Driver domain as security monitor in virtualization environment
US8707417B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Feb 14, 2012 |
| Grant date | Apr 22, 2014 |
| Priority date | — |
| Expiry date | Mar 18, 2032 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0263
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A virtualization platform includes a number of virtual machines, one of which is configured as a driver domain and includes the network service control for routing network traffic between the other virtual machines. The privileged domain does not include the network service control. The network service control includes network backend interfaces and a virtual switch or bridge. The driver domain includes a PCI driver for direct communication with a network interface card. The driver domain includes hooking software and an inspection agent. Packets passing between the other virtual machines pass through the driver domain, are hooked, and are inspected by inspection agent to determine if they are malicious or not. Malicious packets are blocked. The driver domain may also utilize a PCI driver of the privileged domain for access to the network interface card. Platforms with or without pass-through mode may be used.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.