Invention Grant
- Patent Title: Enforcing code integrity using a trusted computing base
-
Application No.: US16519616Application Date: 2019-07-23
-
Publication No.: US11500787B2Publication Date: 2022-11-15
- Inventor: Michael Wei , Nadav Amit
- Applicant: VMware, Inc.
- Applicant Address: US CA Palo Alto
- Assignee: VMware, Inc.
- Current Assignee: VMware, Inc.
- Current Assignee Address: US CA Palo Alto
- Main IPC: G06F9/455
- IPC: G06F9/455 ; G06F12/14 ; G06F12/0882 ; G06F21/12 ; G06F21/54
Abstract:
One or more kernel-modifying procedures are stored in a trusted computing base (TCB) when bringing up a guest operating system (OS) on a virtual machine (VM) on a virtualization platform. When the guest OS invokes an OS-level kernel-modifying procedure, a call is made to the hypervisor. If the hypervisor determines the TCB to be valid, the kernel-modifying procedure in the TCB that corresponds to the OS-level kernel-modifying procedure is invoked so that the kernel code can be modified.
Public/Granted literature
- US20210026785A1 ENFORCING CODE INTEGRITY USING A TRUSTED COMPUTING BASE Public/Granted day:2021-01-28
Information query
