Systems and methods of utilizing virtual machines to protect computer systems

US 20090300599A1
Filed: 05/30/2008
Published: 12/03/2009
Est. Priority Date: 05/30/2008
Status: Abandoned Application

First Claim

Patent Images

1. A method of utilizing virtual machines to protect a computer system, the method comprising the steps of:

receiving a request to execute a computer program;

initiating a first virtual machine having a first identity and being configured to execute the computer program;

instructing the first virtual machine to execute the computer program;

receiving from the first virtual machine a request to access a first computer file on behalf of the computer program;

determining whether the first virtual machine is allowed access to the first computer file; and

permitting the first virtual machine access to the first computer file if the first virtual machine is allowed access to the first computer file.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods are provided for utilizing virtual machines to protect computer systems. A first virtual machine may be initiated to execute a computer program. When the computer program attempts to access a computer file, a determination may be made of whether the first virtual machine is allowed access to the computer file. If access is allowed, the virtual machine may be permitted access to the computer file, and the computer program may thereafter access the computer file. A first (or “master”) virtual machine may additionally or alternatively cause initiation of a second (or “slave”) virtual machine to access untrusted computer files. Master virtual machines may be configured to communicate with and/or control slave virtual machines.

234 Citations

40 Claims

1. A method of utilizing virtual machines to protect a computer system, the method comprising the steps of:
- receiving a request to execute a computer program;
  
  initiating a first virtual machine having a first identity and being configured to execute the computer program;
  
  instructing the first virtual machine to execute the computer program;
  
  receiving from the first virtual machine a request to access a first computer file on behalf of the computer program;
  
  determining whether the first virtual machine is allowed access to the first computer file; and
  
  permitting the first virtual machine access to the first computer file if the first virtual machine is allowed access to the first computer file.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein the step of determining whether the first virtual machine is allowed access to the first computer file includes authenticating the first identity against a list of identities permitted to access the first computer file.
  - 3. The method of claim 2, further comprising the steps of:
    - prior to permitting the first virtual machine access to the first computer file, presenting an interface for approving access to the first computer file;
      
      receiving instructions from the interface approving access to the first computer file; and
      
      adding the first identity to the list of identities permitted to access the first computer file.
  - 4. The method of claim 3, wherein adding the first identity includes storing the first identity in volatile memory so that when the computer system is rebooted, the added first identity is deleted.
  - 5. The method of claim 1, further comprising the steps of:
    - prior to permitting the first virtual machine access to the first computer file, presenting an interface for approving access to the first computer file; and
      
      receiving instructions from the interface approving access to the first computer file.
  - 6. The method of claim 5, wherein the interface for approving access to the first computer file resembles a file selection graphical user interface.
  - 7. The method of claim 1, wherein the step of receiving the request to access the first computer file further includes receiving from the first virtual machine a token, and the step of determining whether the first virtual machine is allowed access to the first computer file further includes determining whether the token indicates that the first virtual machine is to be permitted access to the first computer file.
  - 8. The method of claim 1, further comprising the steps of:
    - receiving from the first virtual machine a request to initiate a second virtual machine to access an untrusted second computer file; and
      
      initiating the second virtual machine having a second identity different than the first identity, the second virtual machine being configured to access the untrusted second computer file.
  - 9. The method of claim 8, further comprising the step of configuring the first virtual machine to communicate with the second virtual machine.
  - 10. The method of claim 8, wherein the first virtual machine'"'"'s first identity is usable to obtain access by the first virtual machine to the first computer file, and the second virtual machine'"'"'s second identity is not usable to obtain access to the first computer file.
  - 11. The method of claim 1, further comprising the steps of, prior to receiving the request to execute the computer program:
    - receiving a request to install the computer program;
      
      creating the first virtual machine configured to execute the computer program;
      
      designating a portion of memory to be accessible to the first virtual machine; and
      
      installing the computer program so that it only can be executed by the first virtual machine.

12. A method of utilizing virtual machines to protect a computer system, the method comprising the steps of:
- receiving a request to execute a computer program;
  
  initiating a first virtual machine having a first identity and being configured to execute the computer program;
  
  instructing the first virtual machine to execute the computer program;
  
  receiving from the first virtual machine a request to initiate a second virtual machine to access an untrusted first computer file; and
  
  initiating a second virtual machine having a second identity different than the first identity, the second virtual machine being configured to access the untrusted first computer file.
- View Dependent Claims (13, 14)
- - 13. The method of claim 12, further comprising the step of configuring the first virtual machine to communicate with the second virtual machine.
  - 14. The method of claim 12, further comprising the steps of:
    - receiving from the first virtual machine a request to access a second computer file on behalf of the computer program;
      
      determining whether the first virtual machine is allowed access to the second computer file; and
      
      permitting the first virtual machine access to the second computer file if the first virtual machine is allowed access to the second computer file.

15. A virtual machine for use on a computer system, the virtual machine having a first identity associated with a computer program and being configured to:
- execute the computer program;
  
  receive a request from the computer program to access a first computer file;
  
  request permission to access the first computer file;
  
  receive permission to access the first computer file; and
  
  access the first computer file.
- View Dependent Claims (16, 17)
- - 16. The virtual machine of claim 15, wherein requesting permission to access the first computer file includes presenting an interface for approving access to the first computer file.
  - 17. The virtual machine of claim 15, wherein the machine is further configured to:
    - receive a request from the computer program to access an untrusted second computer file;
      
      cause initiation of a second virtual machine configured to access the untrusted second computer file, the second virtual machine having a second identity different from the first identity, andcommunicate with the second virtual machine.

18. A master virtual machine for use on a computer system, the master virtual machine having a first identity and being configured to:
- execute a computer program;
  
  receive a request from the computer program to access an untrusted first computer file;
  
  cause initiation of a slave virtual machine configured to access the untrusted first computer file, the slave virtual machine having a second identity different from the first identity;
  
  communicate with the slave virtual machine.
- View Dependent Claims (19, 20)
- - 19. The master virtual machine of claim 18, wherein the master virtual machine is further configured to:
    - receive a request from the computer program to access a second computer file;
      
      request permission to access the second computer file;
      
      receive permission to access the second computer file; and
      
      access the second computer file.
  - 20. The master virtual machine of claim 19, wherein the master virtual machine'"'"'s first identity is usable to obtain access to the second computer file, and the slave virtual machine'"'"'s second identity is not usable to obtain access to the second computer file.

21. A storage medium, readable by a processor of a computer system, having embodied therein a first computer program of commands executable by the processor, the program being adapted to be executed to:
- receive a request to execute a second computer program;
  
  initiate a first virtual machine having a first identity and being configured to execute the second computer program;
  
  instruct the first virtual machine to execute the second computer program;
  
  receive from the first virtual machine a request to access a first computer file on behalf of the second computer program;
  
  determine whether the first virtual machine is allowed access to the first computer file; and
  
  permit the first virtual machine access to the first computer file if the first virtual machine is allowed access to the first computer file.
- View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31)
- - 22. The storage medium of claim 21, wherein the first computer program is further adapted to be executed to authenticate the first identity against a list of identities permitted to access the first computer file.
  - 23. The storage medium of claim 22, wherein the first computer program is further adapted to be executed to:
    - present an interface for approving access to the first computer file prior to permitting the first virtual machine access to the first computer file;
      
      receive instructions from the interface approving access to the first computer file; and
      
      add the first identity to the list of identities permitted to access the first computer file.
  - 24. The storage medium of claim 23, wherein the first computer program is further adapted to be executed to store the first identity in volatile memory so that when the computer system is rebooted, the added first identity is deleted.
  - 25. The storage medium of claim 21, wherein the first computer program is further adapted to be executed to:
    - present an interface for approving access to the first computer file prior to permitting the first virtual machine access to the first computer file, andreceive instructions from the interface approving access to the first computer file.
  - 26. The storage medium of claim 25, wherein the interface for approving access to the first computer file resembles a file selection graphical user interface.
  - 27. The storage medium of claim 21, wherein the first computer program is further adapted to be executed to:
    - receive from the first virtual machine a token; and
      
      determine whether the token indicates that the first virtual machine is to be permitted access to the first computer file.
  - 28. The storage medium of claim 21, wherein the first computer program is further adapted to be executed to:
    - receive from the first virtual machine a request to initiate a second virtual machine to access an untrusted second computer file; and
      
      initiate the second virtual machine having a second identity different than the first identity, the second virtual machine being configured to access the untrusted second computer file.
  - 29. The storage medium of claim 28, wherein the first computer program is further adapted to be executed to configure the first virtual machine to communicate with the second virtual machine.
  - 30. The storage medium of claim 28, wherein the first virtual machine'"'"'s first identity is usable to obtain access by the first virtual machine to the first computer file, and the second virtual machine'"'"'s second identity is not usable to obtain access to the first computer file.
  - 31. The storage medium of claim 21, wherein the first computer program is further adapted to be executed to, prior to receiving the request to execute the second computer program:
    - receive a request to install the second computer program;
      
      create the first virtual machine configured to execute the second computer program;
      
      designate a portion of memory to be accessible to the first virtual machine; and
      
      install the second computer program so that it only can be executed by the first virtual machine.

32. A storage medium, readable by a processor of a computer system, having embodied therein a first computer program of commands executable by the processor, the first computer program being adapted to be executed to:
- receive a request to execute a second computer program;
  
  initiate a first virtual machine having a first identity and being configured to execute the second computer program;
  
  instruct the first virtual machine to execute the second computer program;
  
  receive from the first virtual machine a request to initiate a second virtual machine to access an untrusted first computer file; and
  
  initiate a second virtual machine having a second identity different than the first identity, the second virtual machine being configured to access the untrusted first computer file.
- View Dependent Claims (33, 34)
- - 33. The storage medium of claim 32, wherein the first computer program is further adapted to be executed to configure the first virtual machine to communicate with the second virtual machine.
  - 34. The storage medium of claim 32, wherein the first computer program is further adapted to be executed to:
    - receive from the first virtual machine a request to access a second computer file on behalf of the second computer program;
      
      determine whether the first virtual machine is allowed access to the second computer file; and
      
      permit the first virtual machine access to the second computer file if the first virtual machine is allowed access to the second computer file.

35. A storage medium, readable by a processor of a computer system, having embodied therein a first computer program of commands executable by the processor to implement a first virtual machine having a first identity, the first computer program being adapted to be executed to:
- execute the second computer program;
  
  receive a request from the second computer program to access a first computer file;
  
  request permission to access the first computer file;
  
  receive permission to access the first computer file; and
  
  access the first computer file.
- View Dependent Claims (36, 37)
- - 36. The storage medium of claim 35, wherein the first computer program is further adapted to be executed to present an interface for approving access to the first computer file.
  - 37. The storage medium of claim 35, wherein the first computer program is further adapted to be executed to:
    - receive a request from the second computer program to access an untrusted second computer file;
      
      cause initiation of a second virtual machine configured to access the untrusted second computer file, the second virtual machine having a second identity different from the first identity, andcommunicate with the second virtual machine.

38. A storage medium, readable by a processor of a computer system, having embodied therein a first computer program of commands executable by the processor to implement a master virtual machine having a first identity, the first computer program being adapted to be executed to:
- execute a second computer program;
  
  receive a request from the second computer program to access an untrusted first computer file;
  
  cause initiation of a slave virtual machine configured to access the untrusted first computer file, the slave virtual machine having a second identity different from the first identity;
  
  communicate with the slave virtual machine.
- View Dependent Claims (39, 40)
- - 39. The storage medium of claim 38, wherein the first computer program is further adapted to be executed to:
    - receive a request from the second computer program to access a second computer file;
      
      request permission to access the second computer file;
      
      receive permission to access the second computer file; and
      
      access the second computer file.
  - 40. The storage medium of claim 39, wherein the master virtual machine'"'"'s first identity is usable to obtain access to the second computer file, and the slave virtual machine'"'"'s second identity is not usable to obtain access to the second computer file.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Matthew Thomas Piotrowski
Original Assignee
Matthew Thomas Piotrowski
Inventors
Piotrowski, Matthew Thomas

Application Number

US12/156,378
Publication Number

US 20090300599A1
Time in Patent Office

Days
Field of Search
US Class Current

717/174
CPC Class Codes

G06F 2009/45587   Isolation or security of vi...

G06F 21/53   by executing in a restricte...

G06F 2221/2105   Dual mode as a secondary as...

G06F 9/45558   Hypervisor-specific managem...

Systems and methods of utilizing virtual machines to protect computer systems

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

234 Citations

40 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods of utilizing virtual machines to protect computer systems

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

234 Citations

40 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links