Encrypted virtual machines in a cloud
First Claim
Patent Images
1. A system for accessing encrypted replication data stored on a storage medium, the system comprising:
- a remote replication appliance, andcomputer-executable logic operating in memory, wherein the computer-executable program logic is configured to enable a processor to execute;
intercepting communication between a virtual machine and the encrypted replication data stored on the storage medium and redirecting the communication to the remote replication appliance; and
using a key stored on the remote replication appliance to enable the virtual machine to facilitate communication with the encrypted replication data stored on the storage medium;
wherein facilitating communication enables the virtual machine to interact with the encrypted replication data as unencrypted data; and
installing a certificate for accessing a key manager;
obtaining a key from the key manager; and
erasing the key from the remote replication appliance once communication between the virtual machine and the encrypted replication data stored on the storage medium has finished.
9 Assignments
0 Petitions
Accused Products
Abstract
A method, system, and computer program product for intercepting communication between a virtual machine and an encrypted replication data stored on a storage medium and redirecting the communication to a remote replication appliance and using a key stored on the remote replication appliance to enable the virtual machine to facilitate communication with the encrypted replication data stored on the storage medium, wherein facilitating communication enables the virtual machine to interact with the encrypted replication data as unencrypted data.
99 Citations
14 Claims
-
1. A system for accessing encrypted replication data stored on a storage medium, the system comprising:
-
a remote replication appliance, and computer-executable logic operating in memory, wherein the computer-executable program logic is configured to enable a processor to execute; intercepting communication between a virtual machine and the encrypted replication data stored on the storage medium and redirecting the communication to the remote replication appliance; and using a key stored on the remote replication appliance to enable the virtual machine to facilitate communication with the encrypted replication data stored on the storage medium; wherein facilitating communication enables the virtual machine to interact with the encrypted replication data as unencrypted data; and installing a certificate for accessing a key manager; obtaining a key from the key manager; and erasing the key from the remote replication appliance once communication between the virtual machine and the encrypted replication data stored on the storage medium has finished. - View Dependent Claims (2, 3, 4)
-
-
5. A method for accessing encrypted replication data stored on a storage medium, the method comprising:
-
intercepting communication between a virtual machine and the encrypted replication data stored on the storage medium and redirecting the communication to a remote replication appliance; and using a key stored on the remote replication appliance to enable the virtual machine to facilitate communication with the encrypted replication data stored on the storage medium; wherein facilitating communication enables the virtual machine to interact with the encrypted replication data as unencrypted data; and installing a certificate for accessing a key manager; obtaining a key from the key manager; and erasing the key from the remote replication appliance once communication between the virtual machine and the encrypted replication data stored on the storage medium has finished. - View Dependent Claims (6, 7, 8)
-
-
9. A computer program product comprising:
-
a non-transitory computer readable medium encoded with computer executable program code, wherein the code enables a processor to execute; intercepting communication between a virtual machine and encrypted replication data stored on a storage medium and redirecting the communication to a remote replication appliance; using a key stored on the remote replication appliance to enable the virtual machine to facilitate communication with the encrypted replication data stored on the storage medium; wherein facilitating communication enables the virtual machine to interact with the encrypted replication data as unencrypted data; and installing a certificate for accessing a key manager; obtaining a key from the key manager; and erasing the key from the remote replication appliance once communication between the virtual machine and the encrypted replication data stored on the storage medium has finished. - View Dependent Claims (10, 11, 12, 13, 14)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeEmc IP Holding Company LLC (Dell Technologies Inc.)
-
Original AssigneeEMC Corporation (Dell Technologies Inc.)
-
InventorsNatanzon, Assaf, Amit, Amir
-
Primary Examiner(s)Ho, Dao
-
Application NumberUS14/102,043Time in Patent Office749 DaysField of Search726/27, 713/153, 713/165US Class Current1/1CPC Class CodesG06F 11/1446 Point-in-time backing up or...G06F 11/1451 by selection of backup cont...G06F 11/1469 Backup restoration techniquesG06F 11/1471 involving logging of persis...G06F 11/2094 Redundant storage or storag...G06F 21/6245 Protecting personal data, e...G06F 21/73 by creating or determining ...G06F 2201/805 Real-timeG06F 2201/82 Solving problems relating t...H04L 2209/605 Copy protectionH04L 63/0428 wherein the data content is...H04L 63/06 for supporting key manageme...H04L 63/062 for key distribution, e.g. ...H04L 67/1095 Replication or mirroring of...H04L 67/1097 for distributed storage of ...H04L 9/088 Usage controlling of secret...H04L 9/3263 involving certificates, e.g...
