SYSTEM AND METHOD FOR CONFIDENTIAL REMOTE COMPUTING

US 20150264024A1
Filed: 03/15/2014
Published: 09/17/2015
Est. Priority Date: 03/15/2014
Status: Abandoned Application

First Claim

Patent Images

1. A system enabling trustworthy hosting of workloads on remote compute-server, ensuring that first party agents have no access to the workload computation and data regardless of the agents'"'"' privileges;

where first party agents includes the hosting facility administrators.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system, method, device and protocols are disclosed. Each and combined they protect computation and data hosted on remote computing resources from first party attacks.

First party attacks refer to attacks that are launched by agents (employees, contractors, etc.) of the hosting facility. Such attacks can be launched by the first patty agents, or some other adversary exploiting the privileges of the first party agent.

This invention allows customers to submit workloads to a remote computing facility, e.g. a datacenter or cloud computing, with the assurance that the administrators of the remote computers cannot access the workload computation and data.

The invention scales effectively from a single compute-server device to a whole datacenter with numerous compute-servers. It interoperates and may utilize VMM and VM deployment architectures. The invention allows varying degrees of datacenter operations access to the workload ranging from virtually none in the most strict case, to limited access to enable monitoring and maintenance of the workload.

This invention can be applied to existing cloud computing and other datacenters with off the self computing components. Further it can be applied to existing computing resource commonly in use in such facilities. Further, the invention is applicable to a wide variety of settings including single computers, computer labs, datacenters and public and private cloud computing services.

19 Citations

View as Search Results

20 Claims

1. A system enabling trustworthy hosting of workloads on remote compute-server, ensuring that first party agents have no access to the workload computation and data regardless of the agents'"'"' privileges;
- where first party agents includes the hosting facility administrators.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 19)
- - 2. The system in claim 1, where the agents of the first party cannot read the code and data of the hosted workload.
  - 3. The system in claim 1, where the agents of the first party cannot tamper with the code and data of the hosted workload.
  - 4. The system of claim 1, where the compute-servers trustworthiness is a tuple of values describing various aspects such as its authenticity, degree of hardening, degree of physical security, and legal framework governing the physical hardware and its location.
  - 5. The system of claim 4, where there is a device, called controller, keeping track on a corpus of compute-servers, their trustworthiness, and availability.
  - 6. The system of claim 5, where the controller receives requests to run workloads;
    - each workload includes code, data, and metadata describing its trustworthiness requirements.
  - 7. The system of claim 6, where the controller matches between workload and compute servers such that a workload always runs of a compute-server satisfying its trustworthiness requirements.
  - 19. The system in claim 1, where the network infrastructure is intermittent.

8. A device, called compute-server, which follows a regulated boot and vetting protocol;
- the protocol enabling the compute-server to pass a trustworthiness vetting with a control server or customer computer
- View Dependent Claims (9, 10, 11, 12, 13, 14, 20)
- - 9. The compute-server in claim 8, where it allows the vetting counterparty to direct what workload it is to run.
  - 10. The compute-server in claim 9, where the workload may be a Virtual Machine (VM).
  - 11. The compute-server and VM in claim 10, where the VM implements the vetted party side of the vetting protocol, and receives and validates requests to run a target workload.
  - 12. The compute-server in claim 10, where the VM is hardened to limit the administrator access to the workload by allowing any of:
    - starting and stopping the VM, backing up the VM memory and Virtual Hard Drive (VHD).
  - 13. The compute-server in claim 9, where workload is a VMM capable of running multiple VMs, each running a target workload.
  - 14. The compute-server in claim 13, where each new target workload is loaded onto a fresh VM.
  - 20. The device in claim 8, where the network infrastructure is intermittent.

15. A method enabling trustworthy hosting, protecting the hosted workload from the hosting party reading or tampering with it.
- View Dependent Claims (16, 17, 18)
- - 16. The method in claim 15, where the method enables a controller server to offload the customer initiating the workload request.
  - 17. The method in claim 15, where the method enables a controller server to maintain a corpus of trustworthy compute servers.
  - 18. The method in claim 17, where the trustworthiness is a tuple of values describing various aspects such as its authenticity, degree of hardening, degree of physical security, and legal framework governing the physical hardware and its location.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Alexander Frank
Original Assignee
Alexander Frank
Inventors
Frank, Alexander

Application Number

US14/214,936
Publication Number

US 20150264024A1
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/107   wherein the security polici...

H04L 63/14   for detecting or protecting...

SYSTEM AND METHOD FOR CONFIDENTIAL REMOTE COMPUTING

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

19 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM AND METHOD FOR CONFIDENTIAL REMOTE COMPUTING

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

19 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links