COMPUTER SYSTEM
First Claim
1. A computer system comprising:
- processing hardware that defines an OS security level and at least a first additional security level above the OS security level;
a first guest operating system;
a controller kernel running on the processing hardware, with the controller kernel being programmed to allow the first guest operating system exchange instructions with the processing hardware through the controller kernel at the OS security level.
3 Assignments
0 Petitions
Accused Products
Abstract
The present invention is directed to computer systems, methods and/or hardware where one or more guest operating systems exchange instructions with the processing hardware (see DEFINITIONS section) through a controller kernel. Even though the instructions are exchanged through the controller kernel, rather than directly between the OS and the processing hardware, the controller kernel does not change the instructions out of native form. The controller kernel refrains from virtualizing or emulating the instructions. For this reason, the controller kernel cannot be considered to be and/or include middleware, a hypervisor or VMM. The use of the controller kernel can be helpful in computer systems with multiple guest OS'"'"'s because it allows multiple containerized OS'"'"'s to simultaneously run on a single set of processing hardware. For example, the multiple containerized OS'"'"'s can be used to run multiple terminals. The use of the controller kernel may also be useful even if there is a single guest operating system. For example, a LINUX controller kernel has been found to speed up the operation of the Windows Vista operating system running as the guest OS, relative to the speed of Windows Vista running directly on the same processing hardware in the conventional way.
136 Citations
46 Claims
-
1. A computer system comprising:
-
processing hardware that defines an OS security level and at least a first additional security level above the OS security level; a first guest operating system; a controller kernel running on the processing hardware, with the controller kernel being programmed to allow the first guest operating system exchange instructions with the processing hardware through the controller kernel at the OS security level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 9, 10)
-
-
11. A computer comprising:
-
processing hardware that defines an OS security level and at least a first additional security level above the OS security level; a first memory portion programmed with a first guest operating system; a controller memory portion programmed with a controller kernel running on the processing hardware, with the controller kernel being programmed to allow the first guest operating system exchange instructions with the processing hardware through the controller kernel at the OS security level.
-
-
12. A method comprising the steps of:
-
providing a computer system comprising; processing hardware that defines an OS security level and at least a first additional security level above the OS security level, a first guest operating system, and a controller kernel; running the controller kernel on the processing hardware; exchanging instructions through the controller kernel between the first guest operating system and the processing hardware at the OS security level.
-
-
13. A computer system comprising:
-
processing hardware that defines an OS security level and at least a first additional security level above the OS security level; a first guest operating system; a second guest operating system, with the first guest operating system and the second guest operating system being containerized with respect to each other; and a controller kernel running on the processing hardware, with the controller kernel being programmed to perform cycles including at least; a first cycle portion when the first guest operating system exchanges instructions with the processing hardware at the OS security level through the controller kernel, and a second cycle portion when the second guest operating system exchanges instructions with the processing hardware at the OS security level through the controller kernel. - View Dependent Claims (8, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. A computer comprising:
-
processing hardware that defines an OS security level and at least a first additional security level above the OS security level; a first memory portion programmed with a first guest operating system; a second memory portion programmed with a second guest operating system, with the first guest operating system and the second guest operating system being containerized with respect to each other; and a controller memory portion programmed with a controller kernel running on the processing hardware, with the controller kernel being programmed to perform cycles including at least; a first cycle portion when the first guest operating system exchanges instructions with the processing hardware at the OS security level through the controller kernel, and a second cycle portion when the second guest operating system exchanges instructions with the processing hardware at the OS security level through the controller kernel.
-
-
29. A method comprising the following steps:
-
providing a computer system comprising; processing hardware that defines an OS security level and at least a first additional security level above the OS security level, a first guest operating system, a second guest operating system, with the first guest operating system and the second guest operating system being containerized with respect to each other, and a controller kernel; running cycles by the controller kernel, with each cycle including the following sub-steps; during a first cycle portion, exchanging instructions between the first guest operating system and the processing hardware at the OS security level through the controller kernel, and during a second cycle portion, exchanging instructions between the second guest operating system and the processing hardware at the OS security level through the controller kernel.
-
-
30. A computer system comprising:
-
processing hardware; a first guest operating system; a second guest operating system, with the first guest operating system and the second guest operating system being containerized with respect to each other; a controller kernel programmed to control the exchange of instructions between the first guest operating system and the processing hardware and the exchange of instructions between the second operating systems and the processing hardware; a first terminal hardware set controlled by the first guest operating system, with the first terminal hardware set in the form of an ultra thin terminal; and a second terminal hardware set controlled by the second guest operating system, with the second terminal hardware set in the form of an ultra thin terminal. - View Dependent Claims (31, 32, 33, 34, 35, 36, 37, 38)
-
-
39. A computer comprising:
-
processing hardware; a first memory portion programmed with a first guest operating system; a second memory portion programmed with a second guest operating system, with the first guest operating system and the second guest operating system being containerized with respect to each other; a controller memory portion programmed with a controller kernel programmed to control the exchange of instructions between the first guest operating system and the processing hardware and the exchange of instructions between the second operating systems and the processing hardware; a first terminal hardware set controlled by the first guest operating system, with the first terminal hardware set in the form of an ultra thin terminal; and a second terminal hardware set controlled by the second guest operating system, with the second terminal hardware set in the form of an ultra thin terminal.
-
-
40. A method comprising the following steps:
-
(a) providing a computer system comprising; processing hardware, a first guest operating system, a second guest operating system, with the first guest operating system and the second guest operating system being containerized with respect to each other; a controller kernel, a first terminal hardware set in the form of an ultra thin terminal, and a second terminal hardware set in the form of an ultra thin terminal; (b) controlling, by the controller kernel, an exchange of instructions between the first guest operating system and the processing hardware; (c) controlling, by the first guest operating system, the first terminal hardware set based on the exchange of instructions occurring at step (b); (d) controlling, by the controller kernel, an exchange of instructions between the second guest operating system and the processing hardware; and (e) controlling, by the second guest operating system, the second terminal hardware set based on the exchange of instructions occurring at step (d).
-
-
41. A computer system comprising:
-
processing hardware that defines an OS security level and at least a first additional security level above the OS security level; a first guest operating system; a second guest operating system; a controller kernel running on the processing hardware, with the controller kernel being programmed to; selectively allow the first guest operating system to have access to the processing hardware at the OS security level under control of the controller kernel while pre-empting the second guest operating system in a manner that allows the second guest operating system to continue running, and selectively allow the second guest operating system to have access to the processing hardware at the OS security level under control of the controller kernel while pre-empting the first guest operating system in a manner that allows the first guest operating system to continue running. - View Dependent Claims (42, 43, 44)
-
-
45. A computer comprising:
-
processing hardware that defines an OS security level and at least a first additional security level above the OS security level; a first memory portion programmed with a first guest operating system; a second memory portion programmed with a second guest operating system; a controller memory portion programmed with a controller kernel running on the processing hardware, with the controller kernel being programmed to; selectively allow the first guest operating system to have access to the processing hardware at the OS security level under control of the controller kernel while pre-empting the second guest operating system in a manner that allows the second guest operating system to continue running, and selectively allow the second guest operating system to have access to the processing hardware at the OS security level under control of the controller kernel while pre-empting the first guest operating system in a manner that allows the first guest operating system to continue running.
-
-
46. A method comprising the steps of:
-
(a) providing a computer system comprising; processing hardware that defines an OS security level and at least a first additional security level above the OS security level, a first guest operating system, a second guest operating system, and a controller kernel running on the processing hardware; (b) selectively allowing the first guest operating system to have access to the processing hardware at the OS security level under control of the controller kernel; (c) during step (b), pre-empting the second guest operating system in a manner that allows the second guest operating system to continue running; (d) selectively allowing the second guest operating system to have access to the processing hardware at the OS security level under control of the controller kernel; and (e) during step (d), pre-empting the first guest operating system in a manner that allows the first guest operating system to continue running.
-
Specification