SECURING AN INJECTION OF A WORKLOAD INTO A VIRTUAL NETWORK HOSTED BY A CLOUD-BASED PLATFORM

The disclosed system implements techniques to secure communications for injecting a workload (e.g., a container) into a virtual network hosted by a cloud-based platform. Based on a delegation instruction received from a tenant, a virtual network of the tenant can connect to and execute a workload vi...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: TEWARI, Rishabh, SREENATH, Abhishek Ellore, KUMAR, Abhijeet, KUMARAN, Jayesh, BRUMLEY, David Michael, RAMACHANDRAN, Aanand, BANSAL, Deepak, SHARMA, Sushant, SHUKLA, Abhishek, SRIVASTAVA, Nisheeth, SHARMA, Parag, GUPTA, Avijit
Format: Patent
Sprache:eng ; fre ; ger
Schlagworte:
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator TEWARI, Rishabh
SREENATH, Abhishek Ellore
KUMAR, Abhijeet
KUMARAN, Jayesh
BRUMLEY, David Michael
RAMACHANDRAN, Aanand
BANSAL, Deepak
SHARMA, Sushant
SHUKLA, Abhishek
SRIVASTAVA, Nisheeth
SHARMA, Parag
GUPTA, Avijit
description The disclosed system implements techniques to secure communications for injecting a workload (e.g., a container) into a virtual network hosted by a cloud-based platform. Based on a delegation instruction received from a tenant, a virtual network of the tenant can connect to and execute a workload via a virtual machine that is part of a virtual network that belongs to a resource provider. To secure calls and authorize access to the tenant's virtual network, authentication information provided with a call from the virtual network of the resource provider may need to match authorization information made available via a publication service of the cloud-based platform. Additionally or alternatively, an identifier of a NIC used to make a call may need to correspond to a registered name of the resource provider for the call to be authorized. These checks provide increased security by preventing unauthorized calls to the tenant's virtual network.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_EP3853723A1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>EP3853723A1</sourcerecordid><originalsourceid>FETCH-epo_espacenet_EP3853723A13</originalsourceid><addsrcrecordid>eNqNikEKwjAQRbNxIeod5gJdaBDdTtPERmOmJFNFXJQicSVaqPfHCB7A1ee996fiGrVqg_U7QA_W77ViSx7IAMKZwsERVtkzZT7ZwC068Jq_CWqKrCsoL7kpR21VlBizaByyoXCci8m9f4xp8duZAKNZ1UUaXl0ah_6Wnund6UZu13KzkriUf1w-7zoxSg</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>SECURING AN INJECTION OF A WORKLOAD INTO A VIRTUAL NETWORK HOSTED BY A CLOUD-BASED PLATFORM</title><source>esp@cenet</source><creator>TEWARI, Rishabh ; SREENATH, Abhishek Ellore ; KUMAR, Abhijeet ; KUMARAN, Jayesh ; BRUMLEY, David Michael ; RAMACHANDRAN, Aanand ; BANSAL, Deepak ; SHARMA, Sushant ; SHUKLA, Abhishek ; SRIVASTAVA, Nisheeth ; SHARMA, Parag ; GUPTA, Avijit</creator><creatorcontrib>TEWARI, Rishabh ; SREENATH, Abhishek Ellore ; KUMAR, Abhijeet ; KUMARAN, Jayesh ; BRUMLEY, David Michael ; RAMACHANDRAN, Aanand ; BANSAL, Deepak ; SHARMA, Sushant ; SHUKLA, Abhishek ; SRIVASTAVA, Nisheeth ; SHARMA, Parag ; GUPTA, Avijit</creatorcontrib><description>The disclosed system implements techniques to secure communications for injecting a workload (e.g., a container) into a virtual network hosted by a cloud-based platform. Based on a delegation instruction received from a tenant, a virtual network of the tenant can connect to and execute a workload via a virtual machine that is part of a virtual network that belongs to a resource provider. To secure calls and authorize access to the tenant's virtual network, authentication information provided with a call from the virtual network of the resource provider may need to match authorization information made available via a publication service of the cloud-based platform. Additionally or alternatively, an identifier of a NIC used to make a call may need to correspond to a registered name of the resource provider for the call to be authorized. These checks provide increased security by preventing unauthorized calls to the tenant's virtual network.</description><language>eng ; fre ; ger</language><subject>CALCULATING ; COMPUTING ; COUNTING ; ELECTRIC DIGITAL DATA PROCESSING ; PHYSICS</subject><creationdate>2021</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20210728&amp;DB=EPODOC&amp;CC=EP&amp;NR=3853723A1$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20210728&amp;DB=EPODOC&amp;CC=EP&amp;NR=3853723A1$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>TEWARI, Rishabh</creatorcontrib><creatorcontrib>SREENATH, Abhishek Ellore</creatorcontrib><creatorcontrib>KUMAR, Abhijeet</creatorcontrib><creatorcontrib>KUMARAN, Jayesh</creatorcontrib><creatorcontrib>BRUMLEY, David Michael</creatorcontrib><creatorcontrib>RAMACHANDRAN, Aanand</creatorcontrib><creatorcontrib>BANSAL, Deepak</creatorcontrib><creatorcontrib>SHARMA, Sushant</creatorcontrib><creatorcontrib>SHUKLA, Abhishek</creatorcontrib><creatorcontrib>SRIVASTAVA, Nisheeth</creatorcontrib><creatorcontrib>SHARMA, Parag</creatorcontrib><creatorcontrib>GUPTA, Avijit</creatorcontrib><title>SECURING AN INJECTION OF A WORKLOAD INTO A VIRTUAL NETWORK HOSTED BY A CLOUD-BASED PLATFORM</title><description>The disclosed system implements techniques to secure communications for injecting a workload (e.g., a container) into a virtual network hosted by a cloud-based platform. Based on a delegation instruction received from a tenant, a virtual network of the tenant can connect to and execute a workload via a virtual machine that is part of a virtual network that belongs to a resource provider. To secure calls and authorize access to the tenant's virtual network, authentication information provided with a call from the virtual network of the resource provider may need to match authorization information made available via a publication service of the cloud-based platform. Additionally or alternatively, an identifier of a NIC used to make a call may need to correspond to a registered name of the resource provider for the call to be authorized. These checks provide increased security by preventing unauthorized calls to the tenant's virtual network.</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>PHYSICS</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2021</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNikEKwjAQRbNxIeod5gJdaBDdTtPERmOmJFNFXJQicSVaqPfHCB7A1ee996fiGrVqg_U7QA_W77ViSx7IAMKZwsERVtkzZT7ZwC068Jq_CWqKrCsoL7kpR21VlBizaByyoXCci8m9f4xp8duZAKNZ1UUaXl0ah_6Wnund6UZu13KzkriUf1w-7zoxSg</recordid><startdate>20210728</startdate><enddate>20210728</enddate><creator>TEWARI, Rishabh</creator><creator>SREENATH, Abhishek Ellore</creator><creator>KUMAR, Abhijeet</creator><creator>KUMARAN, Jayesh</creator><creator>BRUMLEY, David Michael</creator><creator>RAMACHANDRAN, Aanand</creator><creator>BANSAL, Deepak</creator><creator>SHARMA, Sushant</creator><creator>SHUKLA, Abhishek</creator><creator>SRIVASTAVA, Nisheeth</creator><creator>SHARMA, Parag</creator><creator>GUPTA, Avijit</creator><scope>EVB</scope></search><sort><creationdate>20210728</creationdate><title>SECURING AN INJECTION OF A WORKLOAD INTO A VIRTUAL NETWORK HOSTED BY A CLOUD-BASED PLATFORM</title><author>TEWARI, Rishabh ; SREENATH, Abhishek Ellore ; KUMAR, Abhijeet ; KUMARAN, Jayesh ; BRUMLEY, David Michael ; RAMACHANDRAN, Aanand ; BANSAL, Deepak ; SHARMA, Sushant ; SHUKLA, Abhishek ; SRIVASTAVA, Nisheeth ; SHARMA, Parag ; GUPTA, Avijit</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_EP3853723A13</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng ; fre ; ger</language><creationdate>2021</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>PHYSICS</topic><toplevel>online_resources</toplevel><creatorcontrib>TEWARI, Rishabh</creatorcontrib><creatorcontrib>SREENATH, Abhishek Ellore</creatorcontrib><creatorcontrib>KUMAR, Abhijeet</creatorcontrib><creatorcontrib>KUMARAN, Jayesh</creatorcontrib><creatorcontrib>BRUMLEY, David Michael</creatorcontrib><creatorcontrib>RAMACHANDRAN, Aanand</creatorcontrib><creatorcontrib>BANSAL, Deepak</creatorcontrib><creatorcontrib>SHARMA, Sushant</creatorcontrib><creatorcontrib>SHUKLA, Abhishek</creatorcontrib><creatorcontrib>SRIVASTAVA, Nisheeth</creatorcontrib><creatorcontrib>SHARMA, Parag</creatorcontrib><creatorcontrib>GUPTA, Avijit</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>TEWARI, Rishabh</au><au>SREENATH, Abhishek Ellore</au><au>KUMAR, Abhijeet</au><au>KUMARAN, Jayesh</au><au>BRUMLEY, David Michael</au><au>RAMACHANDRAN, Aanand</au><au>BANSAL, Deepak</au><au>SHARMA, Sushant</au><au>SHUKLA, Abhishek</au><au>SRIVASTAVA, Nisheeth</au><au>SHARMA, Parag</au><au>GUPTA, Avijit</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>SECURING AN INJECTION OF A WORKLOAD INTO A VIRTUAL NETWORK HOSTED BY A CLOUD-BASED PLATFORM</title><date>2021-07-28</date><risdate>2021</risdate><abstract>The disclosed system implements techniques to secure communications for injecting a workload (e.g., a container) into a virtual network hosted by a cloud-based platform. Based on a delegation instruction received from a tenant, a virtual network of the tenant can connect to and execute a workload via a virtual machine that is part of a virtual network that belongs to a resource provider. To secure calls and authorize access to the tenant's virtual network, authentication information provided with a call from the virtual network of the resource provider may need to match authorization information made available via a publication service of the cloud-based platform. Additionally or alternatively, an identifier of a NIC used to make a call may need to correspond to a registered name of the resource provider for the call to be authorized. These checks provide increased security by preventing unauthorized calls to the tenant's virtual network.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng ; fre ; ger
recordid cdi_epo_espacenet_EP3853723A1
source esp@cenet
subjects CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
title SECURING AN INJECTION OF A WORKLOAD INTO A VIRTUAL NETWORK HOSTED BY A CLOUD-BASED PLATFORM
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-02T14%3A42%3A50IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=TEWARI,%20Rishabh&rft.date=2021-07-28&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EEP3853723A1%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true