Patent · US Active

I/O encryption device protected against malicious hypervisors

US11055424B2 · kind B2 · utility

0Cited by

6References

20Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Christoph Vincent Schlameuss · Waldenbuch, DE
Christoph Raisch · Gerlingen, DE
Carsten Otte · Stuttgart, DE
Marco Kraemer · Sindelfingen, DE
Jakob C. Lang · Altdorf, DE
Stefan Roscher · Stuttgart, DE

Key dates

Filing date	Dec 12, 2018
Grant date	Jul 6, 2021
Priority date	—
Expiry date	Jan 1, 2040

Classification

Technology area (CPC G)Physics
CPC primaryG06F2009/45587
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A cloud computing system includes a virtual server outputs non-encrypted data and receives encrypted data in response to receiving a write request signal and a read request signal. A hosting server hypervisor receives the write request signal and the read request signal. In response to receiving the write request signal the hosting server hypervisor writes encrypted data corresponding to the write request signal into a storage device. In response to receiving the read request signal the hosting server hypervisor obtains encrypted data corresponding to a data read request signal from the storage device and outputs the encrypted data. A secure channel sub-system is installed between the at least one virtual server and the hosting server hypervisor. The secure channel sub-system stores a virtual device key in a key storage unit and prevents the virtual server and the hosting server hypervisor from accessing the key

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.