Invention Grant
US08812871B2 Method and apparatus for trusted execution in infrastructure as a service cloud environments
有权
在基础架构中作为服务云环境中的可信执行的方法和装置
- Patent Title: Method and apparatus for trusted execution in infrastructure as a service cloud environments
- Patent Title (中): 在基础架构中作为服务云环境中的可信执行的方法和装置
-
Application No.: US12789189Application Date: 2010-05-27
-
Publication No.: US08812871B2Publication Date: 2014-08-19
- Inventor: Pere Monclus , Fabio R. Maino
- Applicant: Pere Monclus , Fabio R. Maino
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Patterson & Sheridan LLP
- Main IPC: G06F21/00
- IPC: G06F21/00
Abstract:
The present disclosure presents a method and apparatus configured to provide for the trusted execution of virtual machines (VMs) on a virtualization server, e.g., for executing VMs on a virtualization server provided within Infrastructure as a Service (IaaS) cloud environment. A physical multi-core CPU may be configured with a hardware trust anchor. The trust anchor itself may be configured to manage session keys used to encrypt/decrypt instructions and data when a VM (or hypervisor) is executed on one of the CPU cores. When a context switch occurs due to an exception, the trust anchor swaps the session key used to encrypt/decrypt the contents of memory and cache allocated to a VM (or hypervisor).
Public/Granted literature
- US20110296201A1 METHOD AND APPARATUS FOR TRUSTED EXECUTION IN INFRASTRUCTURE AS A SERVICE CLOUD ENVIRONMENTS Public/Granted day:2011-12-01
Information query
