公开(公告)号：US20230156006A1

公开(公告)日：2023-05-18

申请号：US18097638

申请日：2023-01-17

Applicant: VMware, Inc.

Inventor： Glen McCready ,  Ravishankar Chamarajnager ,  Greg Bollella ,  Muhammad Akbar ,  Michael Robert Jones

IPC: H04L9/40 ,  H04L9/32

CPC classification number: H04L63/10 ,  H04L63/02 ,  H04L63/101 ,  H04L63/166 ,  H04L9/32 ,  H04L63/08 ,  H04L41/046

Abstract: Disclosed are various examples for enrollment of gateway enrollment for Internet-of-Things (IoT) device management. In some examples, a client device receives a gateway management installation package from a management service. The client device installs a gateway management application to the gateway device using the installation package. Enrollment credentials are entered through a user interface generated using the gateway management application and shown on the client device. The client device instructs the gateway management application enroll the gateway device with the management service. Usage of the enrollment credentials prevents a user from being exposed to gateway credentials that authenticate communications between the gateway device and the management service.

公开(公告)号：US10728243B2

公开(公告)日：2020-07-28

申请号：US15873876

申请日：2018-01-17

Applicant: VMware, Inc.

Inventor： Muhammad Akbar ,  Adith Sudhakar

IPC: H04L29/06 ,  G06F9/455 ,  G06F8/60

Abstract: System and method for securely deploying a virtual machine in a data center is disclosed. In one embodiment, public keys are established between the requesting virtual machine and the deployed virtual machine, so that authentication and communication between the machines can occur using the public keys. In another embodiment, a secret private key is established between the requesting virtual machine and the deployed virtual machine using a password authenticated key exchange protocol. Authentication and communication between the machines is then established using the secret private key.

公开(公告)号：US11190513B2

公开(公告)日：2021-11-30

申请号：US15902321

申请日：2018-02-22

Applicant: VMware, Inc.

Inventor： Glen McCready ,  Ravishankar Chamarajnager ,  Greg Bollella ,  Muhammad Akbar ,  Michael Robert Jones

IPC: H04L29/06 ,  H04L9/32 ,  H04L12/24 ,  H04L29/08

Abstract: Disclosed are various examples for enrollment of gateway enrollment for Internet-of-Things (IoT) device management. In one example, enrollment credentials are generated that permit functionality limited to enrollment operations. A request to enroll a gateway with the management service is received. The request includes the enrollment credentials, and is received from the gateway. Gateway credentials are generated for authentication of the gateway with the management service. The gateway credentials are transmitted to an application executed by the gateway without being provided to the user by the application. The gateway is authenticated with the management service using the gateway credentials.

公开(公告)号：US11178141B2

公开(公告)日：2021-11-16

申请号：US16709913

申请日：2019-12-10

Applicant: VMware, Inc.

Inventor： Georgi L Lyubomirov Dimitrov ,  Muhammad Akbar ,  John Brezak ,  Andrew Gormley ,  Barry Gerhardt

IPC: H04L29/06 ,  G06N20/00 ,  G06F9/48

Abstract: The disclosure provides for authentication and/or authorization via persistable identity tokens, so an original identity provider (e.g., a user) does not need to be present upon initiating execution of a task. Examples include requesting a persistable token in exchange for a first live token. Based at least on the request for the persistable token complying with a first set of policies, receiving the persistable token. Based at least on a trigger event, requesting a second live token in exchange for the persistable token. Based at least on the request for the persistable token complying with a second set of policies, receiving the second live token. Based at least on receiving the second live token, initiating execution of a task using the second live token for authentication or authorization, wherein the execution of the task is contingent upon the authentication or authorization.

公开(公告)号：US11595392B2

公开(公告)日：2023-02-28

申请号：US17509285

申请日：2021-10-25

Applicant: VMware, Inc.

Inventor： Glen McCready ,  Ravishankar Chamarajnager ,  Greg Bollella ,  Muhammad Akbar ,  Michael Robert Jones

IPC: H04L29/06 ,  H04L9/40 ,  H04L9/32 ,  H04L41/046 ,  H04L41/28 ,  H04L41/22 ,  H04L67/562

Abstract: Disclosed are various examples for enrollment of gateway enrollment for Internet-of-Things (IoT) device management. In one example, the gateway device transmits an enrollment request to a management service. The enrollment request includes enrollment credentials that are entered through a user interface. The gateway device receives gateway credentials that authenticate communications with a management service. Subsequent communications transmitted from the gateway device to the management service are authenticated using the gateway credentials.

公开(公告)号：US10416986B2

公开(公告)日：2019-09-17

申请号：US15655205

申请日：2017-07-20

Applicant: VMware, Inc.

Inventor： Sudipto Mukhopadhyay ,  Muhammad Akbar

IPC: G06F8/65 ,  G06F21/44 ,  G06F21/10 ,  G06F8/61 ,  G06F21/57

Abstract: In a computer-implemented method for automating application updates in a virtual computing environment, an update script and a digital signature for the update script are received, where the update script comprises an application update for updating an application installed on the virtual computing environment. The digital signature of the update script is validated using a public key of the virtual computing environment. Provided the digital signature of the update script is validated, the update script is executed to update the application.

公开(公告)号：US20190230063A1

公开(公告)日：2019-07-25

申请号：US15902321

申请日：2018-02-22

Applicant: VMware, Inc.

Inventor： Glen McCready ,  Ravishankar Chamarajnager ,  Greg Bollella ,  Muhammad Akbar ,  Michael Robert Jones

IPC: H04L29/06 ,  H04L12/24 ,  H04L9/32

Abstract: Disclosed are various examples for enrollment of gateway enrollment for Internet-of-Things (IoT) device management. In one example, enrollment credentials are generated that permit functionality limited to enrollment operations. A request to enroll a gateway with the management service is received. The request includes the enrollment credentials, and is received from the gateway. Gateway credentials are generated for authentication of the gateway with the management service. The gateway credentials are transmitted to an application executed by the gateway without being provided to the user by the application. The gateway is authenticated with the management service using the gateway credentials.