MANAGING HARDWARE REBOOT AND RESET IN SHARED ENVIRONMENTS
First Claim
1. A computer-implemented method, comprising:
- under control of one or more computer systems configured with executable instructions,provisioning a customer on at least one of a plurality of host machines using at least one provisioning system on a network;
causing at least one switch, associated with communications between the at least one provisioned host machine and the at least one provisioning system, to disable communications between each provisioned host machine and each provisioning system for a duration of a time the customer is utilizing the at least one host machine, and while maintaining access to other communication paths of the network; and
causing the at least one switch between the at least one provisioned host machine and the at least one provisioning system to enable communications between each provisioned host machine and each provisioning system after the customer is no longer provisioned on the at least one host machine.
1 Assignment
0 Petitions
Accused Products
Abstract
In an environment such as a cloud computing environment where various guests can be provisioned on a host machine or other hardware device, it can be desirable to prevent those users from rebooting or otherwise restarting the machine or other resources using unauthorized information or images that can be obtained from across the network. A cloud manager can cause one or more network switches or other routing or communication processing components to deny communication access between user-accessible ports on a machine or device and the provisioning systems, or other specific network resources, such that the user cannot cause the host machine to pull information from those resources upon a restart or reboot of the machine. Further, various actions can be taken upon a reboot or attempted reboot, such as to isolate the host machine or even power off the specific machine.
26 Citations
1 Claim
-
1. A computer-implemented method, comprising:
under control of one or more computer systems configured with executable instructions, provisioning a customer on at least one of a plurality of host machines using at least one provisioning system on a network; causing at least one switch, associated with communications between the at least one provisioned host machine and the at least one provisioning system, to disable communications between each provisioned host machine and each provisioning system for a duration of a time the customer is utilizing the at least one host machine, and while maintaining access to other communication paths of the network; and causing the at least one switch between the at least one provisioned host machine and the at least one provisioning system to enable communications between each provisioned host machine and each provisioning system after the customer is no longer provisioned on the at least one host machine.
Specification
-
- Resources
-
Current AssigneeAmazon Technologies, Inc. (Amazon.com, Inc.)
-
Original AssigneeAmazon Technologies, Inc. (Amazon.com, Inc.)
-
InventorsCorddry, Matthew T., Marr, Michael David, Hamilton, James R., De Santis, Peter N.
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current726/3
-
CPC Class CodesG06F 9/4401 Bootstrapping security arra...H04L 63/10 for controlling access to d...H04L 67/125 involving control of end-de...H04L 67/535 Tracking the activity of th...
