公开(公告)号：US09183391B2

公开(公告)日：2015-11-10

申请号：US13997790

申请日：2013-03-13

申请人： Adriaan Van De Ven ,  Baiju V. Patel

发明人： Adriaan Van De Ven ,  Baiju V. Patel

IPC分类号： G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00 ,  G06F21/56

CPC分类号： G06F21/56 ,  G06F12/1491 ,  G06F21/564 ,  G06F21/74 ,  G06F2212/1052 ,  G06F2221/2113

摘要： Technologies managing cross ring memory accesses by a device driver on a computing device includes configuring a memory page table associated with the device driver to disable cross ring memory accesses by the device driver, trapping attempted cross ring memory accesses by the device driver, and denying the attempted cross ring memory access if the device driver is determined to be malicious. If the device driver is determined not to be malicious, the memory page table is updated to allow the attempted cross ring memory access. The device driver may be analyzed to determine whether the device driver is malicious by comparing the device driver and the attempted cross ring memory access to security data, such as a device driver fingerprint and/or cross ring memory access heuristics, stored on the computing device.

摘要翻译： 管理计算设备上的设备驱动器的交叉环存储器访问的技术包括配置与设备驱动程序相关联的存储器页表，以禁用设备驱动程序的交叉环存储器访问，捕获设备驱动程序尝试的交叉环存储器访问，以及拒绝 如果设备驱动程序被确定为恶意，则尝试跨环内存访问。 如果设备驱动程序被确定为不恶意，则更新内存页表以允许尝试的交叉环内存访问。 可以分析设备驱动程序以通过将设备驱动程序和尝试的交叉环存储器访问与存储在计算设备上的安全数据（诸如设备驱动程序指纹和/或交叉环存储器访问启发式）进行比较来确定设备驱动程序是否是恶意的 。

公开(公告)号：US08028295B2

公开(公告)日：2011-09-27

申请号：US11239475

申请日：2005-09-30

申请人： Gautham Chinya ,  Hong Wang ,  Prashant Sethi ,  Shivnandan Kaushik ,  Bryant Bigbee ,  John Shen ,  Richard Hankins ,  Xiang Zou ,  Baiju V. Patel ,  Jason W. Brandt ,  Anil Aggarwal ,  John L. Reid

发明人： Gautham Chinya ,  Hong Wang ,  Prashant Sethi ,  Shivnandan Kaushik ,  Bryant Bigbee ,  John Shen ,  Richard Hankins ,  Xiang Zou ,  Baiju V. Patel ,  Jason W. Brandt ,  Anil Aggarwal ,  John L. Reid

IPC分类号： G06F9/46 ,  G06F7/38

CPC分类号： G06F9/3005 ,  G06F9/3009 ,  G06F9/3851 ,  G06F9/3861 ,  G06F9/3877 ,  G06F9/3885 ,  G06F9/461

摘要： Embodiments of the invention provide a method of creating, based on an operating-system-scheduled thread running on an operating-system-visible sequencer and using an instruction set extension, a persistent user-level thread to run on an operating-system-sequestered sequencer independently of context switch activities on the operating-system-scheduled thread. The operating-system-scheduled thread and the persistent user-level thread may share a common virtual address space. Embodiments of the invention may also provide a method of causing a service thread running on an additional operating-system-visible sequencer to provide operating system services to the persistent user-level thread. Embodiments of the invention may further provide apparatus, system, and machine-readable medium thereof.

摘要翻译： 本发明的实施例提供了一种基于在操作系统可见定序器上运行并使用指令集扩展的操作系统调度的线程来创建持久用户级线程在操作系统隔离上运行的方法 音序器独立于操作系统调度线程上的上下文切换活动。 操作系统调度的线程和持久用户级线程可以共享公共虚拟地址空间。 本发明的实施例还可以提供一种使服务线程在附加操作系统可见定序器上运行以向持久用户级线程提供操作系统服务的方法。 本发明的实施例还可以提供其装置，系统和机器可读介质。

公开(公告)号：US07363320B2

公开(公告)日：2008-04-22

申请号：US10838509

申请日：2004-05-04

申请人： Baiju V. Patel

发明人： Baiju V. Patel

IPC分类号： G06F17/30

CPC分类号： G06F21/6254 ,  Y10S707/99942 ,  Y10S707/99945 ,  Y10S707/99948

摘要： A method and system is provided for correlating data. A data tuple includes a unique record ID and a record. At least one data tuple is sent from a data supplier to a data user. An entity correlator receives at least one pair of the record ID and an identifying ID from a data supplier. The data user forwards a record ID list to the entity correlator. The record ID list includes at least one record ID. The entity correlator generates an entity list and sends it to the data user. The entity list correlates each entity in the entity list with the at least one record ID.

摘要翻译： 提供了一种用于关联数据的方法和系统。 数据元组包括唯一的记录ID和记录。 至少一个数据元组从数据供应商发送到数据用户。 实体相关器从数据提供者接收至少一对记录ID和识别ID。 数据用户将记录ID列表转发到实体相关器。 记录ID列表至少包括一个记录ID。 实体相关器生成实体列表并将其发送给数据用户。 实体列表将实体列表中的每个实体与至少一个记录ID相关联。

公开(公告)号：US20180285559A1

公开(公告)日：2018-10-04

申请号：US15472181

申请日：2017-03-28

申请人： Rodrigo Branco ,  Xiaoning Li ,  David M. Durham ,  Hongliang Gao ,  Stephen A. Fischer ,  Baiju V. Patel

发明人： Rodrigo Branco ,  Xiaoning Li ,  David M. Durham ,  Hongliang Gao ,  Stephen A. Fischer ,  Baiju V. Patel

IPC分类号： G06F21/52 ,  G06F21/55 ,  G06F15/78

摘要： The present disclosure is directed to systems and methods for detecting stack-pivot attacks in a processor-based device. Processor circuitry executes one or more applications via sequential execution of instructions on a stack. Stack pivot attacks occur when an attacker takes control of the stack and uses the stack to execute a series of code sections referred to as “gadgets.” A stack-pivot attack detector establishes an allowable processor stack offset change value associated with an application and monitors a processor stack offset change value responsive to an occurrence of a processor stack exchange instruction. A stack-pivot attack is detected when the processor offset change value exceeds the allowable processor stack offset change value. Upon detecting a stack-pivot attack, the stack-pivot detection circuitry causes the selective termination of the application.

公开(公告)号：US08607235B2

公开(公告)日：2013-12-10

申请号：US11027445

申请日：2004-12-30

申请人： Richard A. Hankins ,  Hong Wang ,  Gautham N. Chinya ,  Trung A. Diep ,  Shivnandan D. Kaushik ,  Bryant E. Bigbee ,  John P. Shen ,  Asit K. Mallick ,  Baiju V. Patel ,  James Paul Held ,  Milind B. Girkar ,  Prashant Sethi ,  Xinmin Tian

发明人： Richard A. Hankins ,  Hong Wang ,  Gautham N. Chinya ,  Trung A. Diep ,  Shivnandan D. Kaushik ,  Bryant E. Bigbee ,  John P. Shen ,  Asit K. Mallick ,  Baiju V. Patel ,  James Paul Held ,  Milind B. Girkar ,  Prashant Sethi ,  Xinmin Tian

IPC分类号： G06F9/46

CPC分类号： G06F9/4843

摘要： Method, apparatus and system embodiments to schedule OS-independent “shreds” without intervention of an operating system. For at least one embodiment, the shred is scheduled for execution by a scheduler routine rather than the operating system. A scheduler routine may run on each enabled sequencer. The schedulers may retrieve shred descriptors from a queue system. The sequencer associated with the scheduler may then execute the shred described by the descriptor. Other embodiments are also described and claimed.

摘要翻译： 方法，装置和系统实施例来调度不依赖于操作系统的OS无关的“碎片”。 对于至少一个实施例，碎片被调度为由调度器例程而不是操作系统执行。 调度程序例程可以在每个启用的顺控程序上运行。 调度器可以从队列系统检索碎片描述符。 与调度器相关联的定序器然后可以执行由描述符描述的碎片。 还描述和要求保护其他实施例。

公开(公告)号：US08479217B2

公开(公告)日：2013-07-02

申请号：US13221119

申请日：2011-08-30

申请人： Gautham Chinya ,  Hong Wang ,  Prashant Sethi ,  Shivnandan Kaushik ,  Bryant Bigbee ,  John Shen ,  Richard Hankins ,  Xiang Zou ,  Baiju V. Patel ,  Jason W. Brandt ,  Anil Aggarwal ,  John L. Reid

发明人： Gautham Chinya ,  Hong Wang ,  Prashant Sethi ,  Shivnandan Kaushik ,  Bryant Bigbee ,  John Shen ,  Richard Hankins ,  Xiang Zou ,  Baiju V. Patel ,  Jason W. Brandt ,  Anil Aggarwal ,  John L. Reid

IPC分类号： G06F9/46 ,  G06F7/38

CPC分类号： G06F9/3005 ,  G06F9/3009 ,  G06F9/3851 ,  G06F9/3861 ,  G06F9/3877 ,  G06F9/3885 ,  G06F9/461

摘要： Embodiments of the invention provide a method of creating, based on an operating-system-scheduled thread running on an operating-system-visible sequencer and using an instruction set extension, a persistent user-level thread to run on an operating-system-sequestered sequencer independently of context switch activities on the operating-system-scheduled thread. The operating-system-scheduled thread and the persistent user-level thread may share a common virtual address space. Embodiments of the invention may also provide a method of causing a service thread running on an additional operating-system-visible sequencer to provide operating system services to the persistent user-level thread. Embodiments of the invention may further provide apparatus, system, and machine-readable medium thereof.

摘要翻译： 本发明的实施例提供了一种基于在操作系统可见定序器上运行并使用指令集扩展的操作系统调度的线程来创建持久用户级线程在操作系统隔离上运行的方法 音序器独立于操作系统调度线程上的上下文切换活动。 操作系统调度的线程和持久用户级线程可以共享公共虚拟地址空间。 本发明的实施例还可以提供一种使服务线程在附加操作系统可见定序器上运行以向持久用户级线程提供操作系统服务的方法。 本发明的实施例还可以提供其装置，系统和机器可读介质。

公开(公告)号：US20130054940A1

公开(公告)日：2013-02-28

申请号：US13608970

申请日：2012-09-10

申请人： Hong Wang ,  John Shen ,  Ed Grochowski ,  James Paul Held ,  Bryant Bigbee ,  Shivnandan D. Kaushik ,  Gautham Chinya ,  Xiang Zou ,  Per Hammarlund ,  Xinmin Tian ,  Anil Aggarwal ,  Scott Dion Rodgers ,  Prashant Sethi ,  Baiju V. Patel ,  Richard Andrew Hankins

发明人： Hong Wang ,  John Shen ,  Ed Grochowski ,  James Paul Held ,  Bryant Bigbee ,  Shivnandan D. Kaushik ,  Gautham Chinya ,  Xiang Zou ,  Per Hammarlund ,  Xinmin Tian ,  Anil Aggarwal ,  Scott Dion Rodgers ,  Prashant Sethi ,  Baiju V. Patel ,  Richard Andrew Hankins

IPC分类号： G06F9/312

CPC分类号： G06F9/3867 ,  G06F9/30003 ,  G06F9/30043 ,  G06F9/3005 ,  G06F9/3009 ,  G06F9/30145 ,  G06F9/3017 ,  G06F9/30174 ,  G06F9/3851 ,  G06F9/4843 ,  G06F9/4881

摘要： In an embodiment, a method is provided. The method includes managing user-level threads on a first instruction sequencer in response to executing user-level instructions on a second instruction sequencer that is under control of an application level program. A first user-level thread is run on the second instruction sequencer and contains one or more user level instructions. A first user level instruction has at least 1) a field that makes reference to one or more instruction sequencers or 2) implicitly references with a pointer to code that specifically addresses one or more instruction sequencers when the code is executed.

摘要翻译： 在一个实施例中，提供了一种方法。 该方法包括响应于在应用级程序的控制下对第二指令定序器执行用户级指令来管理第一指令定序器上的用户级线程。 在第二指令定序器上运行第一用户级线程并且包含一个或多个用户级指令。 第一用户级指令至少具有1）引用一个或多个指令定序器的字段，或者2）使用指向代码执行代码时特定寻址一个或多个指令定序器的代码的指针进行隐式引用。

公开(公告)号：US08079035B2

公开(公告)日：2011-12-13

申请号：US11321763

申请日：2005-12-27

申请人： Richard A. Hankins ,  Gautham N. Chinya ,  Hong Wang ,  David K. Poulsen ,  Shirish Aundhe ,  John P. Shen ,  Sanjiv M. Shah ,  Baiju V. Patel

发明人： Richard A. Hankins ,  Gautham N. Chinya ,  Hong Wang ,  David K. Poulsen ,  Shirish Aundhe ,  John P. Shen ,  Sanjiv M. Shah ,  Baiju V. Patel

IPC分类号： G06F9/46 ,  G06F9/44 ,  G06F13/24

CPC分类号： G06F9/462

摘要： Data structure creation, organization and management techniques for data local to user-level threads are provided. In one embodiment, a method includes generating, for a user-level thread (“shred”) to run on a thread unit that is not managed by an operating system (“OS”), a storage area for local data and maintaining state in the storage area across a context switch from the thread unit that is not managed by the OS to a second thread unit that is managed by the OS. Other embodiments are also described and claimed.

摘要翻译： 提供数据结构创建，用户级线程本地数据的组织和管理技术。 在一个实施例中，一种方法包括为用户级线程（“shred”）生成在未由操作系统（“OS”）管理的线程单元上运行本地数据的存储区域; 以及将来自未由OS管理的线程单元的上下文切换保持在由OS管理的第二线程单元的状态。 还描述和要求保护其他实施例。

公开(公告)号：US07743233B2

公开(公告)日：2010-06-22

申请号：US11100032

申请日：2005-04-05

申请人： Hong Wang ,  Gautham N. Chinya ,  Richard A. Hankins ,  Shivnandan D. Kaushik ,  Bryant Bigbee ,  John Shen ,  Per Hammarlund ,  Xiang Zou ,  Jason W. Brandt ,  Prashant Sethi ,  Douglas M. Carmean ,  Baiju V. Patel ,  Scott Dion Rodgers ,  Ryan N. Rakvic ,  John L. Reid ,  David K. Poulsen ,  Sanjiv M. Shah ,  James Paul Held ,  James Charles Abel

发明人： Hong Wang ,  Gautham N. Chinya ,  Richard A. Hankins ,  Shivnandan D. Kaushik ,  Bryant Bigbee ,  John Shen ,  Per Hammarlund ,  Xiang Zou ,  Jason W. Brandt ,  Prashant Sethi ,  Douglas M. Carmean ,  Baiju V. Patel ,  Scott Dion Rodgers ,  Ryan N. Rakvic ,  John L. Reid ,  David K. Poulsen ,  Sanjiv M. Shah ,  James Paul Held ,  James Charles Abel

IPC分类号： G06F9/00

CPC分类号： G06F9/485 ,  G06F9/30043 ,  G06F9/30076 ,  G06F9/3851 ,  G06F9/3885 ,  G06F9/3891 ,  G06F9/461 ,  G06F9/4881

摘要： Disclosed are embodiments of a system, methods and mechanism for management and translation of mapping between logical sequencer addresses and physical or logical sequencers in a multi-sequencer multithreading system. A mapping manager may manage assignment and mapping of logical sequencer addresses or pages to actual sequencers or frames of the system. Rationing logic associated with the mapping manager may take into account sequencer attributes when such mapping is performed Relocation logic associated with the mapping manager may manage spill and fill of context information to/from a backing store when re-mapping actual sequencers. Sequencers may be allocated singly, or may be allocated as part of partitioned blocks. The mapping manager may also include translation logic that provides an identifier for the mapped sequencer each time a logical sequencer address is used in a user program. Other embodiments are also described and claimed.

摘要翻译： 公开了用于管理和转换逻辑定序器地址与多序列器多线程系统中的物理或逻辑顺控程序之间的映射的系统，方法和机制的实施例。 映射管理器可以管理逻辑顺控程序地址或页面到系统的实际定序器或帧的分配和映射。 与映射管理器相关联的配给逻辑可以在执行这样的映射时考虑定序器属性。当重新映射实际的定序器时，与映射管理器相关联的重定位逻辑可以管理向/从备份存储器的上下文信息的溢出和填充。 排序器可以单独分配，或者可以被分配为分区块的一部分。 映射管理器还可以包括每当在用户程序中使用逻辑定序器地址时为映射的定序器提供标识符的翻译逻辑。 还描述和要求保护其他实施例。

公开(公告)号：US20080148259A1

公开(公告)日：2008-06-19

申请号：US11642384

申请日：2006-12-19

申请人： Richard A. Hankins ,  Gautham N. Chinya ,  Hong Wang ,  David K. Poulsen ,  Shirish Aundhe ,  Baiju V. Patel ,  Sanjiv M. Shah

发明人： Richard A. Hankins ,  Gautham N. Chinya ,  Hong Wang ,  David K. Poulsen ,  Shirish Aundhe ,  Baiju V. Patel ,  Sanjiv M. Shah

IPC分类号： G06F9/46

CPC分类号： G06F9/4812 ,  G06F9/3851 ,  G06F9/3861

摘要： Methods, data structures, instructions, and techniques for structured exception handling for user-level threads in a multi-threading system are provided. Registered filter routines may be dispatched to a thread unit not managed by the operating system (OS). The dispatch may occur by allowing an OS-managed thread unit (proxy) to invoke the OS-provided structured exception handling service (including dispatcher) on behalf of the sequestered thread unit. Alternatively, an OS-managed thread unit may include dispatch code and may, without OS intervention, dispatch the filter routine to the sequestered thread unit. Other embodiments are also described and claimed.

摘要翻译： 提供了用于多线程系统中的用户级线程的结构化异常处理的方法，数据结构，指令和技术。 注册的过滤器例程可以被分派到不由操作系统（OS）管理的线程单元。 调度可以通过允许OS管理的线程单元（代理）代表被隔离的线程单元来调用OS提供的结构化异常处理服务（包括调度程序）。 或者，OS管理的线程单元可以包括调度代码，并且可以在没有OS干预的情况下将过滤器例程分派到隔离的线程单元。 还描述和要求保护其他实施例。