公开(公告)号：US11934857B2

公开(公告)日：2024-03-19

申请号：US17323004

申请日：2021-05-18

Applicant: VMWARE, INC.

Inventor： Goresh Musalay ,  Sachin Shinde ,  Zubraj Singha ,  Tanay Ganguly ,  Kashish Bhatia

IPC: G06F9/455

CPC classification number: G06F9/45558 ,  G06F2009/45579

Abstract: Example methods are provided to identify unused memory regions in pages that are allocated for storing executable code. One or more of the unused memory regions are usable as a secure location to store confidential information shared between a hypervisor on the host and a guest (such as a guest virtual computing instance) that runs on the host. The one or more unused memory regions may also be used to store executable code (such as valid executable code of antivirus software or other security program) that has been prevented/delayed in its execution by malicious code that has occupied the pages, thereby providing the executable code with sufficient memory resources to enable the executable code to at least partially complete execution.

公开(公告)号：US11645390B2

公开(公告)日：2023-05-09

申请号：US16871088

申请日：2020-05-11

Applicant: VMWARE, INC.

Inventor： Shirish Vijayvargiya ,  Vasantha Kumar Dhanasekar ,  Sachin Shinde ,  Rayanagouda Bheemanagouda Patil

IPC: G06F21/56 ,  G06F11/30 ,  G06F9/455 ,  G06F21/60

CPC classification number: G06F21/566 ,  G06F9/45558 ,  G06F11/301 ,  G06F11/3041 ,  G06F21/602 ,  G06F2009/45579 ,  G06F2009/45587

Abstract: A next generation antivirus (NGAV) security solution in a virtualized computing environment includes a security sensor at a virtual machine that runs on a host and a security engine remote from the host. The integrity of the NGAV security solution is increased, by providing a verification as to whether a verdict issued by the security engine has been successfully enforced by the security sensor to prevent execution of malicious code at the virtual machine.

公开(公告)号：US11182472B2

公开(公告)日：2021-11-23

申请号：US16588614

申请日：2019-09-30

Applicant: VMware, Inc.

Inventor： Nakul Ogale ,  Shirish Vijayvargiya ,  Sachin Shinde

IPC: G08B23/00 ,  G06F12/16 ,  G06F12/14 ,  G06F11/00 ,  G06F21/52 ,  G06N20/00

Abstract: A process monitoring methodology is disclosed. In a computer-implemented method, a selection of a process to be monitored is received. The process is to be at least partially performed using a component of a computing environment. An expected operating parameter of the process is determined. The process is also monitored to determine an actual operating parameter of the process. The actual operating parameter of the process is compared with the expected operating parameter of the process to generate a comparison result. An operation is then automatically performed based upon the comparison result.

公开(公告)号：US10855644B1

公开(公告)日：2020-12-01

申请号：US16660835

申请日：2019-10-23

Applicant: VMWARE, INC.

Inventor： Shirish Vijayvargiya ,  Sachin Shinde ,  Nakul Ogale ,  Vasantha Kumar Dhanasekar

IPC: G06F15/16 ,  H04L29/12 ,  H04L29/06

Abstract: In some embodiments, a method receives one or more address resolution mappings and sends the one or more first address resolution mappings to a manager for verification of the one or more first address resolution mappings. The method receives one or more responses based on the verification of the one or more first address resolution mappings and allows or disallows use of the one or more address resolution mappings based on the one or more responses. A list of verified address resolution mappings is received from the manager based on the verification of the one or more first address resolution mappings. Then, the method receives a second address resolution mapping and verifies the second address resolution mapping using the list of verified address resolution mappings.