Handoff of virtual machines based on security requirements
First Claim
1. A computer implemented method of transitioning a virtual machine from a first hypervisor to a second hypervisor, the method comprising:
- identifying a request to transition the virtual machine from the first hypervisor to the second hypervisor;
determining security trust requirements for the virtual machine;
exchanging trust information between the first hypervisor and the second hypervisor, wherein exchanging the trust information comprises transferring, from the first hypervisor to the second hypervisor, at least one security phrase, receiving, in the first hypervisor from the second hypervisor, a security phrase response, and comparing the security phrase response with an expected result;
determining whether the second hypervisor is capable of supporting the virtual machine based on the trust information and the security trust requirements for the virtual machine; and
if the second hypervisor is capable of supporting the virtual machine, initiating a handoff of the virtual machine from the first hypervisor to the second hypervisor.
6 Assignments
0 Petitions
Accused Products
Abstract
Examples disclosed herein provide systems, methods, and software to handoff virtual machines between hypervisors. In one implementation, a method of transitioning a virtual machine from a first hypervisor to a second hypervisor includes identifying a request to transition the virtual machine from the first hypervisor to the second hypervisor. The method further provides determining security trust requirements for the virtual machine, and exchanging trust information between the first hypervisor and the second hypervisor. The method further provides determining if the second hypervisor can support the virtual machine based on the security trust requirements and the trust information, and transitioning the device to the second hypervisor if the second hypervisor can support the virtual machine.
38 Citations
16 Claims
-
1. A computer implemented method of transitioning a virtual machine from a first hypervisor to a second hypervisor, the method comprising:
-
identifying a request to transition the virtual machine from the first hypervisor to the second hypervisor; determining security trust requirements for the virtual machine; exchanging trust information between the first hypervisor and the second hypervisor, wherein exchanging the trust information comprises transferring, from the first hypervisor to the second hypervisor, at least one security phrase, receiving, in the first hypervisor from the second hypervisor, a security phrase response, and comparing the security phrase response with an expected result; determining whether the second hypervisor is capable of supporting the virtual machine based on the trust information and the security trust requirements for the virtual machine; and if the second hypervisor is capable of supporting the virtual machine, initiating a handoff of the virtual machine from the first hypervisor to the second hypervisor. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An apparatus to transition a virtual machine from a first hypervisor to a second hypervisor, the apparatus comprising:
-
a processing system; one or more non-transitory computer readable media; and processing instructions stored on the one or more non-transitory computer readable media that, when executed by the processing system, direct the processing system to; identify a request to transition the virtual machine from the first hypervisor to the second hypervisor; determine security trust requirements for the virtual machine; exchange trust information between the first hypervisor and the second hypervisor, wherein exchanging the trust information comprises transferring, from the first hypervisor to the second hypervisor, at least one security phrase, receiving, in the first hypervisor from the second hypervisor, a security phrase response, and comparing the security phrase response with an expected result; determine whether the second hypervisor is capable of supporting the virtual machine based on the trust information and the security trust requirements for the virtual machine; and if the second hypervisor is capable of supporting the virtual machine, initiate a handoff of the virtual machine from the first hypervisor to the second hypervisor. - View Dependent Claims (7, 8, 9, 10, 11)
-
-
12. A computing system to transition virtual machines between hypervisors, the computing system comprising:
-
a first hypervisor; a second hypervisor; a target virtual machine executing via the first hypervisor; the first hypervisor configured to; identify a request to transition the target virtual machine from the first hypervisor to the second hypervisor; determine security trust requirements for the target virtual machine; exchange trust information with the second hypervisor, wherein exchanging the trust information includes transferring at least one security phrase to the second hypervisor, receiving a security phrase response from the second hypervisor, and comparing the security phrase response with an expected result; determine whether the second hypervisor is capable of supporting the virtual machine based on the trust information and the security trust requirements for the virtual machine; and if the second hypervisor is capable of supporting the virtual machine, initiate a handoff of the virtual machine from the first hypervisor to the second hypervisor; and the second hypervisor configured to exchange the trust information with the first hypervisor, wherein exchanging the trust information comprises receiving the at least one security phrase from the first hypervisor and transferring the security phrase response to the first hypervisor. - View Dependent Claims (13, 14, 15, 16)
-
Specification