| 发明名称 |
SECURE DEPLOYMENT OF PROVABLE IDENTITY FOR DYNAMIC APPLICATION ENVIRONMENTS |
| 摘要 |
An invention is described for securely deploying a provable identity for virtual machines (VMs) in a dynamic environment. In an embodiment, a fabric controller instructs a VM host to create a VM and sends that VM a secret. The fabric controller sends that same secret (or a second secret, such as the private key of a public/private key pair) to the security token service along with an instruction to make an account for the VM. The VM presents proof that it possesses the secret to the security token service and in return receives a full token. When a client connects to the deployment, it receives the public key from the security token service, which it trusts, and the full token from the VM. It validates the full token with the public key to determine that the VM has the identity that it purports to have. |
| 申请公布号 |
CA2813601(A1) |
申请公布日期 |
2012.04.12 |
| 申请号 |
CA20112813601 |
申请日期 |
2011.09.23 |
| 申请人 |
MICROSOFT CORPORATION |
发明人 |
JIRKA, IAN;TEVOSYAN, KAHREN;SANDERS, COREY;MOORE, GEORGE M.;SRIVASTAVA, MOHIT;RUSSINOVICH, MARK EUGENE |
| 分类号 |
H04L9/32;G06F21/30;H04L9/14 |
主分类号 |
H04L9/32 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
