Method and system for administration of security services within a virtual execution environment (VEE) infrastructure
DCFirst Claim
1. A system for managing administration of security services comprising:
- a computer system having a processor and a memory;
an operating system running on the processor and using the memory;
a plurality of Virtual Execution Environments (VEEs) running under the operating system of the computer system, wherein the VEEs have private control data sets reflecting security settings of VEE remote users and provide services to a plurality of the remote users;
at least one designated VEE operationally coupled to other VEEs of the plurality of the VEEs, wherein the designated VEE uses the private control data sets of each of the VEEs to provide security services to other VEEs; and
control means within each designated VEE operationally coupled to control panels of the other VEEs for providing administration of the security services to each of the other VEEs.
11 Assignments
Litigations
0 Petitions
Accused Products
Abstract
A system and method for managing administration of security services provided to users includes a computer system and an operating system running on the computer system. A plurality of Virtual Execution Environments (VEEs) are executed on the computer system. The VEEs can be any of a Virtual Private Server, a Virtual Machine, a Hypervisor-based Virtual Machine, and a Lightweight Hypervisor-based Virtual Machine, a session of Terminal Server and a session of Presentation Server, Lightweight Hypervisor-based Virtual Machines, VMM-based VMs or hypervisor-based VMs. Each VEE provides a set of services to remote users. One or more designated VEE(s) provide security services to each of the VEEs based on the needs of the remote users of the particular VEEs. The security services provided by the designated VEE can be firewall services, spam filtering and anti-virus protection. The security services are controlled and administered by each of the VEEs requesting a particular service via control means of the designated VEE(s).
40 Citations
20 Claims
-
1. A system for managing administration of security services comprising:
-
a computer system having a processor and a memory; an operating system running on the processor and using the memory; a plurality of Virtual Execution Environments (VEEs) running under the operating system of the computer system, wherein the VEEs have private control data sets reflecting security settings of VEE remote users and provide services to a plurality of the remote users; at least one designated VEE operationally coupled to other VEEs of the plurality of the VEEs, wherein the designated VEE uses the private control data sets of each of the VEEs to provide security services to other VEEs; and control means within each designated VEE operationally coupled to control panels of the other VEEs for providing administration of the security services to each of the other VEEs. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for managing administration of security services comprising:
-
launching a plurality of Virtual Execution Environments (VEEs) on a computer system; designating at least one of the plurality of the VEEs for providing security services to other VEEs of the plurality of the VEEs; controlling deployment of the security services by each designated VEE, wherein each designated VEE is operationally coupled to each of the other VEEs using private control data sets specific to each of the other VEEs, wherein the private control data sets reflect security settings of VEE users; and using control means within each designated VEE operationally coupled to control panels of the other VEEs for providing administration of the security services to each of the other VEEs. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A non-transitory computer useable medium having computer program logic stored thereon for executing on a processor for managing administration of security services, the computer program logic comprising:
-
computer program code means for launching a plurality of Virtual Execution Environments (VEEs) on a computer system; computer program code means for designating at least one of the plurality of the VEEs for providing security services to other VEEs of the plurality of the VEEs; computer program code means for controlling deployment of the security services in each designated VEE, each designated VEE being operationally coupled to each of the plurality of VEEs using private control data sets specific to each VEE; and computer program code means for using control means within each designated VEE operationally coupled to control panels of the other VEEs for providing administration of the security services to each of the other VEEs.
-
Specification