公开(公告)号：US20200089588A1

公开(公告)日：2020-03-19

申请号：US16691148

申请日：2019-11-21

Applicant: VMware, Inc.

Inventor： Daniel Muller ,  Andrei Warkentin

IPC: G06F11/26 ,  G06F11/22 ,  G06F9/4401 ,  G06F11/07 ,  G06F11/30

Abstract: Negative path testing in a bootloader environment can include backing up a global state of a component under test, injecting a fault to trigger an error in the component under test in a bootloader environment, executing error handling instructions until a checkpoint of the component under test in the bootloader environment is reached, restoring the global state to the component under test from the backup, and restarting the component under test.

公开(公告)号：US10754952B2

公开(公告)日：2020-08-25

申请号：US16042338

申请日：2018-07-23

Applicant: VMware, Inc.

Inventor： Daniel Muller ,  Samyuktha Subramanian ,  Mukund Gunti

IPC: G06F21/57 ,  G06F21/64 ,  G06F21/12 ,  H04L9/32

Abstract: An example method of authenticating software executing in a computer system includes: receiving, from the computer system over a network at a server computer, a trusted platform module (TPM) quote, an event log, and a metadata database, the TPM quote provided by a TPM in the computer system, the event log including first checksums for the software executing in the computer system, and the metadata database including second checksums of binary files stored in packages from which the software is installed; establishing a root of trust in the computer system at the server computer based on the TPM quote and the event log; and determining, at the server computer in response to establishing the root of trust, integrity of the software executing in the computer system by comparing the first checksums with the second checksums.

公开(公告)号：US11138084B2

公开(公告)日：2021-10-05

申请号：US16691148

申请日：2019-11-21

Applicant: VMware, Inc.

Inventor： Daniel Muller ,  Andrei Warkentin

IPC: G06F11/00 ,  G06F11/26 ,  G06F9/4401 ,  G06F11/22 ,  G06F11/07 ,  G06F11/30

Abstract: Negative path testing in a bootloader environment can include backing up a global state of a component under test, injecting a fault to trigger an error in the component under test in a bootloader environment, executing error handling instructions until a checkpoint of the component under test in the bootloader environment is reached, restoring the global state to the component under test from the backup, and restarting the component under test.

公开(公告)号：US10853494B2

公开(公告)日：2020-12-01

申请号：US16042373

申请日：2018-07-23

Applicant: VMware, Inc.

Inventor： Samyuktha Subramanian ,  Daniel Muller ,  Mukund Gunti ,  Adrian Drzewiecki

IPC: G06F21/57 ,  G06F21/64 ,  H04L9/32 ,  G06F9/455 ,  G06F21/51

Abstract: An example method of authenticating software executing in a computer system includes verifying first software executing on the computer system, the software including a hypervisor, verifying second software executing in a virtual machine (VM) managed by the hypervisor, generating a binding key having public and private portions, signing an object to identifies the VM using the private portion of the binding key, and verifying a signature of the object using a public portion of the binding key.

公开(公告)号：US20190026203A1

公开(公告)日：2019-01-24

申请号：US15652363

申请日：2017-07-18

Applicant: VMware, Inc.

Inventor： Daniel Muller ,  Andrei Warkentin

IPC: G06F11/26 ,  G06F9/44 ,  G06F11/22

Abstract: Negative path testing in a bootloader environment can include backing up a global state of a component under test, injecting a fault to trigger an error in the component under test in a bootloader environment, executing error handling instructions until a checkpoint of the component under test in the bootloader environment is reached, restoring the global state to the component under test from the backup, and restarting the component under test.