Secure integration of hybrid clouds with enterprise networks
First Claim
1. A system for managing secure integration of a cloud-based computing resource with a private domain, the system comprising:
- a hybrid cloud arrangement including a plurality of virtual machines, the plurality of virtual machines including at least a first virtual machine within the private domain and a second virtual machine within a public cloud;
a virtual data relay within the private domain and associated with the second virtual machine, the virtual data relay comprising;
a private domain interface used to establish a secure communication link according to a first security protocol with each virtual machine within the private domain that is a member of a community of interest, the virtual data relay assigned a community of interest key used by the private domain interface and defining the community of interest of which the second virtual machine is a member; and
a public cloud interface used to establish a secure communication link with the second virtual machine, the public cloud interface using a second security protocol different from the first security protocol.
8 Assignments
0 Petitions
Accused Products
Abstract
A system and method of managing secure integration of a cloud-based computing resource with a private domain are disclosed. One system includes a hybrid cloud arrangement including a plurality of virtual machines, the plurality of virtual machines including at least a first virtual machine within the private domain and a second virtual machine within a public cloud. The system also includes a virtual data relay within the private domain and associated with the second virtual machine. The virtual data relay includes a private domain interface used to establish a secure communication link according to a first security protocol with each virtual machine within the private domain that is a member of a community of interest, the virtual data relay assigned a community of interest key used by the private domain interface and defining the community of interest of which the second virtual machine is a member. The virtual data relay also includes a public cloud interface used to establish a secure communication link with the second virtual machine, the public cloud interface using a second security protocol different from the first security protocol.
-
Citations
20 Claims
-
1. A system for managing secure integration of a cloud-based computing resource with a private domain, the system comprising:
-
a hybrid cloud arrangement including a plurality of virtual machines, the plurality of virtual machines including at least a first virtual machine within the private domain and a second virtual machine within a public cloud; a virtual data relay within the private domain and associated with the second virtual machine, the virtual data relay comprising; a private domain interface used to establish a secure communication link according to a first security protocol with each virtual machine within the private domain that is a member of a community of interest, the virtual data relay assigned a community of interest key used by the private domain interface and defining the community of interest of which the second virtual machine is a member; and a public cloud interface used to establish a secure communication link with the second virtual machine, the public cloud interface using a second security protocol different from the first security protocol. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of securely integrating a cloud-based computing resource with a private domain, the method comprising:
-
establishing a virtual data relay in a private domain of a hybrid cloud arrangement including a plurality of virtual machines across a private domain and a cloud-based domain, the virtual data relay dedicated to a cloud-based virtual machine; receiving data addressed to the cloud-based virtual machine at a private domain interface of the virtual data relay according to a first security protocol from a virtual machine within the community of interest, the virtual machine included within the private domain; and transmitting the data to the cloud-based virtual machine according to a second security protocol different from the first security protocol. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A system for managing secure integration of a cloud-based computing resource with a private domain, the system comprising:
-
a hybrid cloud arrangement including a plurality of virtual machines, the plurality of virtual machines including at least a first virtual machine within the private domain and a second virtual machine within a public cloud; a virtual data relay within the private domain and associated with the second virtual machine, the virtual data relay comprising; a private domain interface used to establish a secure communication link according to a Stealth protocol with each virtual machine within the private domain that is a member of a community of interest, the virtual data relay assigned a community of interest key used by the private domain interface to secure communications within a community of interest of which the second virtual machine is a member; and a public cloud interface; a gateway appliance through which communications from the virtual data relay are routed to the second virtual machine, the gateway appliance used to establish a VPN connection between the public cloud interface of the virtual data relay and the second virtual machine; and a licensing appliance accessible to each of the plurality of virtual machines via a licensing community of interest secured using a licensing community of interest key distributed to each of the plurality of virtual machines. - View Dependent Claims (20)
-
Specification