发明名称 |
Method and system for providing a trusted platform module in a hypervisor environment |
摘要 |
A method is presented for implementing a trusted computing environment within a data processing system. A hypervisor is initialized within the data processing system, and the hypervisor supervises a plurality of logical, partitionable, runtime environments within the data processing system. The hypervisor reserves a logical partition for a hypervisor-based trusted platform module (TPM) and presents the hypervisor-based trusted platform module to other logical partitions as a virtual device via a device interface. Each time that the hypervisor creates a logical partition within the data processing system, the hypervisor also instantiates a logical TPM within the reserved partition such that the logical TPM is anchored to the hypervisor-based TPM. The hypervisor manages multiple logical TPM's within the reserved partition such that each logical TPM is uniquely associated with a logical partition.
|
申请公布号 |
US7707411(B2) |
申请公布日期 |
2010.04.27 |
申请号 |
US20080261060 |
申请日期 |
2008.10.30 |
申请人 |
INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
BADE STEVEN A.;CATHERMAN RYAN CHARLES;HOFF JAMES PATRICK;KELLEY NIA LETISE;RATLIFF EMILY JANE |
分类号 |
G06F21/00;G06F21/24;G06F1/00;G06F3/00;G06F12/00;G06F12/14;G06F21/22 |
主分类号 |
G06F21/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|