Patent · US Active

Secure deployment of provable identity for dynamic application environments

US8990562B2 · kind B2 · utility

2Cited by

0References

20Claims

0Family size

Assignee

MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

Ian C. Jirka · Snoqualmie, US
Kahren Tevosyan · Kirkland, US
Corey M. Sanders · Seattle, US
George M. Moore · Issaquah, US
Mohit Srivastava · Noida, IN
Mark Eugene Russinovich · Hunts Point, US

Key dates

Filing date	Oct 8, 2010
Grant date	Mar 24, 2015
Priority date	—
Expiry date	May 26, 2031

Classification

Technology area (CPC G)Physics
CPC primaryG06F2009/45562
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

An invention is described for securely deploying a provable identity for virtual machines (VMs) in a dynamic environment. In an embodiment, a fabric controller instructs a VM host to create a VM and sends that VM a secret. The fabric controller sends that same secret (or a second secret, such as the private key of a public/private key pair) to the security token service along with an instruction to make an account for the VM. The VM presents proof that it possesses the secret to the security token service and in return receives a full token. When a client connects to the deployment, it receives the public key from the security token service, which it trusts, and the full token from the VM. It validates the full token with the public key to determine that the VM has the identity that it purports to have.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.