SECURED LIVE SOFTWARE MIGRATION
First Claim
Patent Images
1. A system to support secured live migration of software, comprising:
- an encryption component embodied in a machine readable medium;
a decryption component embodied in a machine readable medium;
a software component running at a first host;
a secured live migration engine wherein, in operation;
encrypts one or more pages of the software component running at the first host via the encryption component;
migrates the software component live from the first host to a second host over a network;
decrypts the one or more encrypted pages of the software component at the second host via the decryption component;
keeps the software component operational during the encrypting, migrating, and decrypting steps.
4 Assignments
0 Petitions
Accused Products
Abstract
A novel approach is introduced for secured live migration of a software component currently running on one hosting device to another hosting device. One or more pages of the software component are encrypted before migration of the software component, and are later decrypted after the migration is complete. The software component is kept operational during the encryption, migration, and decryption of the software component. The one or more pages to be encrypted and decrypted can be selected based on data sensitivity and/or other criteria.
119 Citations
22 Claims
-
1. A system to support secured live migration of software, comprising:
-
an encryption component embodied in a machine readable medium; a decryption component embodied in a machine readable medium; a software component running at a first host; a secured live migration engine wherein, in operation; encrypts one or more pages of the software component running at the first host via the encryption component; migrates the software component live from the first host to a second host over a network; decrypts the one or more encrypted pages of the software component at the second host via the decryption component; keeps the software component operational during the encrypting, migrating, and decrypting steps. - View Dependent Claims (2, 3, 7, 8, 9, 10, 11, 12, 13)
-
-
4. A system to support secured live migration of virtual machine, comprising:
-
an encryption component plugged-in on a first virtual machine monitor operating on a first host; a decryption component plugged-in on a second virtual machine monitor operating on a second host; a virtual machine running at the first host; a live secured live migration engine wherein, in operation; encrypts one or more pages of image of the virtual machine running at the first host via the encryption component; migrates the virtual machine live from the first host to a second host over a network; decrypts the one or more encrypted pages of the image of the virtual machine at the second host via the decryption component; keeps the software component operational during the encrypting, migrating, and decrypting steps. - View Dependent Claims (5, 6)
-
-
14. A method to support secured live migration of software, comprising:
-
encrypting one or more pages of a software component running at a first host; migrating the software component live from the first host to a second host over a network; decrypting the one or more encrypted pages of the software component at the second host; keeping the software component operational during the encrypting, migrating, and decrypting steps. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
-
15. A method to support secured live migration of virtual machine, comprising:
-
encrypting one or more pages of image of a virtual machine running at a first host; migrating the virtual machine live from the first host to a second host over a network; decrypting the one or more encrypted pages of the image of the virtual machine at the second host; keeping the software component operational during the encrypting, migrating, and decrypting steps.
-
-
22. A system to support secured live migration of software, comprising:
-
means for encrypting one or more pages of the software component running at the first host before migration of the software component; means for migrating the software component live from the first host to a second host over a network; means for decrypting the one or more encrypted pages of the software component at the second host after migration of the software component; means for keeping the software component operational and/or the migration transparent to a user of the software component during the encrypting, migrating, and decrypting steps.
-
Specification