Invention Application
US20150317495A1 Protecting Critical Data Structures in an Embedded Hypervisor System
审中-公开
保护嵌入式管理程序系统中的关键数据结构
- Patent Title: Protecting Critical Data Structures in an Embedded Hypervisor System
- Patent Title (中): 保护嵌入式管理程序系统中的关键数据结构
-
Application No.: US14530020Application Date: 2014-10-31
-
Publication No.: US20150317495A1Publication Date: 2015-11-05
- Inventor: Stephane Rodgers , Shashank Shekhar , Flaviu Dorin Turean
- Applicant: Broadcom Corporation
- Applicant Address: US CA Irvine
- Assignee: Broadcom Corporation
- Current Assignee: Broadcom Corporation
- Current Assignee Address: US CA Irvine
- Main IPC: G06F21/71
- IPC: G06F21/71 ; G06F21/44 ; G06F9/455 ; H04L9/32 ; G06F21/50

Abstract:
A system and method for securing a hypervisor and operating systems that execute on a computing device. An encrypted hypervisor is uploaded to a hardware chip. Prior to being executed, the hypervisor is decrypted using a secure security processor and stored in an on-chip memory. When a processor on the hardware chip executes the hypervisor, at least one on-chip component continuously authenticates the hypervisor during execution. A hypervisor configures a processor with access rights associated with an operating system, where the access rights determine access of the operating system to an at least one resource. A transaction filter then uses the access rights associated with the operating system to monitor the access of the operating system to the at least one resource in real-time as the operating system executes on a processor.
Public/Granted literature
- US10318765B2 Protecting critical data structures in an embedded hypervisor system Public/Granted day:2019-06-11
Information query