Method and apparatus for token-based virtual machine recycling
First Claim
1. An apparatus comprising:
- a memory operable to;
store a virtual machine token associated with a virtual machine running on a particular device, the virtual machine token comprising a timestamp indicating when the virtual machine was established;
store a secure image of the virtual machine; and
a processor operable to;
receive a token indicating that the particular device is attempting to access a resource;
in response to receiving the token, check the validity of the virtual machine running on the particular device based at least in part upon the timestamp associated with the virtual machine token and a time threshold associated with the virtual machine, wherein the time threshold identifies a period of time during which the virtual machine is valid;
determine that the virtual machine is invalid when the time threshold associated with the virtual machine exceeds a current time;
when the virtual machine is invalid, then communicate at least one token to initiate the recycling of the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine;
recycle the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine;
wait for completion of running of at least one pending process by the virtual machine prior to recycling the virtual machine, wherein the memory is further operable to store a secure copy of the at least one pending process; and
recover the secure copy of the at least one pending process after recycling the virtual machine.
1 Assignment
0 Petitions
Accused Products
Abstract
According to one embodiment, an apparatus may store a virtual machine token associated with a virtual machine running on a particular device and a secure image of the virtual machine. The virtual machine token may include a timestamp indicating when the virtual machine was established. The apparatus may receive a token indicating that the particular device is attempting to access a resource. In response, checking the validity of the virtual machine running on the particular device based at least in part upon the timestamp associated with the virtual machine token and a time threshold associated with the virtual machine. If the virtual machine is invalid, then the apparatus may communicate at least one token to initiate the recycling of the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine.
32 Citations
15 Claims
-
1. An apparatus comprising:
a memory operable to; store a virtual machine token associated with a virtual machine running on a particular device, the virtual machine token comprising a timestamp indicating when the virtual machine was established; store a secure image of the virtual machine; and
a processor operable to;receive a token indicating that the particular device is attempting to access a resource; in response to receiving the token, check the validity of the virtual machine running on the particular device based at least in part upon the timestamp associated with the virtual machine token and a time threshold associated with the virtual machine, wherein the time threshold identifies a period of time during which the virtual machine is valid; determine that the virtual machine is invalid when the time threshold associated with the virtual machine exceeds a current time; when the virtual machine is invalid, then communicate at least one token to initiate the recycling of the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine; recycle the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine; wait for completion of running of at least one pending process by the virtual machine prior to recycling the virtual machine, wherein the memory is further operable to store a secure copy of the at least one pending process; and recover the secure copy of the at least one pending process after recycling the virtual machine. - View Dependent Claims (2, 3, 4, 5)
-
6. A method for recycling a virtual machine running on a device, comprising:
-
storing a virtual machine token associated with a virtual machine running on a particular device, the virtual machine token comprising a timestamp indicating when the virtual machine was established; storing a secure image of the virtual machine; receiving a token indicating that the particular device is attempting to access a resource; in response to receiving the token, checking the validity of the virtual machine running on the particular device based at least in part upon the timestamp associated with the virtual machine token and a time threshold associated with the virtual machine, wherein the time threshold identifies a period of time during which the virtual machine is valid; determining that the virtual machine is invalid when the time threshold associated with the virtual machine exceeds a current time; when the virtual machine is invalid, then communicating at least one token to initiate the recycling of the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine; recycling the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine; waiting for completion of running of at least one pending process by the virtual machine prior to recycling the virtual machine; storing a secure copy of the at least one pending process; and recovering the secure copy of the at least one pending process after recycling the virtual machine. - View Dependent Claims (7, 8, 9, 10)
-
-
11. One or more computer-readable non-transitory storage media embodying software that is operable when executed to:
-
store a virtual machine token associated with a virtual machine running on a particular device, the virtual machine token comprising a timestamp indicating when the virtual machine was established; store a secure image of the virtual machine; and receive a token indicating that the particular device is attempting to access a resource; in response to receiving the token, check the validity of the virtual machine running on the particular device based at least in part upon the timestamp associated with the virtual machine token and a time threshold associated with the virtual machine, wherein the time threshold identifies a period of time during which the virtual machine is valid; determine that the virtual machine is invalid when the time threshold associated with the virtual machine exceeds a current time; when the virtual machine is invalid, then communicate at least one token to initiate the recycling of the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine; recycle the virtual machine by replacing the invalid virtual machine with the stored secure image of the virtual machine; wait for completion of running of at least one pending process by the virtual machine prior to recycling the virtual machine; store a secure copy of the at least one pending process; and recover the secure copy of the at least one pending process after recycling the virtual machine. - View Dependent Claims (12, 13, 14, 15)
-
Specification