公开(公告)号：US08826033B1

公开(公告)日：2014-09-02

申请号：US12644195

申请日：2009-12-22

申请人： Ajay Venkateshan Krishnaprasad ,  Parasuraman Narasimhan ,  Robert Polansky ,  Magnus Nyström

发明人： Ajay Venkateshan Krishnaprasad ,  Parasuraman Narasimhan ,  Robert Polansky ,  Magnus Nyström

IPC分类号： G06F21/22

CPC分类号： G06F21/53 ,  G06F21/554

摘要： A virtual machine on a physical host computer provides controlled access to protected data by creating and storing a “stored system fingerprint” from stable system values (SSVs) as existing when creating the stored system fingerprint. The SSVs include virtual-machine-specific values that change upon cloning the virtual machine (VM) but do not change upon migration of the VM. Upon a request for access to the protected data, a current system fingerprint is calculated from the SSVs as existing when processing the request, the current system fingerprint is compared to the stored system fingerprint to determine whether there is a predetermined degree of matching, and the requested access to the protected data is permitted only if there is the predetermined degree of matching.

摘要翻译： 物理主机上的虚拟机通过在创建存储的系统指纹时，从存在的稳定系统值（SSV）中创建并存储“存储的系统指纹”来提供受保护数据的受控访问。 SSV包括在克隆虚拟机（VM）时进行更改但在迁移VM时不会更改的虚拟机特定值。 在请求访问受保护的数据时，当处理请求时，从存在的SSV计算当前系统指纹，将当前系统指纹与存储的系统指纹进行比较，以确定是否存在预定的匹配度，并且 仅当存在预定匹配度时才允许对受保护数据的访问。