Abstract: A trusted container management system provides process supervision, such as for software or other executable processes. In an embodiment, a particular edge controller can include a Rich Execution Environment (REE) and a Trusted Execution Environment (TEE). In an example, an application executes in a container of the REE and generates communication data and a signature identifier. A DeftT publication is generated and includes the communication data. An untrusted validator in the REE evaluates the DeftT publication according to a trust rule associated with the communication data and publishes the DeftT publication. A secure validator executing in a Trusted Execution Environment (TEE) further evaluates the DeftT publication. The further evaluation can include subscribing to the certificate identified by the signature identifier, determining the public key and the role of the certificate, and validating the DeftT publication based on the public key.
Type:
Grant
Filed:
August 4, 2023
Date of Patent:
June 3, 2025
Assignee:
Operants Networks
Inventors:
Roger L. Jungerman, Randall King, Andrew B. Bartels