-
公开(公告)号:US11438151B2
公开(公告)日:2022-09-06
申请号:US16750786
申请日:2020-01-23
Applicant: Cisco Technology, Inc.
Inventor: Eric Voit , Peter Panburana
Abstract: The present technology discloses a method for enriching local crypto-processor queries with software-defined networking augmented information, comprising sending, from a virtual machine installed on a physical host, a request for trust verification data; augmenting, by an identity verification system on the physical host, the request for trust verification data with encrypted information from an external entity; receiving, at a trusted processor module on the physical host, the request for trust verification data; receiving, at the virtual machine, the trust verification data; and assessing, at the virtual machine, a state of the physical host based on the trust verification data.
-
公开(公告)号:US20200322143A1
公开(公告)日:2020-10-08
申请号:US16750786
申请日:2020-01-23
Applicant: Cisco Technology, Inc.
Inventor: Eric Voit , Peter Panburana
Abstract: The present technology discloses a method for enriching local crypto-processor queries with software-defined networking augmented information, comprising sending, from a virtual machine installed on a physical host, a request for trust verification data; augmenting, by an identity verification system on the physical host, the request for trust verification data with encrypted information from an external entity; receiving, at a trusted processor module on the physical host, the request for trust verification data; receiving, at the virtual machine, the trust verification data; and assessing, at the virtual machine, a state of the physical host based on the trust verification data.
-
公开(公告)号:US11558198B2
公开(公告)日:2023-01-17
申请号:US16841997
申请日:2020-04-07
Applicant: Cisco Technology, Inc.
Inventor: Eric Voit , Srinivas Vundru , Peter Panburana , David Wayne Mills , Pradeep Kumar Kathail
Abstract: The present technology discloses methods and systems for receiving a security profile request from an integrity verifier, the request including a nonce; requesting, from a trusted platform module, a new nonce, wherein the new nonce is generated at least in part by the nonce and a current timestamp from a clock in the trusted platform module; receiving, from the trusted platform module, the new nonce; requesting, from a cryptoprocessor, a set of platform configuration registers; receiving, from the cryptoprocessor, the set of platform configuration registers; and sending a response to the integrity verifier, the response including the new nonce and the set of platform configuration registers to verify a security status of the trusted platform module and the cryptoprocessor.
-
公开(公告)号:US20210314161A1
公开(公告)日:2021-10-07
申请号:US16841997
申请日:2020-04-07
Applicant: Cisco Technology, Inc.
Inventor: Eric Voit , Srinivas Vundru , Peter Panburana , David Wayne Mills , Pradeep Kumar Kathail
Abstract: The present technology discloses methods and systems for receiving a security profile request from an integrity verifier, the request including a nonce; requesting, from a trusted platform module, a new nonce, wherein the new nonce is generated at least in part by the nonce and a current timestamp from a clock in the trusted platform module; receiving, from the trusted platform module, the new nonce; requesting, from a cryptoprocessor, a set of platform configuration registers; receiving, from the cryptoprocessor, the set of platform configuration registers; and sending a response to the integrity verifier, the response including the new nonce and the set of platform configuration registers to verify a security status of the trusted platform module and the cryptoprocessor.
-
-
-
Search Results
4
records
(took 0.015 seconds)
