Invention Grant
- Patent Title: Compartmentalization of the user network interface to a device
- Patent Title (中): 将用户网络接口与设备隔开
-
Application No.: US14551057Application Date: 2014-11-23
-
Publication No.: US09331906B1Publication Date: 2016-05-03
- Inventor: Jason Scott McMullan , Trevor William Patrie , Peter Liudmilov Djalaliev , Roelof Nico Du Toit
- Applicant: Netronome Systems, Inc.
- Applicant Address: US CA Santa Clara
- Assignee: Netronome Systems, Inc.
- Current Assignee: Netronome Systems, Inc.
- Current Assignee Address: US CA Santa Clara
- Agency: Imperium Patent Works LLP
- Agent T. Lester Wallace; Mark D. Marrello
- Main IPC: H04L29/06
- IPC: H04L29/06 ; H04L12/24 ; H04L29/08 ; G06F9/455 ; G06F11/00 ; G06F12/14 ; G06F12/16 ; G08B23/00
Abstract:
A device has physical network interface port through which a user can monitor and configure the device. A backend process and a virtual machine (VM) execute on a host operating system (OS). A front end user interface process executes on the VM, and is therefore compartmentalized in the VM. There is no front end user interface executing on the host OS outside the VM. The only management access channel into the device is via a first communication path through the physical network interface port, to the VM, up the VM's stack, and to the front end process. If the backend process is to be instructed to take an action, then the front end process forwards an application layer instruction to the backend process via a second communication path. The instruction passes down the VM stack, across a virtual secure network link, up the host stack, and to the backend process.
Information query
