SECURITY CREDENTIAL DEPLOYMENT IN CLOUD ENVIRONMENT
First Claim
1. A method of deploying a security credential for an application deployed in a cloud, comprising:
- receiving an encrypted security credential from a remote system;
inserting the encrypted security credential into a virtual machine image associated with the application;
upon deploying the virtual machine image as a virtual machine instance, transmitting a request to a cryptex server for a decrypted security credential, the request including the encrypted security credential and a virtual machine instance identifier for the deployed virtual machine image, wherein the cryptex server is configured to retrieve metadata associated with the virtual machine identifier and to authenticate and authorize the virtual machine instance using the retrieved metadata; and
receiving, from the cryptex server, the decrypted security credential for use by the application.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques are described for deploying a security credential for an application deployed in a cloud. An encrypted security credential is received from a remote system and is inserted into a virtual machine image associated with the application. Upon deploying the virtual machine image as a virtual machine instance, embodiments transmit a request to a cryptex server for a decrypted security credential, the request including the encrypted security credential and a virtual machine identifier for the virtual machine instance. The cryptex server is configured to retrieve metadata associated with the virtual machine identifier and to authenticate the virtual machine instance using the retrieved metadata. Embodiments receive, from the cryptex server, the decrypted security credential for use by the application.
-
Citations
18 Claims
-
1. A method of deploying a security credential for an application deployed in a cloud, comprising:
-
receiving an encrypted security credential from a remote system; inserting the encrypted security credential into a virtual machine image associated with the application; upon deploying the virtual machine image as a virtual machine instance, transmitting a request to a cryptex server for a decrypted security credential, the request including the encrypted security credential and a virtual machine instance identifier for the deployed virtual machine image, wherein the cryptex server is configured to retrieve metadata associated with the virtual machine identifier and to authenticate and authorize the virtual machine instance using the retrieved metadata; and receiving, from the cryptex server, the decrypted security credential for use by the application. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A non-transitory computer-readable medium containing a program that, when executed, performs an operation for deploying a security credential for an application deployed in a cloud, the operation comprising:
-
receiving an encrypted security credential from a remote system; inserting the encrypted security credential into a virtual machine image associated with the application; upon deploying the virtual machine image as a virtual machine instance, transmitting a request to a cryptex server for a decrypted security credential, the request including the encrypted security credential and a virtual machine instance identifier for the virtual machine instance, wherein the cryptex server is configured to retrieve metadata associated with the virtual machine identifier and to authenticate and authorize the virtual machine instance using the retrieved metadata; and receiving, from the cryptex server, the decrypted security credential for use by the application. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A system, comprising:
-
a processor; and a memory containing a program that, when executed on the processor, performs an operation for deploying a security credential for an application deployed in a cloud, the operation comprising; receiving an encrypted security credential from a remote system; inserting the encrypted security credential into a virtual machine image associated with the application; upon deploying the virtual machine image as a virtual machine instance, transmitting a request to a cryptex server for a decrypted security credential, the request including the encrypted security credential and a virtual machine instance identifier for the virtual machine instance, wherein the cryptex server is configured to retrieve metadata associated with the virtual machine identifier and to authenticate and authorize the virtual machine instance using the retrieved metadata; and receiving, from the cryptex server, the decrypted security credential for use by the application. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification