Securely terminating processes in a cloud computing environment
First Claim
Patent Images
1. A method comprising:
- identifying, by a processor, a first process to be terminated from a plurality of computing systems;
identifying a first computing system in the plurality of computing systems, the first computing system supporting the first process;
identifying other processes supported by the first computing system sharing information associated with and supporting the first process, wherein the other processes are not to be terminated;
identifying specific locations in a computer readable storage device storing the shared information on the first computing system;
migrating the other process to a second computing system of the plurality of computing systems;
instructing, by the processor, a network management system to provide a command to retrieve an eraser agent to the first computing system;
receiving, by the processor, the command from the first computing system to provide the first computing system with the eraser agent; and
transmitting after migrating, by the processor, the eraser agent to the first computing system to securely terminate the first process and erase the shared information associated with the first process and stored in the specific locations on the first computing system.
1 Assignment
0 Petitions
Accused Products
Abstract
When terminating a process instantiated in a cloud, a cloud management system can provide and interact with an eraser agent on the computing systems supporting the process. The process can be any type of process that can exits in the cloud such a virtual machine, software appliance, or software instance. The eraser agent can execute on the computing systems to erase information stored on physical storage devices of the computing systems and associated with the process. In particular, the eraser agent can utilize secure algorithms to alter and obscure the information stored on the physical storage devices of the computing systems and associated with the process.
114 Citations
13 Claims
-
1. A method comprising:
-
identifying, by a processor, a first process to be terminated from a plurality of computing systems; identifying a first computing system in the plurality of computing systems, the first computing system supporting the first process; identifying other processes supported by the first computing system sharing information associated with and supporting the first process, wherein the other processes are not to be terminated; identifying specific locations in a computer readable storage device storing the shared information on the first computing system; migrating the other process to a second computing system of the plurality of computing systems; instructing, by the processor, a network management system to provide a command to retrieve an eraser agent to the first computing system; receiving, by the processor, the command from the first computing system to provide the first computing system with the eraser agent; and transmitting after migrating, by the processor, the eraser agent to the first computing system to securely terminate the first process and erase the shared information associated with the first process and stored in the specific locations on the first computing system. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A non-transitory computer readable storage medium comprising instruction to cause a processor to perform operations comprising:
-
identifying, by the processor, a first process to be terminated from a plurality of computing systems; identifying a first computing system in the plurality of computing systems, the first computing system supporting the first process; identifying other processes supported by the first computing system sharing information associated with and supporting the first process, wherein the other processes are not to be terminated; identifying specific locations in a computer readable storage device storing the shared information on the first computing system; migrating the other process to a second computing system of the plurality of computing systems; and instructing, by the processor, a network management system to provide a command to retrieve an eraser agent to the first computing system; receiving, by the processor, the command from the first computing system to provide the first computing system with the eraser agent; and transmitting after migrating, by the processor, the eraser agent to the first computing system to securely terminate the first process and erase the shared information associated with the first process and stored in the specific locations on the first computing system. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A system comprising:
a computing system comprising memory and a processor coupled to the memory to; identify a first process to be terminated from a plurality of computing systems; identify a first computing system of the plurality of computing systems, the first computing system supporting the first process; identify other processes supported by the first computing system sharing information associated with and supporting the first process, wherein the other processes are not to be terminated; identify specific locations in a computer readable storage device storing the shared information on the first computing system; migrate the other processes to a second computing system of the plurality of computing systems; instruct a network management system to provide a command to retrieve an eraser agent to the first computing system; receive the command from the first computing system to provide the first computing system with the eraser agent; and transmit after migrating the eraser agent to the first computing system to securely terminate the first process and erase the shared information associated with the first process and stored in the specific locations on the first computing system. - View Dependent Claims (12, 13)
Specification