Information security – Access control or authentication – Network
Reexamination Certificate
2006-08-29
2011-12-06
Simitoski, Michael (Department: 2439)
Information security
Access control or authentication
Network
C726S009000
Reexamination Certificate
active
08074262
ABSTRACT:
A first processing system determines whether a second processing system provides a trustworthy state for supporting a virtual trusted platform module (TPM), based at least in part on an assertion made by a management authority. The first processing system also determines whether the management authority is trusted. The first processing system may transfer state for the virtual TPM to the second processing system only if (a) the management authority is trusted and (b) the assertion made by the management authority indicates that the second processing system provides a trustworthy environment for supporting the virtual TPM. In one embodiment, the first processing system transfers state for the virtual TPM to the second processing system only if a trust level designation for the second processing system is equal or greater than a trust level for the first processing system. Other embodiments are described and claimed.
REFERENCES:
patent: 7058807 (2006-06-01), Grawrock et al.
patent: 7076655 (2006-07-01), Griffin et al.
patent: 7222062 (2007-05-01), Goud et al.
patent: 7380119 (2008-05-01), Bade et al.
patent: 7454544 (2008-11-01), Bond et al.
patent: 7512815 (2009-03-01), Munetoh
patent: 7552419 (2009-06-01), Zimmer et al.
patent: 2002/0169717 (2002-11-01), Challener
patent: 2002/0193615 (2002-12-01), Aksela et al.
patent: 2002/0194482 (2002-12-01), Griffin et al.
patent: 2003/0115453 (2003-06-01), Grawrock
patent: 2003/0115468 (2003-06-01), Aull et al.
patent: 2003/0226031 (2003-12-01), Proudler et al.
patent: 2004/0264797 (2004-12-01), Lippincott et al.
patent: 2005/0086509 (2005-04-01), Ranganathan
patent: 2005/0132122 (2005-06-01), Rozas
patent: 2005/0138370 (2005-06-01), Goud et al.
patent: 2005/0246552 (2005-11-01), Bade et al.
patent: 2005/0286792 (2005-12-01), Tadas et al.
patent: 2006/0002471 (2006-01-01), Lippincott et al.
patent: 2006/0020781 (2006-01-01), Scarlata et al.
patent: 2006/0026422 (2006-02-01), Bade et al.
patent: 2006/0031436 (2006-02-01), Sakata et al.
patent: 2006/0075223 (2006-04-01), Bade et al.
patent: 2006/0140501 (2006-06-01), Tadas
patent: 2006/0212939 (2006-09-01), England et al.
patent: 2006/0230401 (2006-10-01), Grawrock
patent: 2006/0256105 (2006-11-01), Scarlata et al.
patent: 2006/0256106 (2006-11-01), Scarlata et al.
patent: 2006/0256107 (2006-11-01), Scarlata et al.
patent: 2006/0256108 (2006-11-01), Scaralata
patent: 2007/0043896 (2007-02-01), Daruwala et al.
patent: 2007/0094719 (2007-04-01), Scarlata
patent: 2007/0226786 (2007-09-01), Berger et al.
patent: 2007/0256125 (2007-11-01), Chen
patent: 2007/0300069 (2007-12-01), Rozas
patent: 2008/0282348 (2008-11-01), Proudler et al.
patent: 2009/0169012 (2009-07-01), Smith et al.
patent: 02/06929 (2002-01-01), None
Garfinkel, Tal et al. “Terra: A Virtual Machine-Based Platform for Trusted Computing”, 2003.
Kuhlmann, Dirk et al. “An Open Trusted Computing Architecture—Secure Virtual Machines Enabling User-Defined Policy Enforcement”, Aug. 2006.
Tan, Hock Kim et al. “Certificates for Mobile Code Security”, 2002.
Menezes, Alfred J. et al. Handbook of Applied Cryptography, 1997 CRC Press, pp. 570-573.
TCG. “Trusted Computing Platform Alliance (TCPA) Main Specification Version 1.1b”, Feb. 2002.
Kuhn, Ulrich et al. “Secure Data Management in Trusted Computing”, Aug. 29-Sep. 1, 2005.
U.S. Appl. No. 10/876,994: “Method and Apparatus for Providing Secure Virtualization of a Trusted Platform Module;” inventors: Carlos Rozas, Vincent Scarlate.
TPM Main; Part 1 Design Principles; Specification Version 1.2; Revision 94; Mar. 29, 2006; Part 37: Certified Migration Key Type (pdf pp. 1-12, 168-170). Available from https://www.trustedcomputinggroup.org/specs/TPM/ at the “Design Principles” link under Revision 94.
“vTPM: Virtualizing the Trusted Platform Module;” Stefan Berger et al.; Security '06: 15th USENIX Security Symposium.
“Property-based Attestation for Computing Platforms: Caring about properties, not mechanisms;” Ahmad-Reza Sadeghi et al. Available from http://delivery.acm.org/10.1145/1070000/1066038/p67-sadeghi.pdf?key1=1066038&key2=4269876511&coll=&d1=ACM&CFID=15151515&CFTOKEN=6184618.
Petroni et al., “Copilot—A Coprocessor-based Kernel Runtime Integrity Monitor”, Proceedings of the 13th USENIX Security Symposium, San Diego, CA, Aug. 9-13, 2004, 17 pgs.
Mario Strasser, “A Software-based TPM Emulator for Linux”, Semester Thesis, Eidgenssische Technische Hochschule Zurich, Jul. 2004, Zurich, Switzerland, 52 pgs.
Reiner Sailer et al., “Design and Implementation of a TCG-based Integrity Measurements Architecture”, Proceedings of the 13th USENIX Security Symposium, San Diego, CA, Aug. 9-13, 2004, 20 pgs.
John Marchesini et al., “Experimenting with TCPA/TCG Hardware, Or: How I Learned to Stop Worrying and Love the Bear”, Computer Science Tech Report TR2003-476, Dept. of Computer Science, Dartmouth PKI Lab Dartmouth College, Hanover, New Hampshire, Version of Dec. 15, 2003, 22 pgs.
Charles S. Powell et al., “Foundations for Trusted Computing”, Infineon Technologies AG, London, England, Nov. 7, 2002, 87 pgs.
http://ieeexplore.ieee.org/ie15/2/20660/00955100.pdf?arnumber=955100—“Building the IBM 4758 Secure Coprocessor”.
Michael M. Swift et al., “Improving the Reliability of Commodity Operating Systems”, Proceedings of the 13th USENIX Security Symposium, San Diego, CA, Aug. 9-13, 2004, 18 pgs.
Intel Corp., “Intel Trusted Execution Technology”, Preliminary Architecture Specification, Nov. 2006, 104 pgs.
Carlos Rozas et al., “Methods and Apparatus for Remeasuring a Virtual Machine Monitor”, U.S. Appl. No. 11/648,103, filed Dec. 29, 2006.
George W. Dunlap et al., “ReVirt: Enabling Intrusion Analysis through Virtual-Machine Logging and Replay”, Proceedings of the 2002 Symposium on Operating Systes Design and Implementation (OSDI), Dept. of Electrical Engineering and Computer Science, Univ. of Michigan, 14 pgs.
Keir Fraser et al., “Safe Hardware Access with the Xen Virtual Machine Monitor”, 2004, 12 pgs. http://www.cl.cam.ac.uk/Research/SRG
etos/papers/2004-oasis-ngio.pdf.
Robert Meushaw et al., Tech Trend Notes, “NetTop—Commercial Technology in High Assurance Applications”, Fall 2000, vol. 9, Edition 4, 12 pgs.
Tal Garfinkel et al., “TERRA—A virtual machine-based platform for trusted computing”, (Presentation), Nov. 10, 2004, 26 pgs. http://www.stanford.edu/˜talg/papers/SOSP03/terra.pdf.
David Grawrock et al., “The Intel Safer Computing Initiative”, Jan. 2006, 282 pgs.
David Safford, “The Need for TCPA”, IBM Research, Oct. 2002, 10 pgs., http://www.research.ibm.com/gsal/tcpa/why—tcpa.pdf.
Carlos Rozas et al., “Dynamic Measurement of an Operating System in a Virtualized System”, U.S. Appl. No. 11/513,963, filed Aug. 31, 2006.
N. Sumrall et al., Trusted Computing Group (TCG) and the TPM 1.2 Specification, Intel Developer Forum, 32 pgs.
http://www.trustedcomputinggroup.org/home—“What is the Trusted Computing Group”, (internet home page), 2 pgs.
Trusted Computing Platform Alliance (TCPA) Main Specification, Version 1.1b, Trusted Computing Group, 2003, 332 pgs.
Applied Data Security Group, “Trusted GRUB”, 3 pgs. http://www.prosec.rub.de/trusted—grub.html.
VMWARE, “VMware Reinvents Enterprise Desktop Management and Security with Breakthrough New Product”, 4 pgs. http://www.vmware.com
ews/release/ace—announce.html.
Tal Garfinkel et al., “TERRA—A Virtual Machine-Based Platform for Trusted Computing”, (Article), SOSP '03, Oct. 19-22, 2003, 16 pgs.
Paul Barham et al., “Xen and the Art of Virtualization”, SOSP '03, Oct. 19-22, 2003, Bolton Landing, NY, 16 pgs.
U.S. Patent and Trademark Office, Office Action M
Intel Corporation
Simitoski Michael
Trop Pruner & Hu P.C.
LandOfFree
Method and apparatus for migrating virtual trusted platform... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for migrating virtual trusted platform..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for migrating virtual trusted platform... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4305890