Invention Grant
- Patent Title: Protecting critical data structures in an embedded hypervisor system
-
Application No.: US14530020Application Date: 2014-10-31
-
Publication No.: US10318765B2Publication Date: 2019-06-11
- Inventor: Stephane Rodgers , Shashank Shekhar , Flaviu Dorin Turean
- Applicant: Avago Technologies International Sales Pte. Limited
- Applicant Address: SG Singapore
- Assignee: Avago Technologies International Sales Pte. Limited
- Current Assignee: Avago Technologies International Sales Pte. Limited
- Current Assignee Address: SG Singapore
- Agency: Sterne, Kessler, Goldstein & Fox P.L.L.C.
- Main IPC: G06F11/30
- IPC: G06F11/30 ; G06F12/14 ; G06F21/71 ; H04L9/32 ; G06F21/50 ; G06F9/455 ; G06F21/44 ; G06F21/53 ; G06F21/57
Abstract:
A system and method for securing a hypervisor and operating systems that execute on a computing device. An encrypted hypervisor is uploaded to a hardware chip. Prior to being executed, the hypervisor is decrypted using a secure security processor and stored in an on-chip memory. When a processor on the hardware chip executes the hypervisor, at least one on-chip component continuously authenticates the hypervisor during execution. A hypervisor configures a processor with access rights associated with an operating system, where the access rights determine access of the operating system to an at least one resource. A transaction filter then uses the access rights associated with the operating system to monitor the access of the operating system to the at least one resource in real-time as the operating system executes on a processor.
Public/Granted literature
- US20150317495A1 Protecting Critical Data Structures in an Embedded Hypervisor System Public/Granted day:2015-11-05
Information query
