公开(公告)号：US11593139B2

公开(公告)日：2023-02-28

申请号：US16838663

申请日：2020-04-02

Applicant: VMware, Inc.

Inventor： Derek William Beard ,  Brian Charles Forney ,  Mark Russell Johnson ,  Zachary James Shepherd

IPC: G06F9/455 ,  G06F8/65

Abstract: An example method of checking compatibility of a guest cluster executing as a virtual extension of a host cluster having an orchestration control plane managing the guest cluster, the host cluster being part of a software defined data center (SDDC), is described. The method includes: receiving, at the orchestration control plane, a guest cluster infrastructure software (GCIS) compatibility document that specifies what a GCIS of the orchestration control plane requires and offers; receiving a request for a compatibility check on the guest cluster with respect to the GCIS; obtaining, at the orchestration control plane in response to the request, an SDDC compatibility documents for the SDDC and a guest cluster compatibility document for the guest cluster; computing, at the orchestration control plane, the compatibility check in response to the GCIS compatibility document, the SDDC compatibility document, and the guest cluster compatibility document; and transmitting a result of the compatibility check from the orchestration control plane to a virtual infrastructure (VI) control plane of the SDDC.

公开(公告)号：US11556373B2

公开(公告)日：2023-01-17

申请号：US16924719

申请日：2020-07-09

Applicant: VMware, Inc.

Inventor： Zachary James Shepherd ,  Derek William Beard ,  Mark Russell Johnson

IPC: G06F9/455 ,  G06F9/445

Abstract: An example virtualized computing system includes a host cluster having hosts and a virtualization layer executing on hardware platforms of the hosts, the virtualization layer supporting execution of virtual machines (VMs), the VMs including pod VMs, the pod VMs including container engines supporting execution of containers in the pod VMs; and an orchestration control plane integrated with the virtualization layer, the orchestration control plane including a master server configured to manage the pod VMs and first VMs of the VMs. The virtualized computing system further includes a guest cluster executing in the first VMs and managed by the orchestration control plane, the guest cluster including a guest master server configured to, in cooperation with the master server, deploy first pods in the pod VMs.

公开(公告)号：US11422846B2

公开(公告)日：2022-08-23

申请号：US16933823

申请日：2020-07-20

Applicant: VMware, Inc.

Inventor： Yanping Cao ,  Zachary James Shepherd ,  Mark Russell Johnson

IPC: G06F9/455 ,  G06F21/31 ,  G06F8/61

Abstract: A virtualized computing system according to an example includes: a host cluster having hosts and a virtualization layer executing on hardware platforms of the hosts, the virtualization layer supporting execution of virtual machines (VMs); a container image registry configured to manage container images for deploying containers in the host cluster; an orchestration control plane integrated with the virtualization layer, the orchestration control plane including a master server executing in a first VM of the VMs, the master server configured to manage image secrets based on accounts in the container image registry; and a guest cluster, managed by the orchestration control plane and executing in second VMs of the VMs, the guest cluster configured to receive the image secrets from the master server and access the container image registry using the image secrets.

公开(公告)号：US11822949B2

公开(公告)日：2023-11-21

申请号：US16838638

申请日：2020-04-02

Applicant: VMware, Inc.

Inventor： Zachary James Shepherd ,  Derek William Beard ,  George Gregory Hicken ,  Mark Russell Johnson ,  Jared Sean Rosoff ,  Joseph Stephen Beda ,  Konstantinos Roussos

IPC: G06F9/455 ,  G06F9/50

CPC classification number: G06F9/45558 ,  G06F9/5077 ,  G06F2009/45595

Abstract: An example virtualized computing system includes: a host cluster having hosts and a virtualization layer executing on hardware platforms of the hosts, the virtualization layer supporting execution of virtual machines (VMs); an orchestration control plane integrated with the virtualization layer, the orchestration control plane including a master server executing in a first VM of the VMs; guest cluster infrastructure software (GCIS) executing in the master server, the GCIS configured to create a set of objects defining a container orchestration cluster, and manage lifecycles of second VMs of the VMs based on state of the set of objects; and guest software executing in the second VMs to implement the container orchestration cluster as a guest cluster of the host cluster, the guest software having components that interface with the GCIS.

公开(公告)号：US11595379B2

公开(公告)日：2023-02-28

申请号：US16918709

申请日：2020-07-01

Applicant: VMware, Inc.

Inventor： Michal A. Jankowski ,  Mark Johnson ,  Fanny Strudel ,  Zachary James Shepherd

IPC: H04L9/40

Abstract: This disclosure describes a computer implemented method for receiving authentication credentials identifying a user; identifying computing systems for which the user is authorized access to; and transmitting tokens granting access to the identified computing systems. In some embodiments, no two tokens of the transmitted tokens grants access to the same one of the identified computing systems. The user typically has access to a management tool configured to manage the transmission of the received tokens to the corresponding computing systems, thereby granting the user the ability to have seamless access to any of the computing systems associated with the user's authenticated identity.

公开(公告)号：US09213859B2

公开(公告)日：2015-12-15

申请号：US14549269

申请日：2014-11-20

Applicant: VMware, Inc.

Inventor： Steven Henry Strassmann ,  Zachary James Shepherd

IPC: H04L29/06 ,  G06F21/62 ,  G06F21/60 ,  H04L29/08

CPC classification number: G06F21/6218 ,  G06F21/60 ,  G06F21/6263 ,  H04L63/0281 ,  H04L63/0428 ,  H04L63/101 ,  H04L63/168 ,  H04L67/2871

Abstract: Systems and methods for obfuscating user data in a remote web-based application are disclosed. According to one method, user inputs to a displayed web page of the remote web-based application are received at a first web browser that is used by the user, wherein at least a portion of the user inputs comprise user-inputted data intended to be stored at the web-based application. The user inputs are transmitted to a management component that is configured to interact with a second web browser that communicates with the web-based application. The management component obfuscates at least a portion of the user-inputted data and forwards the obfuscated and un-obfuscated portions of the user inputs to the second web browser, which correspondingly transmits the obfuscated and un-obfuscated portions of the user inputs to the remote web-based application.

Abstract translation: 公开了用于在远程基于Web的应用中模糊用户数据的系统和方法。 根据一种方法，在用户使用的第一网络浏览器处接收到对远程基于Web的应用的显示网页的用户输入，其中用户输入的至少一部分包括用户输入的数据， 存储在基于Web的应用程序。 用户输入被传送到被配置为与与基于web的应用程序通信的第二web浏览器进行交互的管理组件。 管理组件使至少一部分用户输入的数据模糊，并将用户输入的模糊和未混淆的部分转发到第二网络浏览器，第二网络浏览器将用户输入的模糊和未混淆的部分相应地发送到远程 基于Web的应用程序。

公开(公告)号：US08910297B2

公开(公告)日：2014-12-09

申请号：US13734240

申请日：2013-01-04

Applicant: VMware, Inc.

Inventor： Steven Henry Strassmann ,  Zachary James Shepherd

IPC: H04L29/06 ,  G06F21/60 ,  H04L29/08

CPC classification number: G06F21/6218 ,  G06F21/60 ,  G06F21/6263 ,  H04L63/0281 ,  H04L63/0428 ,  H04L63/101 ,  H04L63/168 ,  H04L67/2871

Abstract: Systems and methods for obfuscating user data in a remote web-based application are disclosed. According to one method, user inputs to a displayed web page of the remote web-based application are received at a first web browser that is used by the user, wherein at least a portion of the user inputs comprise user-inputted data intended to be stored at the web-based application. The user inputs are transmitted to a management component that is configured to interact with a second web browser that communicates with the web-based application. The management component obfuscates at least a portion of the user-inputted data and forwards the obfuscated and un-obfuscated portions of the user inputs to the second web browser, which correspondingly transmits the obfuscated and un-obfuscated portions of the user inputs to the remote web-based application.

Abstract translation: 公开了用于在远程基于Web的应用中模糊用户数据的系统和方法。 根据一种方法，在用户使用的第一网络浏览器处接收到对远程基于Web的应用的显示网页的用户输入，其中用户输入的至少一部分包括用户输入的数据， 存储在基于Web的应用程序。 用户输入被传送到被配置为与与基于web的应用程序通信的第二web浏览器进行交互的管理组件。 管理组件使至少一部分用户输入的数据模糊，并将用户输入的模糊和未混淆的部分转发到第二网络浏览器，第二网络浏览器将用户输入的模糊和未混淆的部分相应地发送到远程 基于Web的应用程序。