公开(公告)号：US20140095887A1

公开(公告)日：2014-04-03

申请号：US13631908

申请日：2012-09-29

申请人： Alex NAYSHTUT ,  Omer BEN-SHALOM ,  Abdul BAILEY ,  Adi SHALIV

发明人： Alex NAYSHTUT ,  Omer BEN-SHALOM ,  Abdul BAILEY ,  Adi SHALIV

IPC分类号： G06F1/04 ,  G06F12/14

CPC分类号： G06F21/725 ,  G06F1/14 ,  G06F21/57 ,  G06F2221/2151

摘要： In accordance with disclosed embodiments, there are provided methods, systems, and apparatuses for maintaining trusted time at a client computing device including, for example, executing a computer program within a client device; initiating a call from the computer program to a secure time service of the client device requesting a trusted time stamp; retrieving, via the secure time service of the client device, a protected time from protected clock hardware of the client device; generating, at the secure time service of the client device, the trusted time stamp by signing the protected time retrieved from the protected clock hardware of the client device; and returning the trusted time stamp to the computer program. Other related embodiments are disclosed.

摘要翻译： 根据所公开的实施例，提供了用于在客户端计算设备处维护可信时间的方法，系统和装置，包括例如在客户端设备内执行计算机程序; 发起从所述计算机程序到所述客户端设备的请求可信时间戳的安全时间服务的呼叫; 通过所述客户端设备的安全时间服务检索来自所述客户端设备的受保护时钟硬件的保护时间; 在所述客户端设备的安全时间服务下，通过签发从所述客户端设备的受保护时钟硬件检索到的保护时间来生成所述可信时间戳; 并将可信时间戳返回到计算机程序。 公开了其他相关实施例。

公开(公告)号：US20160026581A1

公开(公告)日：2016-01-28

申请号：US14367989

申请日：2013-12-17

申请人： Igor Muttik ,  Roman Dementiev ,  Alex Nayshtut ,  INTEL CORPORATION

发明人： Igor MUTTIK ,  Roman DEMENTIEV ,  Alex NAYSHTUT

IPC分类号： G06F12/14 ,  G06F21/60

CPC分类号： G06F12/14 ,  G06F12/1441 ,  G06F21/53 ,  G06F21/54 ,  G06F21/566 ,  G06F21/60

摘要： Technologies for detecting unauthorized memory accesses include a computing device having transactional memory support. The computing device executes a code segment identified as suspicious and detects a transactional abort during execution of the code segment. The computing device may execute a security support thread concurrently with the code segment that reads one or more monitored memory locations. A transactional abort may be caused by a read of the security support thread conflicting with a write from the code segment. The computing device may set a breakpoint within the code segment, and a transactional abort may be caused by execution of the code segment reaching the breakpoint. An abort handler determines whether a security event has occurred and reports the security event. The abort handler may determine whether the security event has occurred based on the cause of the transactional abort. Other embodiments are described and claimed.

摘要翻译： 用于检测未经授权的存储器访问的技术包括具有事务存储器支持的计算设备。 计算设备执行标识为可疑的代码段，并且在执行代码段期间检测事务中止。 计算设备可以与读取一个或多个监视的存储器位置的代码段同时执行安全支持线程。 事务中止可能是由安全支持线程读取与代码段的写入冲突引起的。 计算设备可以在代码段内设置断点，并且可能由执行到达断点的代码段引起事务中止。 中止处理程序确定是否发生安全事件并报告安全事件。 中止处理程序可以基于事务中止的原因来确定安全事件是否已经发生。 描述和要求保护其他实施例。