Computing device including a port and a guest domain
First Claim
Patent Images
1. A computing device comprising:
- a virtual machine monitor (VMM);
a plurality of virtual domains isolated from one another by the VMM, the plurality of virtual domains comprising a first guest domain and a privileged domain;
peripheral related instructions isolated from the first guest domain; and
a port to connect a peripheral device,the privileged domain to cause the peripheral related instructions to be executed to identify the peripheral device, wherein the peripheral related instructions upon execution prevent the first guest domain from communicating with the peripheral device in response to determining that the peripheral device is malicious.
1 Assignment
0 Petitions
Accused Products
Abstract
A first guest domain and an isolated peripheral related task. A peripheral related task to communicate with the peripheral and prevent the first guest domain from communicating with the peripheral.
95 Citations
20 Claims
-
1. A computing device comprising:
-
a virtual machine monitor (VMM); a plurality of virtual domains isolated from one another by the VMM, the plurality of virtual domains comprising a first guest domain and a privileged domain; peripheral related instructions isolated from the first guest domain; and a port to connect a peripheral device, the privileged domain to cause the peripheral related instructions to be executed to identify the peripheral device, wherein the peripheral related instructions upon execution prevent the first guest domain from communicating with the peripheral device in response to determining that the peripheral device is malicious. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of communicating with a peripheral connected to a computing device comprising:
-
isolating a peripheral related task from a first guest domain; generating a virtual appliance to execute the peripheral related task; receiving, by the virtual appliance from the peripheral, the type of peripheral; validating, by the virtual appliance, the type of peripheral; and preventing communication with the peripheral by the first guest domain until the type of peripheral is validated. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A non-transitory computer readable medium storing instructions that upon execution cause a computing device to:
-
isolate, using a virtual machine monitor (VMM), a plurality of virtual machines (VMs) from one another, a first VM of the plurality of VMs being a first guest domain, and a second VM of the plurality of VMs being a privileged domain; cause, by the privileged domain, execution of a peripheral related task isolated from the first guest domain; receive, by the peripheral related task from a peripheral device, an identification that the peripheral device is a first type of peripheral device; detect, by the peripheral related task, that the peripheral device is a second type of peripheral device; and in response to detecting that the first type is different from the second type, prevent communication with the peripheral device by the first guest domain. - View Dependent Claims (19, 20)
-
Specification