专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09239909B2 Approaches for protecting sensitive data within a guest operating system 有权
标题翻译：在客户机操作系统中保护敏感数据的方法
公开(公告)号：US09239909B2
公开(公告)日：2016-01-19
申请号：US13358434
申请日：2012-01-25
申请人： Gianni Tedesco , Anushree Pole , Andrew Southgate , Ian Pratt , Vikram Kapoor , Gaurav Banga
发明人： Gianni Tedesco , Anushree Pole , Andrew Southgate , Ian Pratt , Vikram Kapoor , Gaurav Banga
IPC分类号： G06F21/24 , G06F21/00 , G06F21/53 , G06F21/62 , G06F21/74
CPC分类号： G06F21/00 , G06F21/53 , G06F21/62 , G06F21/74 , G06F2221/2143
摘要： Approaches for preventing unauthorized access of sensitive data within an operating system (OS), e.g., a guest OS used by a virtual machine. Dummy data may be written over physical locations on disk where sensitive data is stored, thereby preventing a malicious program from accessing the sensitive data. Alternately, a delete operation may be performed on sensitive data within an OS, and thereafter the OS is converted into a serialized format to expunge the deleted data. The serialized OS is converted into a deserialized form to facilitate its use. Optionally, a data structure may be updated to identify where sensitive data is located within an OS. When a request to access a portion of the OS is received, the data structure is consulted to determine whether the requested portion contains sensitive data, and if so, dummy data is returned to the requestor without consulting the requested portion of the OS.
摘要翻译：用于防止操作系统（OS）内的敏感数据的未经授权的访问的方法，例如虚拟机使用的访客操作系统。虚拟数据可以写在存储敏感数据的磁盘上的物理位置上，从而防止恶意程序访问敏感数据。或者，可以对OS内的敏感数据执行删除操作，然后将OS转换为序列化格式以清除已删除的数据。序列化的操作系统被转换为反序列化的形式以便于其使用。可选地，可以更新数据结构以识别敏感数据位于OS内的位置。当接收到访问OS的一部分的请求时，参考数据结构以确定所请求的部分是否包含敏感数据，如果是，则将虚拟数据返回给请求者而不咨询所请求的OS部分。

2. 发明申请

US20130191924A1 Approaches for Protecting Sensitive Data Within a Guest Operating System 有权
标题翻译：在客户机操作系统中保护敏感数据的方法
公开(公告)号：US20130191924A1
公开(公告)日：2013-07-25
申请号：US13358434
申请日：2012-01-25
申请人： Gianni Tedesco , Anushree Pole , Andrew Southgate , Ian Pratt , Vikram Kapoor , Gaurav Banga
发明人： Gianni Tedesco , Anushree Pole , Andrew Southgate , Ian Pratt , Vikram Kapoor , Gaurav Banga
IPC分类号： G06F21/24
CPC分类号： G06F21/00 , G06F21/53 , G06F21/62 , G06F21/74 , G06F2221/2143
摘要： Approaches for preventing unauthorized access of sensitive data within an operating system (OS), e.g., a guest OS used by a virtual machine. Dummy data may be written over physical locations on disk where sensitive data is stored, thereby preventing a malicious program from accessing the sensitive data. Alternately, a delete operation may be performed on sensitive data within an OS, and thereafter the OS is converted into a serialized format to expunge the deleted data. The serialized OS is converted into a deserialized form to facilitate its use. Optionally, a data structure may be updated to identify where sensitive data is located within an OS. When a request to access a portion of the OS is received, the data structure is consulted to determine whether the requested portion contains sensitive data, and if so, dummy data is returned to the requestor without consulting the requested portion of the OS.
摘要翻译：用于防止操作系统（OS）内的敏感数据的未经授权的访问的方法，例如虚拟机使用的访客操作系统。虚拟数据可以写在存储敏感数据的磁盘上的物理位置上，从而防止恶意程序访问敏感数据。或者，可以对OS内的敏感数据执行删除操作，然后将OS转换为序列化格式以清除已删除的数据。序列化的操作系统被转换为反序列化的形式以便于其使用。可选地，可以更新数据结构以识别敏感数据位于OS内的位置。当接收到访问OS的一部分的请求时，参考数据结构以确定所请求的部分是否包含敏感数据，如果是，则将虚拟数据返回给请求者而不咨询所请求的OS部分。

3. 发明授权

US09767274B2 Approaches for efficient physical to virtual disk conversion 有权
公开(公告)号：US09767274B2
公开(公告)日：2017-09-19
申请号：US13302123
申请日：2011-11-22
申请人： Gaurav Banga , Ian Pratt , Simon Crosby , Vikram Kapoor , Kiran Bondalapati , Vadim Dmitriev
发明人： Gaurav Banga , Ian Pratt , Simon Crosby , Vikram Kapoor , Kiran Bondalapati , Vadim Dmitriev
IPC分类号： G06F9/455 , G06F21/53 , G06F9/44
CPC分类号： G06F21/53 , G06F9/4406 , G06F9/45558 , G06F2009/45579
摘要： Approaches for providing a guest operating system to a virtual machine. A read-only copy of one or more disk volumes, including a boot volume, is created. A copy of a master boot record (MBR) for the one or more disk volumes is also stored. The read-only copy may be, but need not be, made using a Volume Shadow Copy Service (VSS). A virtual disk, for use by the virtual machine, is created based on the read-only copy of the one or more disk volumes and the copy of the master boot record (MBR), wherein the virtual disk comprises the guest operating system used by the virtual machine. In this way, a single installed operating system may provide both the host operating system and the guest operating system.

4. 发明授权

US09128743B1 Graphic visualization of a suspended virtual machine 有权
标题翻译：挂起虚拟机的图形可视化
公开(公告)号：US09128743B1
公开(公告)日：2015-09-08
申请号：US13527550
申请日：2012-06-19
申请人： Kiran Bondalapati , Gaurav Banga , Vikram Kapoor , Ian Pratt , Prakash Buddhiraja , Stephen Rice
发明人： Kiran Bondalapati , Gaurav Banga , Vikram Kapoor , Ian Pratt , Prakash Buddhiraja , Stephen Rice
IPC分类号： G06F9/455
CPC分类号： G06F9/45558 , G06F9/451 , G06F9/45529 , G06F2009/45575
摘要： Representing a non-executing virtual machine with a graphical representation. Resource consumption on a hardware device is monitored. A policy that considers at least a present level of resource consumption and an amount of available resources of the hardware device is consulted. An operational state of a particular virtual machine that resides on the hardware device is changed to a non-executing state. An image that represents the virtual machine is displayed. The image is based upon the state of the virtual machine immediately prior to the virtual machine entering the non-executing state.
摘要翻译：用图形表示代表一个不执行的虚拟机。监视硬件设备上的资源消耗。参考至少考虑了目前的资源消耗水平和硬件设备的可用资源量的策略。驻留在硬件设备上的特定虚拟机的操作状态被改变为不执行状态。显示代表虚拟机的映像。该映像基于虚拟机在虚拟机进入非执行状态之前的状态。

5. 发明授权

US10095662B1 Synchronizing resources of a virtualized browser 有权
公开(公告)号：US10095662B1
公开(公告)日：2018-10-09
申请号：US13526409
申请日：2012-06-18
申请人： Kiran Bondalapati , Vikram Kapoor , Prakash Buddhiraja , Gaurav Banga , Ian Pratt
发明人： Kiran Bondalapati , Vikram Kapoor , Prakash Buddhiraja , Gaurav Banga , Ian Pratt
IPC分类号： G06F17/21
摘要： Approaches for synchronizing resources of a virtualized web browser. When a virtualized web browser is instructed to display a web page, a host module executing within a host operating instructs retrieves, from each of one or more virtual machines, contents for a portion of the web page. The virtualized web browser assembles the contents and displays the web page. A web browser executing in the host operating system may, but need not, retrieve any of the content displayed thereby. Instead, the content retrieved by the web browser executing in the host operating system may be retrieved by and rendered within a virtual machine. The behavior of the virtualized web browser may be configured using policy data.

6. 发明授权

US09727534B1 Synchronizing cookie data using a virtualized browser 有权
公开(公告)号：US09727534B1
公开(公告)日：2017-08-08
申请号：US13526390
申请日：2012-06-18
申请人： Prakash Buddhiraja , Kiran Bondalapati , Vikram Kapoor , Gaurav Banga , Ian Pratt
发明人： Prakash Buddhiraja , Kiran Bondalapati , Vikram Kapoor , Gaurav Banga , Ian Pratt
IPC分类号： G06F17/21
CPC分类号： G06F17/21 , G06F17/30899 , H04L63/1441
摘要： Approaches for synchronizing cookie data across a virtualized web browser. When a user instructs a virtualized web browser, executing on a host operating system, to display a web page, a host module executing on the host operating system instructs a particular virtual machine to retrieve the web page within the particular virtual machine. The host module provides cookie data for the user to the guest module. The cookie data identifies one or more cookies deemed to be pertinent to the retrieval of the web page. The guest module provides, to the host module, screen data content for use in displaying the web page.

7. 发明授权

US09354906B1 Managing the eviction process 有权
标题翻译：管理驱逐程序
公开(公告)号：US09354906B1
公开(公告)日：2016-05-31
申请号：US13468805
申请日：2012-05-10
申请人： Krzysztof Uchronski , Martin O'Brien , Jacob Gorm Hansen , Kiran Bondalapati , Ian Pratt , Gaurav Banga , Vikram Kapoor
发明人： Krzysztof Uchronski , Martin O'Brien , Jacob Gorm Hansen , Kiran Bondalapati , Ian Pratt , Gaurav Banga , Vikram Kapoor
IPC分类号： G06F9/46 , G06F12/00 , G06F9/455 , G06F12/10
CPC分类号： G06F9/45545 , G06F9/5027 , G06F9/5077 , G06F2009/45562 , G06F2009/45587 , G06F2209/5018
摘要： Managing the guest operating system's eviction of memory pages from a virtual machine. A guest operating system or a hypervisor may cause one or more memory pages within a guest physical frame to become unlikely or ineligible for selection as a candidate for eviction by the guest operating system. Each of the one or more memory pages may also reside, or be intended to reside, in the memory of one or more other virtual machines. In this way, memory pages that are shared across multiple virtual machines may become less likely to be evicted, thereby using memory more efficiently.
摘要翻译：管理客户机操作系统从虚拟机中删除内存页面。客户机操作系统或管理程序可能导致客户物理帧内的一个或多个存储器页面变得不太可能或不符合选择作为客户操作系统驱逐的候选者的资格。一个或多个存储器页面中的每一个也可以驻留或者意图驻留在一个或多个其他虚拟机的存储器中。以这种方式，跨多个虚拟机共享的内存页可能不太可能被驱逐，从而更有效地使用内存。

8. 发明授权

US09135038B1 Mapping free memory pages maintained by a guest operating system to a shared zero page within a machine frame 有权
标题翻译：将由客户机操作系统维护的可用内存页面映射到机器框架内的共享零页面
公开(公告)号：US09135038B1
公开(公告)日：2015-09-15
申请号：US13468742
申请日：2012-05-10
申请人： Krzysztof Uchronski , Martin O'Brien , Jacob Gorm Hansen , Kiran Bondalapati , Ian Pratt , Gaurav Banga , Vikram Kapoor
发明人： Krzysztof Uchronski , Martin O'Brien , Jacob Gorm Hansen , Kiran Bondalapati , Ian Pratt , Gaurav Banga , Vikram Kapoor
IPC分类号： G06F9/455
CPC分类号： G06F9/45533 , G06F9/45558 , G06F9/5027 , G06F9/5077 , G06F2009/45579 , G06F2009/45583 , G06F2209/5018
摘要： Reducing an amount of memory used by a virtual machine. A system includes multiple virtual machines that share common pages of memory. The number of private pages associated with each virtual machine is minimized by ensuring that pages that a guest operating system regards as now free or zeroed are efficiently mapped by the hypervisor to a shared zero page. Upon a hypervisor determining that one or more guest physical frame numbers are assigned to free memory pages, the hypervisor updates mapping data to map the one or more guest physical frame numbers to a shared zero page within the machine frame.
摘要翻译：减少虚拟机使用的内存量。一个系统包括多个共享共享页面的虚拟机。通过确保客户机操作系统视为现在空闲或归零的页面被管理程序有效地映射到共享零页面，从而最小化与每个虚拟机相关联的私有页面的数量。在管理程序确定将一个或多个客体物理帧号码分配给空闲存储器页面时，管理程序更新映射数据以将一个或多个客户物理帧号映射到机器帧内的共享零页面。

9. 发明授权

US09104837B1 Exposing subset of host file systems to restricted virtual machines based on upon performing user-initiated actions against host files 有权
标题翻译：基于对主机文件执行用户发起的操作，将主机文件系统的子集暴露给受限虚拟机
公开(公告)号：US09104837B1
公开(公告)日：2015-08-11
申请号：US13526423
申请日：2012-06-18
申请人： Deepak Khajuria , Gaurav Banga , Ian Pratt , Vikram Kapoor
发明人： Deepak Khajuria , Gaurav Banga , Ian Pratt , Vikram Kapoor
IPC分类号： G06F9/455 , G06F21/00 , G06F9/50 , G06F21/53
CPC分类号： G06F21/00 , G06F9/455 , G06F9/45533 , G06F9/45558 , G06F9/50 , G06F21/53 , G06F2009/45579 , G06F2009/45587
摘要： Approaches for securing resources of a virtual machine. An application executes on a host operating system. A user instructs the application to display a file. In response, a host module executing on the host operating system instructs a guest module, executing within a virtual machine, to render the file within the virtual machine. The application displays the file using screen data which was created within the virtual machine and defines a rendered representation of the file. The user is prevented from accessing any resource of the virtual machine unrelated to the file. The virtual machine may consult policy data to determine how to perform certain user-initiated actions within the virtual machine. Examples of the file include image, a document, an email, and a web page.
摘要翻译：保护虚拟机资源的方法。应用程序在主机操作系统上执行。用户指示应用程序显示文件。作为响应，在主机操作系统上执行的主机模块指示在虚拟机内执行的访客模块呈现虚拟机内的文件。应用程序使用在虚拟机中创建的屏幕数据显示文件，并定义文件的呈现表示。禁止用户访问与该文件无关的虚拟机的任何资源。虚拟机可以参考策略数据来确定如何在虚拟机内执行某些用户启动的动作。该文件的示例包括图像，文档，电子邮件和网页。

10. 发明授权

US09792131B1 Preparing a virtual machine for template creation 有权
公开(公告)号：US09792131B1
公开(公告)日：2017-10-17
申请号：US13468781
申请日：2012-05-10
申请人： Krzysztof Uchronski , Martin O'Brien , Jacob Gorm Hansen , Kiran Bondalapati , Ian Pratt , Gaurav Banga , Vikram Kapoor
发明人： Krzysztof Uchronski , Martin O'Brien , Jacob Gorm Hansen , Kiran Bondalapati , Ian Pratt , Gaurav Banga , Vikram Kapoor
IPC分类号： G06F9/455
CPC分类号： G06F9/455 , G06F9/45545 , G06F9/5027 , G06F9/5077 , G06F2009/45562 , G06F2009/45587 , G06F2209/5018
摘要： Approaches for creating a template virtual machine. An in-memory state of a virtual machine and/or a set of applications executing within the virtual machine are adjusted and/or configured based on the intended use of the template virtual machine. Thereafter, the virtual machine is established as a template virtual machine. The template virtual machine may be used to create one or more virtual machines using a copy-on-write memory process.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式