Method and system to support a trusted set of operational environments using emulated trusted hardware
First Claim
Patent Images
1. A method, comprising:
- loading a virtual machine monitor (“
VMM”
) to support a virtual machine (“
VM”
) session;
loading the VM session;
loading an operating system (“
OS”
) into the VM session; and
emulating a trusted platform module (“
TPM”
) to hold a key associated with the VM session and to execute trusted operations.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system to emulate a trusted platform module to execute trusted operations. A virtual machine monitor is executed to support a virtual machine session. An operating system is loaded into the virtual machine session. The trusted platform module is emulated to hold a key associated with the virtual session and to execute trusted operations.
170 Citations
30 Claims
-
1. A method, comprising:
-
loading a virtual machine monitor (“
VMM”
) to support a virtual machine (“
VM”
) session;
loading the VM session;
loading an operating system (“
OS”
) into the VM session; and
emulating a trusted platform module (“
TPM”
) to hold a key associated with the VM session and to execute trusted operations. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A machine-accessible medium that provides instructions that, if executed by a machine, will cause the machine to perform operations comprising:
-
executing a virtual machine monitor (“
VMM”
) to support a virtual machine (“
VM”
) session;
executing the VM session;
executing an operating system (“
OS”
) within the VM session; and
emulating a trusted platform module (“
TPM”
) to hold a key associated with the VM session, the VMM to prevent unauthorized access to the key. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
-
21. A system, comprising:
-
a processor to execute a virtual machine monitor (“
VMM”
) to support a virtual machine (“
VM”
) session;
system memory communicatively coupled to the processor; and
a data storage unit (“
DSU”
) communicatively coupled to the processor and the system memory and having the VMM and an emulated trusted platform module (“
TPM”
) stored therein, the processor coupled to load the VMM from the DSU into the system memory, the VM session to support an operating system (“
OS”
) therein, the emulated TPM to execute trusted operations. - View Dependent Claims (22, 23, 24, 25, 26)
-
-
27. A chassis, comprising:
-
a management module;
a plurality of blades mounted within the chassis and communicatively coupled to the management module, the plurality of blades each including a data storage unit (“
DSU”
) having stored therein an emulated trusted platform module (“
TPM”
) to hold a key; and
a switch communicatively coupled to the management module and the plurality of blades, the switch to provide the plurality of blades access to a network domain, the switch to deny access to the network domain, if one of the plurality of blades is determined to be untrustworthy based on the key. - View Dependent Claims (28, 29, 30)
-
Specification