Invention Grant
- Patent Title: Trusted computing base evidence binding for a migratable virtual machine
- Patent Title (中): 可迁移虚拟机的可信计算基础证据绑定
-
Application No.: US14554467Application Date: 2014-11-26
-
Publication No.: US09461994B2Publication Date: 2016-10-04
- Inventor: Mark E. Scott-Nash , Annapurna Dasari , Willard M. Wiseman
- Applicant: Intel Corporation
- Applicant Address: US CA Santa Clara
- Assignee: Intel Corporation
- Current Assignee: Intel Corporation
- Current Assignee Address: US CA Santa Clara
- Agency: Trop, Pruner & Hu, P.C.
- Main IPC: H04L9/32
- IPC: H04L9/32 ; H04L29/06
Abstract:
In an embodiment, at least one computer readable medium has instructions stored thereon for causing a system to cryptographically sign, at a secure platform services enclave (PSE) of a computing system and using a secure attestation key (SGX AK), a public portion of a trusted platform module attestation key (TPM AK) associated with a trusted computing base of a physical platform, to form a certified TPM AK public portion. Also included are instructions to store the certified TPM AK public portion in the PSE, and instructions to, responsive to an attestation request received from a requester at a virtual trusted platform module (vTPM) associated with a virtual machine (VM) that has migrated onto the physical platform, provide to the requester the certified TPM AK public portion stored in the PSE. Other embodiments are described and claimed.
Public/Granted literature
- US20160149912A1 Trusted Computing Base Evidence Binding for a Migratable Virtual Machine Public/Granted day:2016-05-26
Information query
