Multiple trusted computing environments

TL;DR: In this article, the authors present a method of operating a virtualization system, the method including: instantiating a virtualisation system on an underlying hardware machine, exposing a virtual machine in which multiple execution contexts of a guest execute, and selectively impeding computational progress of a particular one of the execution contexts.

TL;DR: In this paper, a software monitor, interposed between the hardware layer of a computer system and one or more guest operating systems, constructs and maintains a guest-physical address-to-host-physical-address map for each guest operating system, and maintains virtual memory addressing context for each operating system that may include a virtual-hash-page table for each host operating system.

TL;DR: In this article, a method of and system for encrypting and decrypting data on a computer system is disclosed, which comprises an encrypting operating system (EOS), which is a modified UNIX operating system.

Abstract: Techniques for dynamic management of virtual machine environments are disclosed. For example, a technique for automatically managing a first set of virtual machines being hosted by a second set of physical machines comprises the following steps/operations. An alert is obtained that a service level agreement (SLA) pertaining to at least one application being hosted by at least one of the virtual machines in the first set of virtual machines is being violated. Upon obtaining the SLA violation alert, the technique obtains at least one performance measurement for at least a portion of the machines in at least one of the first set of virtual machines and the second set of physical machines, and a cost of migration for at least a portion of the virtual machines in the first set of virtual machines. Based on the obtained performance measurements and the obtained migration costs, an optimal migration policy is determined for moving the virtual machine hosting the at least one application to another physical machine.

TL;DR: The large-scale automated transaction systems of the near future can be designed to protect the privacy and maintain the security of both individuals and organizations.

TL;DR: In this paper, the authors present a system for interactive on-line electronic communications and processing of business transactions between a plurality of different types of independent users including at least a plurality sellers, and a plurality buyers, as well as financial institutions, and freight service providers.

TL;DR: In this article, a method and device are provided for controlling access to data, where portions of the data are protected and rules concerning access rights to data are determined, and a method is also provided for distributing data for subsequent controlled use of those data.

TL;DR: A model of a third-generation-like computer system is developed and formal techniques are used to derive precise sufficient conditions to test whether such an architecture can support virtual machines.