Capacity on Demand Computer Resources
First Claim
1. A computing system supporting capacity-on-demand resources comprising:
- a plurality of server modules supporting computing tasks, each server module having a computing resource that is selectively operational;
a controller having a first processor, the controller operable to perform system management functions for one or more server modules of the plurality of sever modules;
a secure management unit coupled to the controller for locally managing authorized use of the computing resource of a respective server module of the plurality of server modules, the service management unit comprising;
a cryptographic unit that decodes an activation signal including a designation for an identified server module of the plurality of server module and a time period for authorizing use of the identified server module;
a clock;
a second processor coupled to the cryptographic unit and the clock; and
an enforcement mechanism coupled to the second processor for authorizing the use of the computing resource of the identified server module for the time period, responsive to the activation signal and after qualification of the activation signal by the cryptographic unit.
2 Assignments
0 Petitions
Accused Products
Abstract
A security module manages authorization of additional computing resources, either additional processing power in a server, or additional servers in a server enclosure responsive to an authorized message. The authorized message may be generated at a management node and may include a provisioning license for use by the security module to set a duration for use of the additional computing resources. A baseboard management controller may be house the security module or each controllable resource may house an associated security module. The baseboard management controller may store the authorized message when the security module is not active and forward the message after the security module has been activated.
63 Citations
20 Claims
-
1. A computing system supporting capacity-on-demand resources comprising:
-
a plurality of server modules supporting computing tasks, each server module having a computing resource that is selectively operational; a controller having a first processor, the controller operable to perform system management functions for one or more server modules of the plurality of sever modules; a secure management unit coupled to the controller for locally managing authorized use of the computing resource of a respective server module of the plurality of server modules, the service management unit comprising; a cryptographic unit that decodes an activation signal including a designation for an identified server module of the plurality of server module and a time period for authorizing use of the identified server module; a clock; a second processor coupled to the cryptographic unit and the clock; and an enforcement mechanism coupled to the second processor for authorizing the use of the computing resource of the identified server module for the time period, responsive to the activation signal and after qualification of the activation signal by the cryptographic unit. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of controlling selective activation of resources in a computing environment for a predetermined duration of time:
-
disposing a controllable resource in the computing environment; disposing a controller in the computing environment, the controller operable to activate and deactivate the controllable resource; disposing an security module in the computing environment, the security module being tamper-resistant; receiving a request for activating the controllable resource, the request specifying the controllable resource and a duration for activating the controllable resource; forwarding the request to the security module; sending an activation signal from the security module; activating the controllable resource via the security module; and sending a deactivation signal from the security module to the controller at the expiration of the duration for activating the resource. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method of locally managing server resources in a system with a plurality of servers controlled, a baseboard management controller for managing each of the plurality of servers, and a security module adapted to securely decode provisioning messages and coupled to the baseboard management controller, the method comprising:
-
receiving a provisioning message comprising an identifier corresponding a selected server of the plurality of servers and a duration corresponding to an operation period for the selected server; cryptographically authenticating the provisioning message at the security module; sending an activate message from the security module to the baseboard management controller to activate the selected server; maintaining a time measurement at the security module corresponding to the operation period specified in the provisioning message; sending a deactivate message from the security module to the baseboard management controller to deactivate the selected server at the end of the operation period. - View Dependent Claims (20)
-
Specification