The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Feb. 26, 2013
Filed:
Mar. 26, 2009
Bruce Montague, Santa Cruz, CA (US);
Sanjay Sawhney, Cupertino, CA (US);
Matthew Conover, East Palo Alto, CA (US);
Tzi-cker Chiueh, Setauket, NY (US);
Bruce Montague, Santa Cruz, CA (US);
Sanjay Sawhney, Cupertino, CA (US);
Matthew Conover, East Palo Alto, CA (US);
Tzi-cker Chiueh, Setauket, NY (US);
Symantec Corporation, Mountain View, CA (US);
Abstract
A system and method for efficient security protocols in a virtualized datacenter environment are contemplated. In one embodiment, a system is provided comprising a hypervisor coupled to one or more protected virtual machines (VMs) and a security VM. Within a private communication channel, a split kernel loader provides an end-to-end communication between a paravirtualized security device driver, or symbiont, and the security VM. The symbiont monitors kernel-level activities of a corresponding guest OS, and conveys kernel-level metadata to the security VM via the private communication channel. Therefore, the well-known semantic gap problem is solved. The security VM is able to read all of the memory of a protected VM, detect locations of memory compromised by a malicious rootkit, and remediate any detected problems.