Methods and systems for holistically attesting the trust of heterogeneous compute resources

Assignee

• HyTrust, Inc. · US

Inventors

• Govindarajan Rangarajan · Sunnyvale, US
• Hemma Prafullchandra · Mountain View, US
• Sean Murphy · San Francisco, US
• LAXMANA KUMAR BHAVANDLA · Nashua, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2009/45595
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A trust management system may be configured to compute a trust level for a compute resource based on a trust manifest corresponding to compute resource. Based on the construction of a trust manifest for each class of compute resources, a trust level may be computed for a wide range of compute resources, including bare-metal hosts, hypervisor hosts, virtual machines and containers. A trust manifest may specify one or more inputs for calculating the trust level, as well as how the inputs are to be processed to arrive at the trust level. The one or more inputs may include integrity measurements determined in accordance with one or more integrity measurement methods and security assessments determined in accordance with one or more security assessment methods. The inputs for the trust level calculation may be evaluated by one or more rule statements specified in the trust manifest, the evaluation of which returns the trust level for the compute resource.