BR112015002347A2 - clonagem de máquina virtual em ambiente de execução confiável - Google Patents

clonagem de máquina virtual em ambiente de execução confiável

Info

Publication number
BR112015002347A2
BR112015002347A2 BR112015002347A BR112015002347A BR112015002347A2 BR 112015002347 A2 BR112015002347 A2 BR 112015002347A2 BR 112015002347 A BR112015002347 A BR 112015002347A BR 112015002347 A BR112015002347 A BR 112015002347A BR 112015002347 A2 BR112015002347 A2 BR 112015002347A2
Authority
BR
Brazil
Prior art keywords
virtual machine
execution environment
source
target virtual
trusted execution
Prior art date
Application number
BR112015002347A
Other languages
English (en)
Other versions
BR112015002347A8 (pt
BR112015002347B1 (pt
Inventor
John Layman Andrew
Nystrom Magnus
F Novak Mark
Thom Stefan
Original Assignee
Microsoft Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Corp filed Critical Microsoft Corp
Publication of BR112015002347A2 publication Critical patent/BR112015002347A2/pt
Publication of BR112015002347A8 publication Critical patent/BR112015002347A8/pt
Publication of BR112015002347B1 publication Critical patent/BR112015002347B1/pt

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/53Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Stored Programmes (AREA)
  • Debugging And Monitoring (AREA)

Abstract

resumo patente de invenção: "clonagem de máquina virtual em ambiente de execução confiável". a presente invenção refere-se a clonagem de uma máquina virtual possuindo um ambiente de execução confiável tal como um módulo de plataforma confiável baseado em software. de modo a clonar a máquina virtual, o estado da máquina virtual da máquina virtual fonte é copiado para formular um estado da máquina virtual alvo que é para ser associado com uma máquina virtual alvo. a máquina virtual alvo é um clone do estado da máquina virtual fonte, e assim, a hierarquia de armazenamento do ambiente de execução confiável pode ser a mesma para o ambiente de execução confiável nos estados da máquina virtual fonte e alvo. entretanto, devido à identidade da máquina virtual alvo ser diferente desta da máquina virtual fonte, a hierarquia de endosso do estado da máquina virtual alvo é alterada de modo que ela seja baseada na identidade da máquina virtual alvo, ao invés da máquina virtual fonte.
BR112015002347-9A 2012-08-03 2013-08-01 Método para clonar estado de máquina virtual fonte possuindo um ambiente de execução confiável associado para formular um estado de máquina virtual alvo e meio de armazenamento em computador BR112015002347B1 (pt)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US13/566,250 US8954965B2 (en) 2012-08-03 2012-08-03 Trusted execution environment virtual machine cloning
US13/566,250 2012-08-03
PCT/US2013/053109 WO2014022604A1 (en) 2012-08-03 2013-08-01 Trusted execution environment virtual machine cloning

Publications (3)

Publication Number Publication Date
BR112015002347A2 true BR112015002347A2 (pt) 2017-07-04
BR112015002347A8 BR112015002347A8 (pt) 2021-06-01
BR112015002347B1 BR112015002347B1 (pt) 2022-03-15

Family

ID=48986236

Family Applications (1)

Application Number Title Priority Date Filing Date
BR112015002347-9A BR112015002347B1 (pt) 2012-08-03 2013-08-01 Método para clonar estado de máquina virtual fonte possuindo um ambiente de execução confiável associado para formular um estado de máquina virtual alvo e meio de armazenamento em computador

Country Status (5)

Country Link
US (1) US8954965B2 (pt)
EP (1) EP2880589B1 (pt)
CN (1) CN104520869B (pt)
BR (1) BR112015002347B1 (pt)
WO (1) WO2014022604A1 (pt)

Families Citing this family (33)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9202062B2 (en) * 2010-12-21 2015-12-01 International Business Machines Corporation Virtual machine validation
WO2015003310A1 (en) * 2013-07-09 2015-01-15 Hua Zhong University Of Science Technology Synchronized virtual trusted platform modules (vtpm) and virtual machine (vm) rollbacks
US9633210B2 (en) 2013-09-13 2017-04-25 Microsoft Technology Licensing, Llc Keying infrastructure
US9612859B2 (en) 2014-07-21 2017-04-04 Vmware, Inc. Comparing states of a virtual machine
US11635979B2 (en) * 2014-07-21 2023-04-25 Vmware, Inc. Modifying a state of a virtual machine
US20160019081A1 (en) * 2014-07-21 2016-01-21 Vmware,Inc. Viewing a snapshot of a virtual machine
CN105446793B (zh) 2014-08-28 2018-08-28 国际商业机器公司 迁移虚拟资产的方法和设备
US10097513B2 (en) 2014-09-14 2018-10-09 Microsoft Technology Licensing, Llc Trusted execution environment extensible computing device interface
US9882929B1 (en) * 2014-09-30 2018-01-30 Palo Alto Networks, Inc. Dynamic selection and generation of a virtual clone for detonation of suspicious content within a honey network
CN107533478A (zh) * 2015-07-31 2018-01-02 慧与发展有限责任合伙企业 计算机系统的迁移
CN105183546A (zh) * 2015-08-12 2015-12-23 北京因特信安软件科技有限公司 基于可信资源池的虚拟机安全迁移方法
CN107003893B (zh) * 2016-02-03 2019-11-12 华为技术有限公司 虚拟机备份方法、备份装置及宿主机
US11405201B2 (en) * 2016-11-10 2022-08-02 Brickell Cryptology Llc Secure transfer of protected application storage keys with change of trusted computing base
US11398906B2 (en) * 2016-11-10 2022-07-26 Brickell Cryptology Llc Confirming receipt of audit records for audited use of a cryptographic key
EP3688647B1 (en) 2017-09-25 2023-06-14 Telefonaktiebolaget LM Ericsson (PUBL) Enclave handling on an execution platform
WO2019185126A1 (en) * 2018-03-27 2019-10-03 Telefonaktiebolaget Lm Ericsson (Publ) Instance handling of a trusted execution environment
EP3776315A1 (en) 2018-03-27 2021-02-17 Telefonaktiebolaget LM Ericsson (publ) Trusted execution environment instances licenses management
US11586847B1 (en) * 2019-11-26 2023-02-21 Amazon Technologies, Inc. Experiment management service
US11265346B2 (en) 2019-12-19 2022-03-01 Palo Alto Networks, Inc. Large scale high-interactive honeypot farm
US11271907B2 (en) 2019-12-19 2022-03-08 Palo Alto Networks, Inc. Smart proxy for a large scale high-interaction honeypot farm
US11630683B2 (en) 2020-02-26 2023-04-18 Red Hat, Inc. Low latency launch for trusted execution environments
US11888972B2 (en) 2020-02-26 2024-01-30 Red Hat, Inc. Split security for trusted execution environments
US11544096B2 (en) 2020-02-27 2023-01-03 Hewlett Packard Enterprise Development Lp Virtual trusted platform modules
US11442767B2 (en) 2020-02-27 2022-09-13 Hewlett Packard Enterprise Development Lp Virtual serial ports for virtual machines
US11640312B2 (en) 2020-02-27 2023-05-02 Hewlett Packard Enterprise Development Lp System reset using a controller
US11620411B2 (en) 2020-03-24 2023-04-04 Red Hat, Inc. Elastic launch for trusted execution environments
CN111597226B (zh) * 2020-04-26 2023-06-16 北京百度网讯科技有限公司 数据挖掘系统、方法、装置、电子设备及存储介质
US11611431B2 (en) 2020-07-01 2023-03-21 Red Hat, Inc. Network bound encryption for recovery of trusted execution environments
US11671412B2 (en) 2020-07-01 2023-06-06 Red Hat, Inc. Network bound encryption for orchestrating workloads with sensitive data
US11741221B2 (en) * 2020-07-29 2023-08-29 Red Hat, Inc. Using a trusted execution environment to enable network booting
CN113407299B (zh) * 2021-05-14 2023-08-29 海光信息技术股份有限公司 防止虚拟机恶意回滚的方法、装置及电子设备
US11924336B1 (en) * 2021-06-25 2024-03-05 Amazon Technologies, Inc. Cryptographic artifact generation using virtualized security modules
US20220222358A1 (en) * 2022-03-31 2022-07-14 Intel Corporation Scalable cloning and replication for trusted execution environments

Family Cites Families (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7613921B2 (en) * 2005-05-13 2009-11-03 Intel Corporation Method and apparatus for remotely provisioning software-based security coprocessors
US8074262B2 (en) 2005-05-13 2011-12-06 Intel Corporation Method and apparatus for migrating virtual trusted platform modules
US7444670B2 (en) * 2006-03-21 2008-10-28 International Business Machines Corporation Method and apparatus for migrating a virtual TPM instance and preserving uniqueness and completeness of the instance
US9135444B2 (en) 2006-10-19 2015-09-15 Novell, Inc. Trusted platform module (TPM) assisted data center management
US8151262B2 (en) 2007-03-30 2012-04-03 Lenovo (Singapore) Pte. Ltd. System and method for reporting the trusted state of a virtual machine
US20090204964A1 (en) 2007-10-12 2009-08-13 Foley Peter F Distributed trusted virtualization platform
US8407518B2 (en) * 2007-10-26 2013-03-26 Vmware, Inc. Using virtual machine cloning to create a backup virtual machine in a fault tolerant system
US20090164994A1 (en) 2007-12-20 2009-06-25 Virtual Computer, Inc. Virtual computing management systems and methods
US8259948B2 (en) 2007-12-29 2012-09-04 Intel Corporation Virtual TPM key migration using hardware keys
US8032942B2 (en) * 2007-12-31 2011-10-04 Intel Corporation Configuration of virtual trusted platform module
US9559842B2 (en) 2008-09-30 2017-01-31 Hewlett Packard Enterprise Development Lp Trusted key management for virtualized platforms
GB2464966B (en) 2008-10-31 2012-08-29 Hewlett Packard Development Co Policy enforcement in trusted platforms
CN101488173B (zh) * 2009-01-15 2010-10-27 北京交通大学 支持零宕机的可信虚拟域启动文件完整性度量的方法
US8387045B2 (en) 2009-03-12 2013-02-26 International Business Machines Corporation Cloning image creation using virtual machine environment
US8443365B2 (en) * 2010-11-03 2013-05-14 Hewlett-Packard Development Company, L.P. Methods and systems to clone a virtual machine instance
US8375221B1 (en) * 2011-07-29 2013-02-12 Microsoft Corporation Firmware-based trusted platform module for arm processor architectures and trustzone security extensions
US9250969B2 (en) * 2011-08-30 2016-02-02 At&T Intellectual Property I, L.P. Tagging a copy of memory of a virtual machine with information for fetching of relevant portions of the memory
US9244717B2 (en) * 2012-03-29 2016-01-26 Vmware, Inc. Method and system for visualizing linked clone trees

Also Published As

Publication number Publication date
EP2880589B1 (en) 2018-09-19
BR112015002347A8 (pt) 2021-06-01
US8954965B2 (en) 2015-02-10
CN104520869A (zh) 2015-04-15
CN104520869B (zh) 2017-10-17
EP2880589A1 (en) 2015-06-10
WO2014022604A1 (en) 2014-02-06
BR112015002347B1 (pt) 2022-03-15
US20140040890A1 (en) 2014-02-06

Similar Documents

Publication Publication Date Title
BR112015002347A2 (pt) clonagem de máquina virtual em ambiente de execução confiável
CL2008000168A1 (es) Metodo para proteger el acceso a una memoria desde un modo de privilegio en un sistema operativo.
GB2495361B (en) Managing a register cache based on an architected computer instruction set
BR112015029631A2 (pt) sistemas cirúrgicos periféricos de lente intraocular
BR112016013559A8 (pt) método, sistema de computador e produto de programa de computador para reinicialização preservando memória
RU2016109436A (ru) Селективное обеспечение соблюдения целостности кода, обеспечиваемое менеджером виртуальной машины
BR112014014122A2 (pt) tratamento de varizes com base em adesivo
GB2520858A (en) Instruction set for message scheduling of SHA256 algorithm
BR112015030302A2 (pt) depuração de código nativo através da transição da execução em modo nativo para a execução em modo interpretado
BR112014012398A2 (pt) gerenciamento de desempenho e energia de computação com estrutura de dados de desempenho de firmware
BRPI0720700A8 (pt) Método implementado por computador para proteger os recursos de um sistema operacional
BR112012019872A2 (pt) composicao de detergente
MX347236B (es) Control de despeje local.
BR112014006543A2 (pt) sistema de microprocessador com ambiente de tempo de execução seguro
BR112015017103A2 (pt) métodos e aparelhos para cancelar dadas solicitações de pré-busca de dados para um loop
BR112015005307A2 (pt) artigo fotocrômico-dicróico
BR112014007990A2 (pt) mouse de computador
BR112015008327A2 (pt) aditivo de limpeza e método de limpeza usando o mesmo
BR112018009241A2 (pt) dispositivo criptográfico disposto de modo a computar uma cifra de bloco-alvo em uma mensagem de entrada, método criptográfico para computar uma cifra de bloco-alvo em uma mensagem de entrada, programa de computador e mídia legível por computador
BR112015029240A2 (pt) composto, composição e método de evitar ou tratar inflamação associada com inflamassoma nrlp3 em um indivíduo
BR112015001414A2 (pt) composição antideriva
BR112014032516A2 (pt) método e dispositivo para processamento de imagem
BR112014033021A2 (pt) dispositivo de proteção de compartimento de potência, e, método para proteger compartimentos de potência
BR112015030435A8 (pt) computador, artigo de fabricação e processo para proporcionar temporizadores por processador virtuais para sistemas de processador múltiplo
BR112014031112A2 (pt) nanossistemas para formulação de biocidas eficazes de risco mínimo

Legal Events

Date Code Title Description
B25A Requested transfer of rights approved

Owner name: MICROSOFT TECHNOLOGY LICENSING, LLC (US)

B06F Objections, documents and/or translations needed after an examination request according [chapter 6.6 patent gazette]
B06U Preliminary requirement: requests with searches performed by other patent offices: procedure suspended [chapter 6.21 patent gazette]
B09A Decision: intention to grant [chapter 9.1 patent gazette]
B16A Patent or certificate of addition of invention granted [chapter 16.1 patent gazette]

Free format text: PRAZO DE VALIDADE: 20 (VINTE) ANOS CONTADOS A PARTIR DE 01/08/2013, OBSERVADAS AS CONDICOES LEGAIS.