公开(公告)号：US20170223010A1

公开(公告)日：2017-08-03

申请号：US15488067

申请日：2017-04-14

Applicant: VMware, Inc.

Inventor： Anthony J. WILKINSON ,  Per Olov LARSSON ,  Ashley NUTTALL ,  Hans CHRISTENSON ,  Tom ELLIOTT ,  Steven SIGEL ,  Adam GROSS

IPC: H04L29/06

CPC classification number: H04L63/0815 ,  G06F21/335 ,  G06F21/34 ,  G06F21/41 ,  G06F21/445 ,  G06F2009/45587 ,  H04L9/3226 ,  H04L9/3234 ,  H04L9/3263 ,  H04L9/3273 ,  H04L63/0428 ,  H04L63/0807 ,  H04L63/0823 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/0884 ,  H04L63/10 ,  H04L2209/56

Abstract: A user accesses a remote session, the connection to which is managed by a connection broker, according to a single sign-on (SSO) process. The SSO process includes the user entering his or her credentials and being authenticated to the connection broker. In addition to user authentication, the SSO process includes connection broker authentication to confirm that the connection broker is trustworthy. When the connection broker is authenticated, the user credentials are transmitted to the connection broker in a secure manner and the connection broker forwards them onto a machine hosting the remote session so that the user can be logged into the remote session without entering his or her credentials again.

公开(公告)号：US20190018697A1

公开(公告)日：2019-01-17

申请号：US15648433

申请日：2017-07-12

Applicant: VMware, Inc.

Inventor： Per Olov LARSSON

IPC: G06F9/455 ,  G06F9/44 ,  G06F21/41 ,  H04L29/06

CPC classification number: G06F9/45558 ,  G06F9/452 ,  G06F21/31 ,  G06F21/335 ,  G06F21/34 ,  G06F21/41 ,  H04L63/0807 ,  H04L63/0815 ,  H04L63/0823 ,  H04L63/083

Abstract: A hybrid account logon is disclosed for logging into remote desktops. In one embodiment, the hybrid logon combines local and domain accounts by building a local primary access token which provides credentials for local and domain-based accounts. In one embodiment, a credentials provider creates a serialized structure including both local account information and domain credentials and sends the serialized structure to a logon user interface (UI) process. The logon UI process calls a user authentication service that itself calls a hybrid authentication package which performs a domain logon, discards any identity associated with the domain logon session, and builds a local identity for the local account. The user authentication service then generates a primary access token including the local identity and the domain logon session data, thereby supporting interactive logon based on the local user identity which is also linked to network credentials for use in accessing network resources.

公开(公告)号：US20160055017A1

公开(公告)日：2016-02-25

申请号：US14615374

申请日：2015-02-05

Applicant: VMware, Inc.

Inventor： Daniel James BEVERIDGE ,  Blake WATTS ,  Per Olov LARSSON ,  Banit AGRAWAL ,  Hui LI

IPC: G06F9/455 ,  H04L29/06

CPC classification number: H04L63/10 ,  G06F9/455 ,  G06F9/45558 ,  G06F9/5016 ,  G06F9/52 ,  G06F2009/45562 ,  G06F2009/45575 ,  G06F2009/45583

Abstract: Examples described herein enable memory state sharing among a plurality of virtual machines (VM) including a parent VM and a child VM. A request for memory state sharing between the parent VM and the child VM is received, and the parent VM is suspended. The child VM resumes execution of one or more suspended applications. In one example, the child FM is forked with pre-loaded, suspended applications from the parent VM. Aspects of the disclosure offer a high performance, resource efficient solution that outperforms traditional approaches in areas of software compatibility, stability, quality of service control, re-source utilization, and more.

Abstract translation: 本文描述的示例使得能够在包括父VM和子VM的多个虚拟机（VM）之间进行存储器状态共享。 接收到父虚拟机与子虚拟机之间的内存状态共享请求，父虚拟机被挂起。 子VM恢复执行一个或多个挂起的应用程序。 在一个示例中，子FM通过父VM的预加载，挂起的应用程序进行分支。 本公开的方面提供了在软件兼容性，稳定性，服务质量控制，资源利用等方面优于传统方法的高性能，高效率的解决方案。

公开(公告)号：US20150200932A1

公开(公告)日：2015-07-16

申请号：US14587923

申请日：2014-12-31

Applicant: VMware, Inc.

Inventor： Anthony WILKINSON ,  Per Olov LARSSON ,  Ashley NUTTALL ,  Hans CHRISTENSON ,  Tom ELLIOTT ,  Steven SIGEL ,  Adam GROSS

IPC: H04L29/06

CPC classification number: H04L63/0815 ,  G06F21/335 ,  G06F21/34 ,  G06F21/41 ,  G06F21/445 ,  G06F2009/45587 ,  H04L9/3226 ,  H04L9/3234 ,  H04L9/3263 ,  H04L9/3273 ,  H04L63/0428 ,  H04L63/0807 ,  H04L63/0823 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/0884 ,  H04L63/10 ,  H04L2209/56

Abstract: A user accesses a remote session, the connection to which is managed by a connection broker, according to a single sign-on (SSO) process. The SSO process includes the user entering his or her credentials and being authenticated to the connection broker. In addition to user authentication, the SSO process includes connection broker authentication to confirm that the connection broker is trustworthy. When the connection broker is authenticated, the user credentials are transmitted to the connection broker in a secure manner and the connection broker forwards them onto a machine hosting the remote session so that the user can be logged into the remote session without entering his or her credentials again.

Abstract translation: 根据单点登录（SSO）进程，用户访问远程会话，由连接代理管理的连接。 SSO进程包括用户输入他或她的凭据并被认证给连接代理。 除了用户身份验证之外，SSO进程还包括连接代理身份验证，以确认连接代理是值得信赖的。 当连接代理被认证时，用户凭证以安全的方式传送到连接代理，并且连接代理将它们转发到托管远程会话的机器上，以便用户可以登录远程会话而不输入他或她的凭证 再次。