CPC H04L 63/0823 (2013.01) [G06F 9/45558 (2013.01); H04L 63/0236 (2013.01); H04L 63/0272 (2013.01); H04L 63/0876 (2013.01); G06F 2009/45587 (2013.01); G06F 2009/45595 (2013.01)] | 22 Claims |
1. A method for providing an authentication resource to a particular virtual private cloud that is deployed in a set of datacenters that host a plurality of virtual private clouds, the method comprising:
at a resource issuer,
receiving an authentication resource request from a particular machine deployed in the particular virtual private cloud, the authentication resource request comprising a first set of cloud-specific data;
obtaining a cloud identifier for the particular machine from a registry service of the particular virtual private cloud that interacts with a datacenter-set cloud service that deploys machines in the datacenter set for different virtual private clouds, said cloud identifier identifying the particular machine from a plurality of other machines that are identified by other cloud identifiers from the registry service;
using the obtained cloud identifier to obtain a second set of cloud-specific data for the particular machine from the datacenter-set cloud service; and
upon determining that the first and second sets of cloud-specific data match, authenticating the particular machine and issuing the authentication resource for the particular machine.
|