 2018-10-09 | Microsoft Technology Licensing, Llc | Trusted execution environment extensible computing device interface |
US9882929B1 (en) * | 2014-09-30 | 2018-01-30 | Palo Alto Networks, Inc. | Dynamic selection and generation of a virtual clone for detonation of suspicious content within a honey network |
CN107533478A (zh) * | 2015-07-31 | 2018-01-02 | 慧与发展有限责任合伙企业 | 计算机系统的迁移 |
CN105183546A (zh) * | 2015-08-12 | 2015-12-23 | 北京因特信安软件科技有限公司 | 基于可信资源池的虚拟机安全迁移方法 |
CN107003893B (zh) * | 2016-02-03 | 2019-11-12 | 华为技术有限公司 | 虚拟机备份方法、备份装置及宿主机 |
US11405201B2 (en) * | 2016-11-10 | 2022-08-02 | Brickell Cryptology Llc | Secure transfer of protected application storage keys with change of trusted computing base |
US11398906B2 (en) * | 2016-11-10 | 2022-07-26 | Brickell Cryptology Llc | Confirming receipt of audit records for audited use of a cryptographic key |
EP3688647B1 (en) | 2017-09-25 | 2023-06-14 | Telefonaktiebolaget LM Ericsson (PUBL) | Enclave handling on an execution platform |
WO2019185126A1 (en) * | 2018-03-27 | 2019-10-03 | Telefonaktiebolaget Lm Ericsson (Publ) | Instance handling of a trusted execution environment |
EP3776315A1 (en) | 2018-03-27 | 2021-02-17 | Telefonaktiebolaget LM Ericsson (publ) | Trusted execution environment instances licenses management |
US11586847B1 (en) * | 2019-11-26 | 2023-02-21 | Amazon Technologies, Inc. | Experiment management service |
US11265346B2 (en) | 2019-12-19 | 2022-03-01 | Palo Alto Networks, Inc. | Large scale high-interactive honeypot farm |
US11271907B2 (en) | 2019-12-19 | 2022-03-08 | Palo Alto Networks, Inc. | Smart proxy for a large scale high-interaction honeypot farm |
US11630683B2 (en) | 2020-02-26 | 2023-04-18 | Red Hat, Inc. | Low latency launch for trusted execution environments |
US11888972B2 (en) | 2020-02-26 | 2024-01-30 | Red Hat, Inc. | Split security for trusted execution environments |
US11544096B2 (en) | 2020-02-27 | 2023-01-03 | Hewlett Packard Enterprise Development Lp | Virtual trusted platform modules |
US11442767B2 (en) | 2020-02-27 | 2022-09-13 | Hewlett Packard Enterprise Development Lp | Virtual serial ports for virtual machines |
US11640312B2 (en) | 2020-02-27 | 2023-05-02 | Hewlett Packard Enterprise Development Lp | System reset using a controller |
US11620411B2 (en) | 2020-03-24 | 2023-04-04 | Red Hat, Inc. | Elastic launch for trusted execution environments |
CN111597226B (zh) * | 2020-04-26 | 2023-06-16 | 北京百度网讯科技有限公司 | 数据挖掘系统、方法、装置、电子设备及存储介质 |
US11611431B2 (en) | 2020-07-01 | 2023-03-21 | Red Hat, Inc. | Network bound encryption for recovery of trusted execution environments |
US11671412B2 (en) | 2020-07-01 | 2023-06-06 | Red Hat, Inc. | Network bound encryption for orchestrating workloads with sensitive data |
US11741221B2 (en) * | 2020-07-29 | 2023-08-29 | Red Hat, Inc. | Using a trusted execution environment to enable network booting |
CN113407299B (zh) * | 2021-05-14 | 2023-08-29 | 海光信息技术股份有限公司 | 防止虚拟机恶意回滚的方法、装置及电子设备 |
US11924336B1 (en) * | 2021-06-25 | 2024-03-05 | Amazon Technologies, Inc. | Cryptographic artifact generation using virtualized security modules |
US20220222358A1 (en) * | 2022-03-31 | 2022-07-14 | Intel Corporation | Scalable cloning and replication for trusted execution environments |
Family Cites Families (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7613921B2 (en) * | 2005-05-13 | 2009-11-03 | Intel Corporation | Method and apparatus for remotely provisioning software-based security coprocessors |
US8074262B2 (en) | 2005-05-13 | 2011-12-06 | Intel Corporation | Method and apparatus for migrating virtual trusted platform modules |
US7444670B2 (en) * | 2006-03-21 | 2008-10-28 | International Business Machines Corporation | Method and apparatus for migrating a virtual TPM instance and preserving uniqueness and completeness of the instance |
US9135444B2 (en) | 2006-10-19 | 2015-09-15 | Novell, Inc. | Trusted platform module (TPM) assisted data center management |
US8151262B2 (en) | 2007-03-30 | 2012-04-03 | Lenovo (Singapore) Pte. Ltd. | System and method for reporting the trusted state of a virtual machine |
US20090204964A1 (en) | 2007-10-12 | 2009-08-13 | Foley Peter F | Distributed trusted virtualization platform |
US8407518B2 (en) * | 2007-10-26 | 2013-03-26 | Vmware, Inc. | Using virtual machine cloning to create a backup virtual machine in a fault tolerant system |
US20090164994A1 (en) | 2007-12-20 | 2009-06-25 | Virtual Computer, Inc. | Virtual computing management systems and methods |
US8259948B2 (en) | 2007-12-29 | 2012-09-04 | Intel Corporation | Virtual TPM key migration using hardware keys |
US8032942B2 (en) * | 2007-12-31 | 2011-10-04 | Intel Corporation | Configuration of virtual trusted platform module |
US9559842B2 (en) | 2008-09-30 | 2017-01-31 | Hewlett Packard Enterprise Development Lp | Trusted key management for virtualized platforms |
GB2464966B (en) | 2008-10-31 | 2012-08-29 | Hewlett Packard Development Co | Policy enforcement in trusted platforms |
CN101488173B (zh) * | 2009-01-15 | 2010-10-27 | 北京交通大学 | 支持零宕机的可信虚拟域启动文件完整性度量的方法 |
US8387045B2 (en) | 2009-03-12 | 2013-02-26 | International Business Machines Corporation | Cloning image creation using virtual machine environment |
US8443365B2 (en) * | 2010-11-03 | 2013-05-14 | Hewlett-Packard Development Company, L.P. | Methods and systems to clone a virtual machine instance |
US8375221B1 (en) * | 2011-07-29 | 2013-02-12 | Microsoft Corporation | Firmware-based trusted platform module for arm processor architectures and trustzone security extensions |
US9250969B2 (en) * | 2011-08-30 | 2016-02-02 | At&T Intellectual Property I, L.P. | Tagging a copy of memory of a virtual machine with information for fetching of relevant portions of the memory |
US9244717B2 (en) * | 2012-03-29 | 2016-01-26 | Vmware, Inc. | Method and system for visualizing linked clone trees |
-
2012
- 2012-08-03 US US13/566,250 patent/US8954965B2/en active Active
-
2013
- 2013-08-01 WO PCT/US2013/053109 patent/WO2014022604A1/en active Application Filing
- 2013-08-01 EP EP13750203.5A patent/EP2880589B1/en active Active
- 2013-08-01 CN CN201380041313.5A patent/CN104520869B/zh active Active
- 2013-08-01 BR BR112015002347-9A patent/BR112015002347B1/pt active IP Right Grant
Also Published As
Publication number | Publication date |
---|---|
EP2880589B1 (en) | 2018-09-19 |
BR112015002347A8 (pt) | 2021-06-01 |
US8954965B2 (en) | 2015-02-10 |
CN104520869A (zh) | 2015-04-15 |
CN104520869B (zh) | 2017-10-17 |
EP2880589A1 (en) | 2015-06-10 |
WO2014022604A1 (en) | 2014-02-06 |
BR112015002347B1 (pt) | 2022-03-15 |
US20140040890A1 (en) | 2014-02-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
BR112015002347A2 (pt) | clonagem de máquina virtual em ambiente de execução confiável | |
CL2008000168A1 (es) | Metodo para proteger el acceso a una memoria desde un modo de privilegio en un sistema operativo. | |
GB2495361B (en) | Managing a register cache based on an architected computer instruction set | |
BR112015029631A2 (pt) | sistemas cirúrgicos periféricos de lente intraocular | |
BR112016013559A8 (pt) | método, sistema de computador e produto de programa de computador para reinicialização preservando memória | |
RU2016109436A (ru) | Селективное обеспечение соблюдения целостности кода, обеспечиваемое менеджером виртуальной машины | |
BR112014014122A2 (pt) | tratamento de varizes com base em adesivo | |
GB2520858A (en) | Instruction set for message scheduling of SHA256 algorithm | |
BR112015030302A2 (pt) | depuração de código nativo através da transição da execução em modo nativo para a execução em modo interpretado | |
BR112014012398A2 (pt) | gerenciamento de desempenho e energia de computação com estrutura de dados de desempenho de firmware | |
BRPI0720700A8 (pt) | Método implementado por computador para proteger os recursos de um sistema operacional | |
BR112012019872A2 (pt) | composicao de detergente | |
MX347236B (es) | Control de despeje local. | |
BR112014006543A2 (pt) | sistema de microprocessador com ambiente de tempo de execução seguro | |
BR112015017103A2 (pt) | métodos e aparelhos para cancelar dadas solicitações de pré-busca de dados para um loop | |
BR112015005307A2 (pt) | artigo fotocrômico-dicróico | |
BR112014007990A2 (pt) | mouse de computador | |
BR112015008327A2 (pt) | aditivo de limpeza e método de limpeza usando o mesmo | |
BR112018009241A2 (pt) | dispositivo criptográfico disposto de modo a computar uma cifra de bloco-alvo em uma mensagem de entrada, método criptográfico para computar uma cifra de bloco-alvo em uma mensagem de entrada, programa de computador e mídia legível por computador | |
BR112015029240A2 (pt) | composto, composição e método de evitar ou tratar inflamação associada com inflamassoma nrlp3 em um indivíduo | |
BR112015001414A2 (pt) | composição antideriva | |
BR112014032516A2 (pt) | método e dispositivo para processamento de imagem | |
BR112014033021A2 (pt) | dispositivo de proteção de compartimento de potência, e, método para proteger compartimentos de potência | |
BR112015030435A8 (pt) | computador, artigo de fabricação e processo para proporcionar temporizadores por processador virtuais para sistemas de processador múltiplo | |
BR112014031112A2 (pt) | nanossistemas para formulação de biocidas eficazes de risco mínimo |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
B25A | Requested transfer of rights approved |
Owner name: MICROSOFT TECHNOLOGY LICENSING, LLC (US) |
|
B06F | Objections, documents and/or translations needed after an examination request according [chapter 6.6 patent gazette] | ||
B06U | Preliminary requirement: requests with searches performed by other patent offices: procedure suspended [chapter 6.21 patent gazette] | ||
B09A | Decision: intention to grant [chapter 9.1 patent gazette] | ||
B16A | Patent or certificate of addition of invention granted [chapter 16.1 patent gazette] |
Free format text: PRAZO DE VALIDADE: 20 (VINTE) ANOS CONTADOS A PARTIR DE 01/08/2013, OBSERVADAS AS CONDICOES LEGAIS. |