Virtual Machine Task Or Process Management Patents (Class 718/1)
  • Patent number: 9817688
    Abstract: A virtualization manager receives a request to disconnect a virtual device associated with a virtual machine. The virtualization manager then determines a usage state of the virtual device in view of collected usage statistics for the virtual device. Responsive to determining that the determined usage state of the virtual device indicates that the virtual device is in use, the virtualization manager requests confirmation for disconnecting the virtual device from the virtual machine.
    Type: Grant
    Filed: February 18, 2015
    Date of Patent: November 14, 2017
    Assignee: Red Hat Israel, Ltd.
    Inventors: Alona Kaplan, Michael Kolesnik
  • Patent number: 9817734
    Abstract: Techniques for enabling virtual machine (VM) recovery on non-shared storage in a single virtual infrastructure management server (VIMS) instance are provided. In one set of embodiments, a VIMS instance can receive an indication that a VM in a first cluster of the VIMS instance has failed, and can determine whether the VM's files were being replicated to a storage component of the VIMS instance at the time of the VM's failure. If the VM's files were being replicated at the time of the failure, the VIMS instance can search for and identify a cluster of the VIMS instance and a host system within the cluster that (1) are compatible with the VM, and (2) have access to the storage component. The VIMS instance can then cause the VM to be restarted on the identified host system of the identified cluster.
    Type: Grant
    Filed: June 29, 2015
    Date of Patent: November 14, 2017
    Assignee: VMware, Inc.
    Inventors: Joanne Ren, Keith Farkas, Mike Zucca, Parth Shah
  • Patent number: 9813500
    Abstract: A method of allocating cloud storage based on storage profiles includes receiving a storage request from a virtual machine associated with a tenant at a computing apparatus having connectivity to a network. The storage request is analyzed to determine one or more storage attributes of the storage request. An infrastructure is configured in a configuration based on the one or more storage attributes and data associated with the storage request is stored in the infrastructure in accordance with the configuration.
    Type: Grant
    Filed: June 12, 2015
    Date of Patent: November 7, 2017
    Assignee: Cisco Technology, Inc.
    Inventor: Seth Mason
  • Patent number: 9811376
    Abstract: Techniques for preserving the state of virtual machine instances during a migration from a source location to a target location are described herein. A set of credentials configured to provide access to a storage device by a virtual machine instance at the source location is provided to the virtual machine instance. When the migration from the source location to the target location starts, a second set of credentials configured to provide access to a storage device by a virtual machine instance at the source location is provided to the virtual machine instance. During the migration, a response to an input-output request is provided to one or more of the locations using the set of credentials and based at least in part on the state of the migration.
    Type: Grant
    Filed: June 29, 2015
    Date of Patent: November 7, 2017
    Assignee: Amazon Technologies, Inc.
    Inventors: Pieter Kristian Brouwer, Kristina Kraemer Brenneman, Marc John Brooker, Jerry Lin, Marc Stephen Olson
  • Patent number: 9811526
    Abstract: Technologies are generally described for systems, devices and methods effective to provision computing resources based on deduplication. In an example, a resource cost may be produced. The resource cost may relate to execution of a first virtual machine at a data center. A processor may receive a first representation related to an image of the first virtual machine. The processor may receive a second representation related to one or more instances of second virtual machines being executed by the data center. The processor may compare the first and second representations to produce a deduplication value for the first virtual machine. The processor may transform the deduplication value to produce the resource cost.
    Type: Grant
    Filed: December 2, 2013
    Date of Patent: November 7, 2017
    Assignee: EMPIRE TECHNOLOGY DEVELOPMENT LLC
    Inventor: Ezekiel Kruglick
  • Patent number: 9811367
    Abstract: A method and apparatus are provided for migrating one or more hardware devices (105) associated with a virtual machine (103) from a source machine (101) to a destination machine (111) by capturing, formatting, storing, and transferring hardware context information from the hardware device(s) at the source machine during the virtual machine migration process using a defined handshake protocol at each associated hardware driver (105) to capture the hardware context information from an associated hardware device (105) being migrated.
    Type: Grant
    Filed: November 13, 2014
    Date of Patent: November 7, 2017
    Assignee: NSP USA, Inc.
    Inventors: Wim J. Rouwet, Fares Bagh
  • Patent number: 9811672
    Abstract: A method of provisioning a subordinate trusted security zone in a processor having a trusted security zone. The method comprises receiving by a master trusted application executing in a master trusted security zone of the processor a request to provision a subordinate trusted security zone in the processor, wherein the request comprises a master trusted security zone key, wherein the request designates the subordinate trusted security zone, and wherein the request defines an independent key. The method further comprises provisioning by the master trusted application the subordinate trusted security zone to be accessible based on the independent key.
    Type: Grant
    Filed: September 15, 2015
    Date of Patent: November 7, 2017
    Assignee: Sprint Communications Company L.P.
    Inventors: Stephen J. Bye, Lyle W. Paczkowski, William M. Parsel, Carl J. Persson, Matthew C. Schlesener, Trevor D. Shipley
  • Patent number: 9806975
    Abstract: An embodiment of the disclosure includes a method including providing a network function virtualization (NFV) capacity for a plurality of virtual network functions (VNFs) on a computing platform. A network function virtualization management function creates at least one VNF to operate on the computing platform to perform a network function. Each of the VNFs has a definition comprising a plurality of parameters. At least one of the parameters is a capacity indication relative to a capacity of the network function for the respective VNF.
    Type: Grant
    Filed: June 9, 2015
    Date of Patent: October 31, 2017
    Assignee: FUTUREWEI TECHNOLOGIES, INC.
    Inventor: Zhixian Xiang
  • Patent number: 9804872
    Abstract: A method, system and computer program product for emulation of a virtual application bookmark on a host desktop. When a user launches a VM (running Windows™), shortcuts to user applications are created on the desktop. In Parallels™ Desktop™, the VM shortcuts and MAC bookmarks can both be seen and be functional. A special file is created in MAC OS X with Windows™ icon. The file is associated with the VM from which the file was created, and resource link corresponding to the original shortcut. The bookmark thus contains a reference to an application icon in the VM, which the user can launch from the host OS by clicking on it.
    Type: Grant
    Filed: December 3, 2014
    Date of Patent: October 31, 2017
    Assignee: PARALLELS INTERNATIONAL GMBH
    Inventors: Denis Ozerov, Andrey A. Omelyanchuk, Nikolay N. Dobrovolskiy, Stanislav S. Protassov, Serguei M. Beloussov
  • Patent number: 9804908
    Abstract: A log output condition setting method is disclosed. The method includes, when a call for a log acquisition target is made, acquiring a context of the call, and based on the acquired context and storage information that has stored therein information in which a context of a call for the log acquisition target and a processing result are associated, setting an output condition for a log in the log acquisition target.
    Type: Grant
    Filed: September 5, 2014
    Date of Patent: October 31, 2017
    Assignee: FUJITSU LIMITED
    Inventor: Yuichiro Suzuki
  • Patent number: 9804873
    Abstract: Systems and methods are disclosed for providing device state information to a destination hypervisor. An example method of providing device state information to a destination hypervisor includes sending, by a source hypervisor to a guest running on a virtual machine, a request to save a state of a device into a memory region that is accessible by the source hypervisor. The device is assigned to the virtual machine. The method also includes providing the content stored at the memory region to a destination hypervisor.
    Type: Grant
    Filed: August 14, 2015
    Date of Patent: October 31, 2017
    Assignee: Red Hat Israel, Ltd.
    Inventors: Michael Tsirkin, Alex Williamson
  • Patent number: 9804881
    Abstract: A method includes launching a virtual machine based upon an image on a virtualization host, associating the virtual machine with a user, monitoring a metric of the virtual machine that measures usage of a resource of the virtual machine, determining that the metric has exceeded a threshold more than an allowable number of times in a time period, determining an additional amount of the resource to increase in the virtual machine, updating the image to include the additional amount of the resource, launching a second virtual machine based upon the updated image, and associating the second virtual machine with the user.
    Type: Grant
    Filed: February 5, 2016
    Date of Patent: October 31, 2017
    Assignee: DELL PRODUCTS, LP
    Inventors: Ed Alessio, John Kelly
  • Patent number: 9804897
    Abstract: Provided are a power management method and apparatus that minimize power consumption in a virtualization system using different operating systems. The power management method operates on a virtualization layer, and may include: monitoring usage states of real processors actually performing tasks and usage states of virtual processors mapped with the real processors and executing operating systems or applications; predicting workload of a virtual processor; computing the utilization level of a real processor enough for supporting the predicted workload; and reconfiguring the mapping between real processors and virtual processors according to the computation result. Hence, different power management schemes of multiple operating systems or applications are managed at the virtualization layer in an integrated manner, preventing a conflict caused by application of different power management schemes. Power consumption in the overall system can be minimized through prediction of resource usage.
    Type: Grant
    Filed: March 6, 2013
    Date of Patent: October 31, 2017
    Assignee: Samsung Electronics Co., Ltd.
    Inventors: Jeong Ig Song, Kwon Sik Kim
  • Patent number: 9804798
    Abstract: A method of enabling “fast” suspend and “rapid” resume of virtual machines (VMs) employs a cache that is able to perform input/output operations at a faster rate than a storage device provisioned for the VMs. The cache may be local to a computer system that is hosting the VMs or may be shared cache commonly accessible to VMs hosted by different computer systems. The method includes the steps of saving the state of the VM to a checkpoint file stored in the cache and locking the checkpoint file so that data blocks of the checkpoint file are maintained in the cache and are not evicted, and resuming execution of the VM by reading into memory the data blocks of the checkpoint file stored in the cache.
    Type: Grant
    Filed: February 11, 2013
    Date of Patent: October 31, 2017
    Assignee: VMware, Inc.
    Inventor: Daniel James Beveridge
  • Patent number: 9804958
    Abstract: A data processing apparatus for accessing a plurality of memories is provided. The data processing apparatus includes a function control circuitry and an address generation circuitry. The function control circuitry is utilized to record a first memory address where a first function is implemented after the first function is implemented and to determine which one of the plurality of memories is a target memory according to the first memory address. The address generation circuitry is utilized to output the first memory address to the target memory. In addition, the function control circuitry is configured to determine the target memory in the same processing cycle in which the address generation circuitry is configured to output the first memory address.
    Type: Grant
    Filed: November 18, 2014
    Date of Patent: October 31, 2017
    Assignee: MEDIATEK INC.
    Inventors: Jih-Sheng Wu, Chan-Hao Chang, Da-Yu Chiu
  • Patent number: 9807077
    Abstract: Provided herein are systems and methods useful in facilitating containerized data security. The system may include a data store, a computer processing unit, a network interface, and memory. The memory may contain executable instructions for causing the system to perform a containerized data security method including obtaining a first external communication from a source external to the system; associating the first external communication with the first container; authenticating the first external communication with respect to the first container; providing the first external communication to an unencrypted instance of the first container in the memory; obtaining a first responsive communication from the unencrypted instance of the first container; and providing the first responsive communication to the source external to the system.
    Type: Grant
    Filed: March 10, 2016
    Date of Patent: October 31, 2017
    Assignee: POLYVERSE CORPORATION
    Inventor: Alexander G. Gounares
  • Patent number: 9806956
    Abstract: Resources can be managed by predicting resource usage. For example, a first computing resource having a first attribute with a first value can be identified. A second computing resource having a second attribute with a second value can also be identified. A configuration parameter can be determined based on at least one of historical data or a predetermined probability. A predetermined model can be used to predict a first amount of interest in the first computing resource based on the first value, the second value, and the configuration parameter. The predetermined model can also be used to predict a second amount of interest for the second computing resource based on the first value, the second value, and the configuration parameter. Information related to the predicted first amount of interest in the first computing resource and the predicted second amount of interest in the second computing resource can be transmitted.
    Type: Grant
    Filed: April 24, 2017
    Date of Patent: October 31, 2017
    Assignee: SAS INSTITUTE INC.
    Inventors: Matthew Scott Maxwell, Jing (Jennie) Hu
  • Patent number: 9805206
    Abstract: Provided herein are systems and methods useful in facilitating containerized data security. The system may include a data store, a computer processing unit, a network interface, and memory. The memory may contain executable instructions for causing the system to perform a containerized data security method including obtaining a first external communication from a source external to the system; associating the first external communication with the first container; authenticating the first external communication with respect to the first container; providing the first external communication to an unencrypted instance of the first container in the memory; obtaining a first responsive communication from the unencrypted instance of the first container; and providing the first responsive communication to the source external to the system.
    Type: Grant
    Filed: January 30, 2017
    Date of Patent: October 31, 2017
    Assignee: POLYVERSE CORPORATION
    Inventor: Alexander G. Gounares
  • Patent number: 9804990
    Abstract: Examples of the disclosure safely share universal service bus (USB) devices with peripheral component interconnect (PCI) passthrough, and share devices in the USB hierarchy. An in-use counter is maintained for the USB bus and/or for USB hubs. The in-use counter is checked and adjusted when a VM or entity claims and/or unclaims a device. For example, when a PCI passthrough of a USB host controller device is requested, the global in-use counter is checked to determine whether to grant the request. When a VM or entity requests to claim a USB hub, the in-use counter is checked to determine whether to grant the request. The in-use counter indicates whether any USB device attached has been claimed and/or whether the USB host controller device has been claimed by a PCI passthrough operation.
    Type: Grant
    Filed: August 27, 2014
    Date of Patent: October 31, 2017
    Assignee: VMware, Inc.
    Inventor: Erik Cota-Robles
  • Patent number: 9805439
    Abstract: The server based graphics processing techniques, describer herein, include loading a given instance of a guest shim layer and loading a given instance of a guest display device interface that calls back into the given instance of the guest shim layer, in response to loading the given instance of the guest shim layer, wherein the guest shim layer and the guest display device interface are executing under control of a virtual machine guest operating system. The given instance of the shim layer requests a communication channel between the given instance of the guest shim layer and a host-guest communication manager (D3D HGCM) service module from a host-guest communication manager (HGCM). In response to the request for the communication channel loading, the D3D HGCM service module is loaded and a communication channel between the given instance of the shim layer and the D3D HGCM service module is created by the HGCM.
    Type: Grant
    Filed: January 20, 2016
    Date of Patent: October 31, 2017
    Assignee: NVIDIA CORPORATION
    Inventor: Franck Diard
  • Patent number: 9807177
    Abstract: In certain information handling system (IHS) environments, universal serial bus (USB) devices connected to a client are redirected to a server or other information handling system. Multiple remote sessions may be running on an IHS as well as multiple multi-server published applications within a given remote session. To make the USB devices seamlessly accessible to the user from a given session or application when a switch occurs to a new session or a new application, the USB device may be sent a reset command which acts like a plug-in/plug-out of the USB device. The USB device is then redirected to the new session or the new application. The server is notified of the reset or the re-connection of the USB device to appropriately virtualize the USB device.
    Type: Grant
    Filed: October 16, 2015
    Date of Patent: October 31, 2017
    Assignee: Dell Products L.P.
    Inventor: Sriram Kumar Raju
  • Patent number: 9798571
    Abstract: Technology for generating, building, maintaining and sharing a pool of virtual environments. The virtual environments (for example, virtual machines) are instantiated and active prior to a request from a user to use a virtual environments. Delta maps are used to help match the request to the best-suited active virtual environment. The delta map is a data set that indicates differences between specification values of a given active virtual environment and specification values needed to reliably fulfill the user's request.
    Type: Grant
    Filed: October 28, 2016
    Date of Patent: October 24, 2017
    Assignee: International Business Machines Corporation
    Inventors: Bin Cao, David M. Egle, Daniel Hiebert, Yongwen Wu
  • Patent number: 9798563
    Abstract: A network management device includes an information acquisition unit that receives a management packet from a virtual machine, the management packet containing management information that includes a combination of priority of applications operable on the virtual machine and information on communication bandwidth used for operation of the applications and a selection unit that selects an application to be stopped based on the management information and information on currently available communication bandwidth, and sends a reply packet containing information on the selected application to the virtual machine, in order for the virtual machine to stop the selected application.
    Type: Grant
    Filed: March 17, 2015
    Date of Patent: October 24, 2017
    Assignee: FUJITSU LIMITED
    Inventor: Tsutomu Kaneko
  • Patent number: 9798567
    Abstract: Standard nested virtualization allows a hypervisor to run other hypervisors as guests, i.e. a level-0 (L0) hypervisor can run multiple level-1 (L1) hypervisors, each of which can run multiple level-2 (L2) virtual machines (VMs), with each L2 VM is restricted to run on only one L1 hypervisor. Span provides a Multi-hypervisor VM in which a single VM can simultaneously run on multiple hypervisors, which permits a VM to benefit from different services provided by multiple hypervisors that co-exist on a single physical machine. Span allows (a) the memory footprint of the VM to be shared across two hypervisors, and (b) the responsibility for CPU and I/O scheduling to be distributed among the two hypervisors. Span VMs can achieve performance comparable to traditional (single-hypervisor) nested VMs for common benchmarks.
    Type: Grant
    Filed: November 20, 2015
    Date of Patent: October 24, 2017
    Assignee: The Research Foundation for The State University of New York
    Inventors: Yaohui Hu, Kartik Gopalan
  • Patent number: 9798497
    Abstract: Generating a virtual storage area network (VSAN) is disclosed. From the perspective of a customer's virtual machine, the VSAN is a logical network of storage devices that provide features that are typically associated with a physical storage access network, such as block level data storage; logical disk arrays; tape libraries; optical jukeboxes; quality of service; disk mirroring, backup and restoration services; archival and retrieval of archived data; data migration from one virtual storage device to another; sharing of data among different virtual machines in a network; and the incorporation of virtual subnetworks.
    Type: Grant
    Filed: June 8, 2016
    Date of Patent: October 24, 2017
    Assignee: Skytap
    Inventors: Bradley M. Schick, Bulat Shelepov, Nikolai Slioussar
  • Patent number: 9800523
    Abstract: A scheduling method for virtual processors based on the affinity of NUMA high-performance network buffer resources, including: in a NUMA architecture, when a network interface card (NIC) of a virtual machine is started, getting distribution of the buffer of the NIC on each NUMA node; getting affinities of each NUMA node for the buffer of the network interface card on the basis of an affinity relationship between each NUMA node; determining a target NUMA node in combination with the distribution of the buffer of the NIC on each NUMA node and NUMA node affinities for the buffer of the NIC; scheduling the virtual processor to the CPU on the target NUMA node. The problem of affinity between the VCPU of the virtual machine and the buffer of the NIC not being optimal in the NUMA architecture is solved to reduce the speed of VCPU processing network packets.
    Type: Grant
    Filed: August 22, 2014
    Date of Patent: October 24, 2017
    Assignee: Shanghai Jiao Tong University
    Inventors: Haibing Guan, Ruhui Ma, Jian Li, Xiaolong Jia
  • Patent number: 9798561
    Abstract: A virtual machine (VM) is designated as a guarded VM so that restricted operations may not be performed on the VM without permission from the VM's owner. A request to perform at least one of the restricted operations on the VM is received. When the VM is a guarded VM, the request to perform at least one of the restricted operations on the VM is sent to the VM's owner. When the VM's owner at least partially approves the request, at least some of the restricted operations on the VM are enabled.
    Type: Grant
    Filed: October 31, 2013
    Date of Patent: October 24, 2017
    Assignee: VMware, Inc.
    Inventors: Sudhish Panamthanath Thankappan, Jithesh Kuruppath
  • Patent number: 9798553
    Abstract: Systems enable secure communication links with classified or unclassified networks using a single mobile computing device. In one embodiment, the system includes: a mobile computing device without an integrated data storage device that is configured to interchangeably receive an unclassified or classified data storage device; an encrypter device in signal communication with the mobile computing device; network security device in signal communication with the encrypter device; a classified data storage device loaded with a computer readable code configured for booting the mobile computing device when the classified data storage device is connected to the mobile computing device; and an unclassified data storage device loaded with a computer readable code configured for booting the mobile computing device when the unclassified data storage device is connected to the mobile computing device.
    Type: Grant
    Filed: August 12, 2015
    Date of Patent: October 24, 2017
    Assignee: National Information Assurance Corporation
    Inventor: Giovanni M. Suarez Morales
  • Patent number: 9794160
    Abstract: A system, method, and computer program product are provided for testing composite services in a communication network utilizing test data. In use, test data is sent to a composition of virtual services to test at least a portion of the composition of virtual services, the composition of virtual services including at least one first virtual service and at least one second virtual service chained such that the test data is received by the at least one first virtual service and an output of the at least one first virtual service is input to the at least one second virtual service, and at least a portion of the test data being configured such that at least a portion of the output of the at least one first virtual service is the same as the test data input to the at least one first virtual service.
    Type: Grant
    Filed: January 14, 2015
    Date of Patent: October 17, 2017
    Assignees: Amdocs Software Systems Limited, Amdocs Development Limited
    Inventors: Eyal Felstaine, Itzik Kitroser, Ofer Hermoni, Shmuel Ur
  • Patent number: 9792142
    Abstract: A device includes a storage which has stored therein setting information that specifies, for each virtual machine to be created, the number of arithmetic processing unit cores that have to be allocated to a virtual machine, and group information that represents a plurality of virtual machines operating in cooperation as a group, from among the virtual machines represented by the setting information, and a virtual machine monitor, when a first virtual machine has been created, from among the virtual machines represented by the setting information, which refers to the setting information and the group information so as to allocate as many arithmetic processing unit cores as the setting information specifies to the first virtual machine, according to a rule that takes account of a decrease in operation performance of all the operable virtual machines that is associated with a failure occurring in any of the arithmetic processing units.
    Type: Grant
    Filed: September 11, 2015
    Date of Patent: October 17, 2017
    Assignee: FUJITSU LIMITED
    Inventor: Juntaro Minezaki
  • Patent number: 9792138
    Abstract: A virtualization manager receives a request to migrate a virtual machine from a source hypervisor to a destination hypervisor supporting virtual function capability. Responsive to determining that an availability status indicates that a virtual function is available for use on the destination hypervisor by the virtual machine, the virtualization manager migrates the virtual machine from the source hypervisor to the destination hypervisor. Responsive to determining that the virtual machine has been migrated to the destination hypervisor successfully, the virtualization manager connects the identified virtual function to the virtual machine.
    Type: Grant
    Filed: February 18, 2015
    Date of Patent: October 17, 2017
    Assignee: Red Hat Israel, Ltd.
    Inventors: Alona Kaplan, Michael Kolesnik
  • Patent number: 9792135
    Abstract: Technologies are generally described for systems, devices and methods effective to schedule access to a core. In some examples, a first differential voltage frequency scaling (DVFS) value of a first virtual machine may be received by a virtual machine manager. A second DVFS value of a second virtual machine may be received by the virtual machine manager. A third DVFS value of a third virtual machine may be received by the virtual machine manager. The third DVFS value may be substantially the same as the first DVFS value and different from the second DVFS value. A dispatch cycle may be generated to execute the first, second and third virtual machines on the core. After execution of the first virtual machine, the dispatch cycle may require execution of the third virtual machine before execution of the second virtual machine.
    Type: Grant
    Filed: October 20, 2015
    Date of Patent: October 17, 2017
    Assignee: EMPIRE TECHNOLOGY DEVELOPMENT LLC
    Inventor: Ezekiel Kruglick
  • Patent number: 9792187
    Abstract: Systems and methods for facilitating test failover on a remote virtual machine without creating a full copy of the remote virtual machine. A snapshot is created of a remote virtual machine disk, the remote virtual machine disk protecting a source virtual machine disk. An instant, thin provisioned virtual machine is created from the snapshot, and the instant, thin provisioned virtual machine is powered on based on a received instruction to power on the instant, thin provisioned virtual machine thereby creating a running instance of a virtual machine, thereby facilitating test failover on the remote virtual machine without creating a full copy of the remote virtual machine.
    Type: Grant
    Filed: May 6, 2015
    Date of Patent: October 17, 2017
    Assignee: Actifio, Inc.
    Inventors: Madhav Mutalik, Srikanth Palaparthi
  • Patent number: 9785519
    Abstract: An error recovery system includes a memory, a processor in communication with the memory, a primary device, a backup device, a hypervisor executing on the processor, and a virtual machine. The virtual machine includes a guest operating system (OS) executing on the hypervisor, a pass-through device, and a guest driver. The hypervisor executes to detect an error associated with the primary device and to send a request to save a device state to the guest driver. The hypervisor also grants the guest OS access to the backup device. The guest driver receives the request from the hypervisor, and responsive to receiving the request, saves a state signature in the memory. The state signature includes a device signature and the device state of the primary device. Additionally, the guest driver determines a status of the device signature as one of matching and mismatching the backup device.
    Type: Grant
    Filed: February 16, 2017
    Date of Patent: October 10, 2017
    Assignee: Red Hat Israel, Ltd.
    Inventors: Michael Tsirkin, Amnon Ilan
  • Patent number: 9785785
    Abstract: Systems and methods are provided for creating and using a sharable file-level key to secure data files. The file-level key is generated based on a workgroup key associated with the data file and unique information associated with the data file. The file-level key may be used to encrypt and split data. Systems and methods are also provided for sharing data without replicating the data on an end user machine. Data is encrypted and split across an external/consumer network and an enterprise/producer network. Access to the data is provided using a computing image generated by a server in the enterprise/producer network and then distributed to end users of the external/consumer network. This computing image may include preloaded files that provide pointers to the data. No access or replication of the data on the enterprise/producer network is needed in order for a user of the external/consumer network to access the data.
    Type: Grant
    Filed: December 30, 2015
    Date of Patent: October 10, 2017
    Assignee: Security First Corp.
    Inventors: Mark S. O'Hare, Rick L. Orsini, Gabriel D. Landau, Matthew Staker, William Yakamovich
  • Patent number: 9785523
    Abstract: Techniques involving replication of storage are described. A representative technique includes apparatuses and methods for receiving replicated virtual storage of a replicated virtual machine, including at least a replicated base virtual disk that substantially corresponds to a primary base virtual disk to be replicated. Copies of differencing disks or other forms of virtual storage updates are received at a recovery site, each of the differencing disks being associated with the primary base virtual disk as descendents thereof. The received copies of the differencing disks are arranged relative to the replicated base virtual disk corresponding to the manner in which the differencing disks were arranged relative to the primary base virtual disk, thereby maintaining the data view of the replicated virtual machine in synchronization with the virtual machine at the primary site.
    Type: Grant
    Filed: June 20, 2011
    Date of Patent: October 10, 2017
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Phani Chiruvolu, Gaurav Sinha, Devdeep Singh, Jacob Oshins, Christopher L. Eck
  • Patent number: 9785478
    Abstract: A method and system for migrating a plurality of physical desktop machines to a virtual desktop infrastructure is described. Physical machines are discovered on a computer network using at least one network search criteria using a tool module. User data is then gathered from the discovered physical machines. A virtual disk image file is created for each user of the discovered physical machines. The virtual disk image file contains user specific data collected from the discovered physical machines. A destination pool of virtual machines is selected and a virtual machine in the destination pool is configured for each of the users of the discovered physical machines. The configured virtual machines include an attached user data disk (UDD) backed by a corresponding virtual disk image file. A user can then remotely access their assigned configured virtual machines.
    Type: Grant
    Filed: November 12, 2010
    Date of Patent: October 10, 2017
    Assignee: VMware, Inc.
    Inventors: Raghavendra Babu B R, Sivaprasad K. Govindankutty, Noble Peter Aranjani
  • Patent number: 9785475
    Abstract: Disclosed aspects manage a shared pool of configurable computing resources associated with a shared pool manager. The shared pool manager receives a set of scaling factors. The set of scaling factors corresponds to a workload. Using the set of scaling factor values and a set of workload resource data, a configuration is determined. The configuration is established to process the workload. Disclosed aspects manage a shared pool of configurable computing resources associated with a registry. The registry is structured to have a set of workload resource data and associated scaling factors. A set of scaling factor values is detected. The set of scaling factors corresponds to a workload. Based on both the set of workload resource data and the set of scaling factor values, a set of resource attributes is determined to configure the shared pool of configurable computing resources for the workload. The set of resource attributes is communicated.
    Type: Grant
    Filed: August 24, 2015
    Date of Patent: October 10, 2017
    Assignee: International Business Machines Corporation
    Inventors: Joseph W. Cropper, Jeffrey W. Tenner
  • Patent number: 9778961
    Abstract: Methods, devices, systems, and non-transitory process-readable storage media for a multi-processor computing device to schedule multi-versioned tasks on a plurality of processing units. An embodiment method may include processor-executable operations for enqueuing a specialized version of a multi-versioned task in a task queue for each of the plurality of processing units, wherein each specialized version is configured to be executed by a different processing unit of the plurality of processing units, providing ownership over the multi-versioned task to a first processing unit when the first processing unit is available to immediately execute a corresponding specialized version of the multi-versioned task, and discarding other specialized versions of the multi-versioned task in response to providing ownership over the multi-versioned task to the first processing unit. Various operations of the method may be performed via a runtime functionality.
    Type: Grant
    Filed: September 14, 2015
    Date of Patent: October 3, 2017
    Assignee: QUALCOMM Incorporated
    Inventor: Arun Raman
  • Patent number: 9778956
    Abstract: An apparatus comprises a processing platform implementing a plurality of resources of converged infrastructure of an information processing system. A multi-dimensional scheduler is associated with the plurality of resources. First and second ones of the plurality of resources of the converged infrastructure are logically partitioned by the multi-dimensional scheduler into multiple virtual sets of resources for performance of processing jobs associated with respective applications such that the virtual sets of resources comprise respective portions of each of the first and second ones of the plurality of resources. An additional one of the plurality of resources of the converged infrastructure is time-shared between at least a subset of the multiple virtual sets of resources under the control of the multi-dimensional scheduler in performing the corresponding processing jobs associated with the respective applications.
    Type: Grant
    Filed: September 24, 2015
    Date of Patent: October 3, 2017
    Assignee: EMC IP Holding Company LLC
    Inventors: John S. Harwood, Suresh Kumar, Vaibhav Khanduja
  • Patent number: 9778990
    Abstract: Techniques are described herein which minimize the impact of virtual machine snapshots on the performance of virtual machines and hypervisors. In the context of a volume snapshot which may involve (i) taking virtual machine snapshots of all virtual machines associated with the volume, (ii) taking the volume snapshot, and (iii) removing all the virtual machine snapshots, multiple virtual machine snapshots may be created in parallel. In the process of creating virtual machine snapshots, a storage system may determine which snapshots to create in parallel. The storage system may also prioritize snapshots from certain hypervisors in order to avoid the problem of “starvation”, in which busy hypervisors prevent less busy hypervisors from creating snapshots. The techniques described herein, while mainly described in the context of snapshot creation, are readily applied to snapshot removal.
    Type: Grant
    Filed: October 8, 2014
    Date of Patent: October 3, 2017
    Assignee: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP
    Inventors: Eric Forgette, Juhsun Wang, Gaurav Ranganathan, Manu Mehrotra
  • Patent number: 9772884
    Abstract: Methods and systems for scheduling applications on a multi-core processor are disclosed, which may be based on association of processor cores, application execution environments, and authorizations that permits efficient and practical means to utilize the simultaneous execution capabilities provided by multi-core processors. The algorithm may support definition and scheduling of variable associations between cores and applications (i.e., multiple associations can be defined so that the cores an application is scheduled on can vary over time as well as what other applications are also assigned to the same cores as part of an association). The algorithm may include specification and control of scheduling activities, permitting preservation of some execution capabilities of a multi-core processor for future growth, and permitting further evaluation of application requirements against the allocated execution capabilities.
    Type: Grant
    Filed: October 12, 2015
    Date of Patent: September 26, 2017
    Assignee: Green Hills Software, Inc.
    Inventors: Mark Anthony Griglock, Patrick John Huyck, Sidney Slay Ishee, James Anthony Gleason, Richard Andrew Erich, Mathew Lowell Aamold
  • Patent number: 9772868
    Abstract: An interrupt handling method and a system are provided. An exemplary embodiment of an interrupt handling method in a virtualized environment operable on a computer having one or more CPU cores, includes disabling a virtual machine exit triggers by an interrupt that destined to a virtual machine (VM), via a hypervisor of the virtualized environment. The exemplary method further includes delivering directly one or more interrupts from an I/O virtualization (IOV) device and a virtual device that destined to the VM, while the destined VM is running on one of the one or more CPU cores, otherwise delivering the one or more interrupts to the hypervisor to deliver corresponding one or more virtual interrupts to the destined VM.
    Type: Grant
    Filed: September 16, 2014
    Date of Patent: September 26, 2017
    Assignee: Industrial Technology Research Institute
    Inventors: Cheng-Chun Tu, Tzi-Cker Chiueh, Chao-Tang Lee
  • Patent number: 9772872
    Abstract: A method for operating a processing system comprising in a hypervisor, negotiating with a host platform to determine compatibility between a virtual machine and the host platform, responsive to determining that the virtual machine is compatible with the host platform, receiving a control block from the virtual machine, tagging the control block with information that associates the control block with a control group, determining whether the hypervisor is a base hypervisor, and scheduling the control block for processing responsive to determining that the hypervisor is the base hypervisor.
    Type: Grant
    Filed: November 13, 2015
    Date of Patent: September 26, 2017
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Eli M. Dow, James P. Gilchrist, Steven K. Schmidt, Charles J. Stocker, IV
  • Patent number: 9769120
    Abstract: One embodiment of the present invention provides a system for providing exclusive access to a virtual private network (VPN) connection to an authorized application. During operation, the system creates a unique network namespace that is different from a default network namespace of a host system. The system then places a pseudo network interface associated with the VPN connection into the unique network namespace. Furthermore, the system places at least one socket for an authorized application into the unique network namespace. The system also precludes unauthorized applications on the host from accessing the unique network namespace, thereby facilitating exclusive access to the VPN connection by the authorized application.
    Type: Grant
    Filed: January 13, 2016
    Date of Patent: September 19, 2017
    Assignee: VMware, Inc.
    Inventors: Alexander Fainkichen, Craig Newell
  • Patent number: 9766995
    Abstract: According to one embodiment, a system includes probes operable to monitor information associated with a host device and includes a controller operable to control the probes. A first probe instance is associated with a plurality of monitoring modules. Each monitoring module is operable to monitor information associated with the host device. The first probe instance is operable to determine a resource usage associated with the first probe instance and determine whether the resource usage exceeds a threshold. The first probe instance is operable to divide the plurality of monitoring modules into a first subset of monitoring modules and a second subset of monitoring modules. The first probe instance is operable to spawn a second probe instance, wherein the second probe instance is associated with the second subset of monitoring modules. The first probe module is operable to associate the first probe instance with the first subset of monitoring modules.
    Type: Grant
    Filed: June 4, 2014
    Date of Patent: September 19, 2017
    Assignee: CA, Inc.
    Inventors: Raymond E. Cole, Nimal K. K. Gamage
  • Patent number: 9766945
    Abstract: A method for scheduling computing resources with container migration includes determining a resource availability for one or more hosts, a resource allocation for one or more virtual machines (VMs), and a resource usage for one or more containers. The method includes identifying the hosts on which VMs and containers can be consolidated based on resource availability. The method also includes calculating a target resource configuration for one or more VMs. The method further includes removing or adding resources to the VMs for which a target resource configuration was calculated to achieve the target resource configuration. The method further includes allocating the one or more VMs on the one or more hosts based on the resource availability of the one or more hosts, and allocating the one or more containers on the one or more VMs based on the resource configuration of each VM and the resource usage of each container.
    Type: Grant
    Filed: August 26, 2015
    Date of Patent: September 19, 2017
    Assignee: WMware, Inc.
    Inventors: Kumar Gaurav, Anne Holler, Vaibhav Kohli, Shruti Sharma, Anil Kumar, Rajdeep Dua
  • Patent number: 9766913
    Abstract: An electronic device is provided for managing assignment of peripheral devices in a virtualization environment. The electronic device can include a user interface configured to display one or more representations of virtual desktops. The virtual desktops are associated with corresponding virtual machines. The electronic devices can also include one or more processors configured to provide to the user interface to display one or more representations of the peripheral devices based on detection that the peripheral devices are communicatively coupled to a control virtual machine of the virtualization environment. The one or more processors can be further configured to detect one or more first inputs received with respect to the one or more representations of the virtual desktops and the one or more representations of the peripheral devices; and facilitate to establish one or more associations between the peripheral devices and the virtual machines.
    Type: Grant
    Filed: May 30, 2014
    Date of Patent: September 19, 2017
    Assignee: Citrix Systems, Inc.
    Inventors: Robert James Moran, Zoe Carol Moran, Christopher Stephen Smyth
  • Patent number: 9767052
    Abstract: An information processing apparatus includes a first memory, and a processor coupled to the first memory and configured to: specify a number of virtual machines executed on each node of a plurality of nodes on an information processing system that performs as a plurality of virtual machines, and calculate a value indicating a degree of deviation of the number of the virtual machines between the plurality of nodes.
    Type: Grant
    Filed: January 29, 2015
    Date of Patent: September 19, 2017
    Assignee: FUJITSU LIMITED
    Inventor: Yasuo Suzuki
  • Patent number: 9766915
    Abstract: Method for partitioning containers includes instantiating a selected container under a host OS; opening a file system of the selected container for modification; inside the FS of the selected container, creating an image file of an Application Container; mounting a virtual disk that corresponds to the image file; mounting the Application Container file system inside the image file; defining boundaries of the Application Container; placing Application Container files inside the Application Container file system; and creating an interface between the selected container and the Application Container for exchanging data. The processes of the Application Container connect to processes of the selected container as if they were native host OS processes. The Application Container can only request data from the host OS through the interface of the selected container. The image file is protected from modification by the selected container. The processes of the Application Container are launched inside the boundaries.
    Type: Grant
    Filed: March 23, 2016
    Date of Patent: September 19, 2017
    Assignee: Parallels IP Holdings GmbH
    Inventor: Pavel Emelyanov