公开(公告)号：US11611540B2

公开(公告)日：2023-03-21

申请号：US16918760

申请日：2020-07-01

Applicant: VMware, Inc.

Inventor： Michal A. Jankowski ,  Benjamin J. Corrie ,  George Hicken ,  Christian Lita

IPC: H04L29/06 ,  H04L29/08 ,  H04L15/16 ,  G06F15/16 ,  G06F9/455 ,  G06F9/50 ,  G06F21/62 ,  H04L9/32 ,  H04L9/40 ,  H04L67/1097

Abstract: This disclosure describes a process for securely instantiating a virtual machine on a server cluster. The virtual machine just after instantiation has access to persistent storage that includes an encrypted region and lacks access to an encryption key configured to provide access to data stored within the encrypted region. The virtual machine receives a communication from a management server associated with the server cluster that includes the encryption key configured to provide access to the data stored within the encrypted region. After the virtual machine receives the encryption key, the server cluster runs services that depend upon the data stored within the encrypted region to operate after receiving the communication from the management server.

公开(公告)号：US11595379B2

公开(公告)日：2023-02-28

申请号：US16918709

申请日：2020-07-01

Applicant: VMware, Inc.

Inventor： Michal A. Jankowski ,  Mark Johnson ,  Fanny Strudel ,  Zachary James Shepherd

IPC: H04L9/40

Abstract: This disclosure describes a computer implemented method for receiving authentication credentials identifying a user; identifying computing systems for which the user is authorized access to; and transmitting tokens granting access to the identified computing systems. In some embodiments, no two tokens of the transmitted tokens grants access to the same one of the identified computing systems. The user typically has access to a management tool configured to manage the transmission of the received tokens to the corresponding computing systems, thereby granting the user the ability to have seamless access to any of the computing systems associated with the user's authenticated identity.