公开(公告)号：US09338522B2

公开(公告)日：2016-05-10

申请号：US13715395

申请日：2012-12-14

Applicant: Broadcom Corporation

Inventor： Narayan Rajgopal ,  Marcus C. Kellerman ,  David Erickson

IPC: H04N7/16 ,  H04N21/835 ,  H04N21/443

CPC classification number: H04N21/835 ,  H04N21/443 ,  H04N21/4437

Abstract: A set top box or like device incorporating an untrusted software framework as a client of a secure operating system kernel. The software framework may comprise, for example, an Android framework supported by an underlying Linux operating system environment having a secure kernel. The software framework can be executed using a variety of process isolation techniques depending on performance and isolation requirements. A secure access client/server interface may also be provided to support interactions between the untrusted software framework (and applications utilizing the untrusted software framework) and secure or trusted portions of the device. The secure access interface can be configured to perform operations such as handle validation, heap pointer validation, non-pointer parameter validation, heap isolation, and resource release relating to terminated processes. In further embodiments, a software framework aggregator is used to support a plurality of additional software frameworks for use in the set top box.

Abstract translation: 一个机顶盒或类似的设备，其中包含不可信任的软件框架作为安全操作系统内核的客户端。 软件框架可以包括例如由具有安全内核的底层Linux操作系统环境支持的Android框架。 根据性能和隔离要求，可以使用各种过程隔离技术执行软件框架。 还可以提供安全访问客户端/服务器接口以支持不受信任的软件框架（以及利用不受信任的软件框架的应用）与设备的安全或受信任部分之间的交互。 可以将安全访问接口配置为执行诸如句柄验证，堆指针验证，非指针参数验证，堆隔离以及与终止的进程相关的资源释放等操作。 在另外的实施例中，软件框架聚合器用于支持用于机顶盒中的多个附加软件框架。

公开(公告)号：US20140115646A1

公开(公告)日：2014-04-24

申请号：US13716856

申请日：2012-12-17

Applicant: BROADCOM CORPORATION

Inventor： Narayan Rajgopal ,  Fabian Russo ,  Xavier Miville

IPC: H04N21/462

CPC classification number: H04N21/4622 ,  H04N21/443 ,  H04N21/4433 ,  H04N21/4437 ,  H04N21/4627

Abstract: A set top box or like device utilizing trusted applications in conjunction with an untrusted software framework. In one implementation, trusted or certified applications are received from a service provider for execution by a software framework of the device. Certification of a trusted application may entail, for example, verifying that the application is executable by the device in a manner consist with the industry standard certification process. The software framework may comprise, for example, an Android framework supported by an underlying Linux operating system environment and isolated in a Linux resource container. A secure access client/server interface may also be provided to support interactions between the software framework and trusted portions of the device. In further embodiments, both trusted applications and a set top box application utilized by the device to perform traditional set top box operations are implemented in at least one version of an Android or like framework.

Abstract translation: 利用可信应用程序结合不受信任的软件框架的机顶盒或类似设备。 在一个实现中，从服务提供商接收信任或认证的应用程序，以便由设备的软件框架执行。 受信任的应用的认证可能需要例如以由行业标准认证过程组成的方式来验证该应用可由该设备执行。 软件框架可以包括例如由底层Linux操作系统环境支持并在Linux资源容器中隔离的Android框架。 还可以提供安全访问客户端/服务器接口以支持软件框架和设备的受信任部分之间的交互。 在进一步的实施例中，由Android或类似框架的至少一个版本中实现由设备用于执行传统机顶盒操作的可信应用和机顶盒应用。

公开(公告)号：US09344762B2

公开(公告)日：2016-05-17

申请号：US13716856

申请日：2012-12-17

Applicant: Broadcom Corporation

Inventor： Narayan Rajgopal ,  Fabian Russo ,  Xavier Miville

IPC: H04N7/173 ,  H04N21/462 ,  H04N21/443 ,  H04N21/4627

CPC classification number: H04N21/4622 ,  H04N21/443 ,  H04N21/4433 ,  H04N21/4437 ,  H04N21/4627

Abstract: A set top box or like device utilizing trusted applications in conjunction with an untrusted software framework. In one implementation, trusted or certified applications are received from a service provider for execution by a software framework of the device. Certification of a trusted application may entail, for example, verifying that the application is executable by the device in a manner consist with the industry standard certification process. The software framework may comprise, for example, an Android framework supported by an underlying. Linux operating system environment and isolated in a Linux resource container. A secure access client/server interface may also be provided to support interactions between the software framework and trusted portions of the device. In further embodiments, both trusted applications and a set top box application utilized by the device to perform traditional set top box operations are implemented in at least one version of an Android or like framework.

Abstract translation: 利用可信应用程序结合不受信任的软件框架的机顶盒或类似设备。 在一个实现中，从服务提供商接收信任或认证的应用程序，以便由设备的软件框架执行。 受信任的应用的认证可能需要例如以由行业标准认证过程组成的方式来验证该应用可由该设备执行。 软件框架可以包括例如由底层支持的Android框架。 Linux操作系统环境并在Linux资源容器中隔离。 还可以提供安全访问客户端/服务器接口以支持软件框架和设备的受信任部分之间的交互。 在进一步的实施例中，由Android或类似框架的至少一个版本中实现由设备用于执行传统机顶盒操作的可信应用和机顶盒应用。

公开(公告)号：US20140115623A1

公开(公告)日：2014-04-24

申请号：US13715395

申请日：2012-12-14

Applicant: BROADCOM CORPORATION

Inventor： Narayan Rajgopal ,  Marcus C. Kellerman ,  David Erickson

IPC: H04N21/835

CPC classification number: H04N21/835 ,  H04N21/443 ,  H04N21/4437

Abstract: A set top box or like device incorporating an untrusted software framework as a client of a secure operating system kernel. The software framework may comprise, for example, an Android framework supported by an underlying Linux operating system environment having a secure kernel. The software framework can be executed using a variety of process isolation techniques depending on performance and isolation requirements. A secure access client/server interface may also be provided to support interactions between the untrusted software framework (and applications utilizing the untrusted software framework) and secure or trusted portions of the device. The secure access interface can be configured to perform operations such as handle validation, heap pointer validation, non-pointer parameter validation, heap isolation, and resource release relating to terminated processes. In further embodiments, a software framework aggregator is used to support a plurality of additional software frameworks for use in the set top box.

Abstract translation: 一个机顶盒或类似的设备，其中包含不可信任的软件框架作为安全操作系统内核的客户端。 软件框架可以包括例如由具有安全内核的底层Linux操作系统环境支持的Android框架。 根据性能和隔离要求，可以使用各种过程隔离技术执行软件框架。 还可以提供安全访问客户端/服务器接口以支持不受信任的软件框架（以及利用不受信任的软件框架的应用）与设备的安全或受信任部分之间的交互。 可以将安全访问接口配置为执行诸如句柄验证，堆指针验证，非指针参数验证，堆隔离以及与终止的进程相关的资源释放等操作。 在另外的实施例中，软件框架聚合器用于支持用于机顶盒中的多个附加软件框架。