System and methods for remote maintenance in an electronic network with multiple clients
First Claim
1. A client system comprising:
- a plurality of nodes, including a first node storing software for operation of the client system;
a first virtual machine handling first data associated with an external data center, wherein the first data includes software update data delivered from the external data center to the client system;
a second virtual machine handling second data associated with the first node, wherein the second data specifies at least one of a status, a version and a configuration of the first node;
a virtual machine manager configured to manage data transfer between the first virtual machine and the second virtual machine in association with a trusted platform module;
wherein the first virtual machine is configured to assess a state of the client system and identify a software update for installation on the first node based on a comparison of the first data and the second data, the software update configured to maintain identity between the first data and the second data; and
wherein the virtual machine manager is configured to conduct an attestation process to verify an identity of the external data center using the trusted platform module prior to authorizing the first virtual machine to install the software update on the first node using the second virtual machine.
2 Assignments
0 Petitions
Accused Products
Abstract
A client supported by remote maintenance in an electronic network configured to serve a plurality of clients may comprise a plurality of nodes, a first virtual machine (VM), a second virtual machine, and a virtual machine manager (VMM). The first VM may handle data associated with an external data center. The second VM may be associated with one of the plurality of nodes. The VMM may be configured to manage data transfer between the first VM and the second VM. The first VM may be configured to assess a state of the client system and identify a software update for installation on the one of the plurality of nodes. The software update may be configured to maintain identity between the data in the one of the plurality of nodes and the data center. The VMM may manage an attestation process prior to delivering or installing the software update on the client system using the first VM.
-
Citations
25 Claims
-
1. A client system comprising:
-
a plurality of nodes, including a first node storing software for operation of the client system; a first virtual machine handling first data associated with an external data center, wherein the first data includes software update data delivered from the external data center to the client system; a second virtual machine handling second data associated with the first node, wherein the second data specifies at least one of a status, a version and a configuration of the first node; a virtual machine manager configured to manage data transfer between the first virtual machine and the second virtual machine in association with a trusted platform module; wherein the first virtual machine is configured to assess a state of the client system and identify a software update for installation on the first node based on a comparison of the first data and the second data, the software update configured to maintain identity between the first data and the second data; and wherein the virtual machine manager is configured to conduct an attestation process to verify an identity of the external data center using the trusted platform module prior to authorizing the first virtual machine to install the software update on the first node using the second virtual machine. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An electronic network comprising:
-
a client system having a plurality of nodes, including a first node storing software for operation of the client system; an external data center managing the first node; a first virtual machine on the client system, the first virtual machine handling first data associated with the external data center, wherein the first data includes software update data delivered from the external data center to the client system; a second virtual machine on the client system, the second virtual machine handling second data associated with the first node, wherein the second data specifies at least one of a status, a version and a configuration of the first node; and a virtual machine manager on the client system configured to manage data transfer between the first virtual machine and the second virtual machine in association with a trusted platform module; wherein the first virtual machine is configured to assess a state of the client system and identify a software update for installation from the external data center on the first node based on a comparison of the first data and the second data, the software update configured to maintain identity between the first data and the second data; and wherein the virtual machine manager is configured to complete an attestation process to verify an identity of the external data center using the trusted platform module prior authorizing the first virtual machine to install the software update on the first node using the second virtual machine. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A method of performing remote maintenance in an electronic network configured to serve a plurality of client systems, the method comprising:
-
operating a data center having a database of software associated with a plurality of nodes in a client system, including a first node storing software for operation of the client system; communicating with a first virtual machine hosted by the client system, the first virtual machine handling a first data set associated with the data center, wherein the first data set includes software update data delivered from the external data center to the client system; receiving a request from the first virtual machine identifying a software update for delivery to the first node; sending the software update to the first virtual machine using a closed network; authorizing the first virtual machine to install the software update on the client system using a second virtual machine associated with the first node, wherein the second virtual machine handles second data specifying at least one of a status, a version and a configuration of the first node; and the first virtual machine and the second virtual machine communicating through a virtual machine manager on the client system in association with a trusted platform module, wherein the virtual machine manager is configured to complete an attestation process to verify an identity of the data center using the trusted platform module prior authorizing the first virtual machine to install the software update on the first node using the second virtual machine. - View Dependent Claims (20, 21, 22, 23)
-
-
24. A method of requesting and receiving software updates, the method comprising:
-
hosting a first virtual machine and a second virtual machine on a client system; the first virtual machine handling a first data set associated with an external data center, wherein the first data set includes software update data delivered from the external data center to the client system; the second virtual machine handling a second data set associated with a node in the client system wherein the second data set specifies at least one of a status, a version and a configuration of the node; operating a virtual machine manager configured to manage communication between the first virtual machine and the second virtual machine in association with a trusted platform module; recognizing the first data set is out of identity with the second data set; identifying a software update for delivery to the node, the software update configured to restore identity between the first data set and the second data set; requesting the software update from the external data center; receiving the software update from the external data center to the first virtual machine; after receiving the software update, installing the software update on the node by the second virtual machine; the first virtual machine and the second virtual machine communicating through a virtual machine manager on the client system in association with a trusted platform module, wherein the virtual machine manager is configured to complete an attestation process to verify an identity of the external data center using the trusted platform module prior authorizing the first virtual machine to install the software update on the first node using the second virtual machine. - View Dependent Claims (25)
-
Specification