公开(公告)号：US09881159B1

公开(公告)日：2018-01-30

申请号：US14541791

申请日：2014-11-14

Applicant: Dell Software Inc.

Inventor： Jacqueline H. Wilson ,  Sajawal Haider ,  James C. Lowery ,  David Mortman

IPC: G06F21/57 ,  H04L29/06 ,  G06F21/64 ,  G06F21/62 ,  G06F9/455

CPC classification number: G06F21/57 ,  G06F9/50 ,  G06F21/33 ,  G06F21/629 ,  G06F21/64 ,  G06F2009/45587 ,  H04L63/0823 ,  H04L63/126 ,  H04L63/20

Abstract: In one embodiment, a method is executed by a computer system. The method includes receiving information related to a platform-portable workload, the information comprising a data security policy expressed as digitally signed metadata. The data security policy specifies one or more data security features that any platform executing the platform-portable workload should implement. The method further includes validating the digitally signed metadata as originating from an issuer of the platform-portable workload. In addition, the method includes, responsive to successful validation of the digitally signed metadata, automatically determining whether a particular platform can satisfy the data security policy based, at least in part, on a comparison of the digitally signed metadata with data security attributes of the particular platform. Further, the method includes, responsive to a determination that the particular platform cannot satisfy the data security policy, automatically preventing execution of the platform-portable workload on the particular platform.

公开(公告)号：US20170070536A1

公开(公告)日：2017-03-09

申请号：US14845756

申请日：2015-09-04

Applicant: Dell Software, Inc.

Inventor： David Mortman

IPC: H04L29/06

CPC classification number: H04L63/20 ,  H04L41/0893

Abstract: A system, method, and computer-readable medium are disclosed for performing a cloud environment governance policy operation which provides a governance policy framework for use within cloud environments. In various embodiments, the cloud environment governance policy operation expands identify access management (IAM) systems to understand not only users but also resources. Additionally, in various embodiments, the cloud environment governance policy operation provides governance packs to abstract cloud resources and compliance/governance/regulatory regimes via a common open language.

Abstract translation: 公开了一种用于执行云环境治理策略操作的系统，方法和计算机可读介质，该操作提供了在云环境中使用的治理策略框架。 在各种实施例中，云环境治理策略操作扩展了识别访问管理（IAM）系统，以便不仅了解用户而且了解资源。 此外，在各种实施例中，云环境治理策略操作提供治理包，以通过通用的开放语言来抽象云资源和合规性/治理/监管机制。

公开(公告)号：US10140159B1

公开(公告)日：2018-11-27

申请号：US15061241

申请日：2016-03-04

Applicant: Dell Software Inc.

Inventor： James Albert Thomason ,  David Mortman ,  Campbell McNeill

IPC: G06F9/455 ,  G06F9/50

Abstract: In one embodiment, a method is performed by a computer system. The method includes determining a base state of a particular container, wherein the base state is represented by a base image. The method further includes determining a target state of the particular container, wherein the target state is represented by a deployment of the particular container. In addition, the method includes determining a set of commands to transition from the base state to the target state. Further, the method includes generating a manifest for the target state of the particular container, the manifest comprising the determined set of commands to reach the target state.

公开(公告)号：US10270841B1

公开(公告)日：2019-04-23

申请号：US15061260

申请日：2016-03-04

Applicant: Dell Software Inc.

Inventor： James Albert Thomason ,  David Mortman ,  Campbell McNeill

IPC: G06F15/173 ,  H04L29/08 ,  H04L12/911 ,  G06F9/50 ,  G06F9/455 ,  H04L29/06

Abstract: In one embodiment, a method includes receiving a trigger to deploy a particular container on cloud resources accessible thereto such that the cloud resources are provided by a plurality of cloud providers and such that the computer system and the plurality of cloud providers are configured to negotiate container deployment using an information exchange protocol. The information exchange protocol includes a preconfigured inquiry format and a preconfigured inquiry-response format. The method further includes generating a performance inquiry in relation to the particular container. In addition, the method includes transmitting the performance inquiry to the plurality of cloud providers. Moreover, the method includes receiving inquiry responses from at least some of the plurality of cloud providers. Additionally, the method includes causing the particular container to be deployed on resources of the particular cloud provider.

公开(公告)号：US10127030B1

公开(公告)日：2018-11-13

申请号：US15061209

申请日：2016-03-04

Applicant: Dell Software Inc.

Inventor： David Mortman ,  Campbell McNeill

IPC: G06F8/61 ,  H04L9/32

Abstract: In one embodiment, a method is performed by a computer system. The method includes receiving a request to execute a particular container. The method further includes retrieving a manifest of the particular container from a data store, the manifest indicating a plurality of items included in the particular container. In addition, the method includes validating one or more signatures of the container that are associated with the items indicated in the manifest. Also, the method includes determining an execution context of the request. Further, the method includes accessing an applicable execution policy for the determined execution context. Additionally, the method includes, responsive to a determination that the applicable execution policy is satisfied, causing the particular container to be installed on a target resource.