Multiple trusted computing environments
First Claim
1. A method for providing a trusted computing environment, comprising the steps of:
- (a) providing a host operating system;
(b) obtaining an integrity metric for the host operating system;
(c) providing a computing environment including a guest operating system; and
(d) obtaining an integrity metric for the computing environment.
3 Assignments
0 Petitions
Accused Products
Abstract
A computing platform 20 provides multiple computing environments 24 each containing a guest operating system 25 provided by a virtual machine application 26. Optionally, each computing environment 24 is formed in a compartment 220 of a compartmented host operating system 22. A trusted device 213 verifies that the host operating system 22 and each guest operating system 25 operates in a secure and trusted manner by forming integrity metrics which can be interrogated by a user 10. Each computing environment is isolated and secure, and can be verified as trustworthy independent of any other computing environment.
-
Citations
29 Claims
-
1. A method for providing a trusted computing environment, comprising the steps of:
-
(a) providing a host operating system;
(b) obtaining an integrity metric for the host operating system;
(c) providing a computing environment including a guest operating system; and
(d) obtaining an integrity metric for the computing environment. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 24, 25, 27, 28, 29)
-
-
23. A method for verifying integrity of a trusted computing environment amongst many on a single host computing platform running a host operating system, each computing environment comprising a guest operating system running on the host operating system, the method comprising the steps of:
-
(a) identifying the computing environment;
(b) supplying an integrity metric of the host operating system; and
(c) supplying an integrity metric associated with the identified computing environment.
-
-
26. A computing platform, comprising:
-
a host operating system;
a plurality of computing environments each comprising a guest operating system running on the host operating system; and
a trusted device for obtaining an integrity metric of the host operating system and an integrity metric of each computing environment.
-
Specification