利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

79 条记录 (耗时 0.034 秒)

    Tamper protection of software agents operating in a VT environment methods and apparatuses
    31.
    发明申请
    Tamper protection of software agents operating in a VT environment methods and apparatuses 失效
    在VT环境中操作的软件代理的篡改保护方法和设备

    公开(公告)号:US20080082772A1

    公开(公告)日:2008-04-03

    申请号:US11529828

    申请日:2006-09-29

    申请人: Uday Savagaonkar Ravi Sahita David Durham Hormuzd Khosravi

    发明人: Uday Savagaonkar Ravi Sahita David Durham Hormuzd Khosravi

    IPC分类号: G06F12/14

    CPC分类号: G06F12/145 G06F12/1491 G06F21/54 G06F21/6218 G06F21/79 G06F2221/2141

    摘要: Methods, apparatuses, articles, and systems for comparing a first security domain of a first memory page of a physical device to a second security domain of a second memory page of the physical device, the security domains being stored in one or more registers of a processor of the physical device, are described herein. Based on the comparison, the processor disallows an instruction from the first memory page to access the second memory page if the first security domain is different from the second security domain. Resultantly, software agents, in particular, critical software agents, may be protected in a VT environment more efficiently and effectively.

    摘要翻译: 用于将物理设备的第一存储器页面的第一安全域与物理设备的第二存储器页面的第二安全域进行比较的方法,设备,文章和系统,所述安全域被存储在物理设备的一个或多个寄存器中 物理设备的处理器。 基于比较,如果第一安全域与第二安全域不同,则处理器不允许来自第一存储器页的指令访问第二存储器页。 因此,软件代理,特别是关键软件代理,可以在VT环境中更有效和更有效地得到保护。

    Dynamically sharing a stack between different code segments
    32.
    发明申请
    Dynamically sharing a stack between different code segments 失效
    在不同代码段之间动态共享堆栈

    公开(公告)号:US20080022065A1

    公开(公告)日:2008-01-24

    申请号:US11490824

    申请日:2006-07-21

    申请人: Subhash Gutti Uday Savagaonkar Ravi Sahita David Durham

    发明人: Subhash Gutti Uday Savagaonkar Ravi Sahita David Durham

    IPC分类号: G06F12/00

    CPC分类号: G06F12/1475 G06F12/145

    摘要: In one embodiment, the present invention includes a method for receiving a request from a caller code portion of a first color to color at least a portion of a stack with a second color, determining if the request is valid, and if so remapping the stack portion from a first mapping colored with the first color to a second mapping colored with the second color. Other embodiments are described and claimed.

    摘要翻译: 在一个实施例中,本发明包括一种方法,用于从第一颜色的呼叫者代码部分接收请求以对具有第二颜色的堆栈的至少一部分进行着色,确定请求是否有效,以及如果重新映射堆栈 从具有第一颜色的第一映射部分到第二颜色的第二映射。 描述和要求保护其他实施例。

    GENERATING MULTIPLE ADDRESS SPACE IDENTIFIERS PER VIRTUAL MACHINE TO SWITCH BETWEEN PROTECTED MICRO-CONTEXTS
    34.
    发明申请
    GENERATING MULTIPLE ADDRESS SPACE IDENTIFIERS PER VIRTUAL MACHINE TO SWITCH BETWEEN PROTECTED MICRO-CONTEXTS 有权
    每个虚拟机产生多个地址空间识别器,以保护受保护的微控制器

    公开(公告)号:US20130036291A1

    公开(公告)日:2013-02-07

    申请号:US13650227

    申请日:2012-10-12

    申请人: Uday Savagaonkar Madhavan Parthasarathy Ravi Sahita David Durham

    发明人: Uday Savagaonkar Madhavan Parthasarathy Ravi Sahita David Durham

    IPC分类号: G06F12/10

    CPC分类号: G06F12/1027 G06F12/145

    摘要: Embodiments of an invention for generating multiple address space identifiers per virtual machine to switch between protected micro-contexts are disclosed. In one embodiment, a method includes receiving an instruction requiring an address translation; initiating, in response to receiving the instruction, a page walk from a page table pointed to by the contents of a page table pointer storage location; finding, during the page walk, a transition entry; storing the address translation and one of a plurality of address source identifiers in a translation lookaside buffer, the one of the plurality of address source identifiers based on one of a plurality of a virtual partition identifiers, at least two of the plurality of virtual partition identifiers associated with one of a plurality of virtual machines; and re-initiating the page walk.

    摘要翻译: 公开了用于在每个虚拟机之间生成多个地址空间标识符以在受保护的微上下文之间切换的发明的实施例。 在一个实施例中,一种方法包括接收需要地址转换的指令; 响应于接收到指令,从页表指针存储位置的内容指向的页表中启动页面移动; 在页面散步期间发现转换条目; 将地址转换和多个地址源标识符之一存储在转换后备缓冲器中,所述多个地址源标识符中的一个基于多个虚拟分区标识符中的一个,多个虚拟分区标识符中的至少两个 与多个虚拟机中的一个相关联; 并重新启动页面散步。

    Tamper protection of software agents operating in a vitual technology environment methods and apparatuses
    36.
    发明授权
    Tamper protection of software agents operating in a vitual technology environment methods and apparatuses 失效
    软件代理商的篡改保护在操作技术环境中的方法和设备

    公开(公告)号:US07882318B2

    公开(公告)日:2011-02-01

    申请号:US11529828

    申请日:2006-09-29

    申请人: Uday Savagaonkar Ravi Sahita David Durham Hormuzd Khosravi

    发明人: Uday Savagaonkar Ravi Sahita David Durham Hormuzd Khosravi

    IPC分类号: G06F13/10

    CPC分类号: G06F12/145 G06F12/1491 G06F21/54 G06F21/6218 G06F21/79 G06F2221/2141

    摘要: Methods, apparatuses, articles, and systems for comparing a first security domain of a first memory page of a physical device to a second security domain of a second memory page of the physical device, the security domains being stored in one or more registers of a processor of the physical device, are described herein. Based on the comparison, the processor disallows an instruction from the first memory page to access the second memory page if the first security domain is different from the second security domain. Resultantly, software agents, in particular, critical software agents, may be protected in a virtual technology (VT) environment more efficiently and effectively.

    摘要翻译: 用于将物理设备的第一存储器页面的第一安全域与物理设备的第二存储器页面的第二安全域进行比较的方法,设备,文章和系统,所述安全域被存储在物理设备的一个或多个寄存器中 物理设备的处理器。 基于比较,如果第一安全域与第二安全域不同,则处理器不允许来自第一存储器页的指令访问第二存储器页。 因此,软件代理,特别是关键软件代理,可以在虚拟技术(VT)环境中更有效和更有效地得到保护。

    Dynamically sharing a stack between different code segments
    37.
    发明授权
    Dynamically sharing a stack between different code segments 失效
    在不同代码段之间动态共享堆栈

    公开(公告)号:US07512768B2

    公开(公告)日:2009-03-31

    申请号:US11490824

    申请日:2006-07-21

    申请人: Subhash Gutti Uday Savagaonkar Ravi Sahita David Durham

    发明人: Subhash Gutti Uday Savagaonkar Ravi Sahita David Durham

    IPC分类号: G06F12/00 G06F13/00 G06F13/28 G06F9/26 G06F9/34

    CPC分类号: G06F12/1475 G06F12/145

    摘要: In one embodiment, the present invention includes a method for receiving a request from a caller code portion of a first color to color at least a portion of a stack with a second color, determining if the request is valid, and if so remapping the stack portion from a first mapping colored with the first color to a second mapping colored with the second color. Other embodiments are described and claimed.

    摘要翻译: 在一个实施例中,本发明包括一种方法,用于从第一颜色的呼叫者代码部分接收请求以对具有第二颜色的堆栈的至少一部分进行着色,确定请求是否有效,以及如果重新映射堆栈 从具有第一颜色的第一映射部分到第二颜色的第二映射。 描述和要求保护其他实施例。

    Monitoring a target agent execution pattern on a VT-enabled system
    38.
    发明申请
    Monitoring a target agent execution pattern on a VT-enabled system 失效
    在启用VT的系统上监视目标代理执行模式

    公开(公告)号:US20080082722A1

    公开(公告)日:2008-04-03

    申请号:US11541474

    申请日:2006-09-29

    申请人: Uday Savagaonkar Ravi Sahita David Durham

    发明人: Uday Savagaonkar Ravi Sahita David Durham

    IPC分类号: G06F21/00

    CPC分类号: G06F21/56 G06F21/57

    摘要: Methods, apparatuses, articles, and systems for observing, by a virtual machine manager of a physical device, execution of a target process of a virtual machine of the physical device, including virtual addresses of the virtual machine referenced during the execution, are described herein. The virtual machine manager further determines whether the target process is executing in an expected manner based at least in part on the observed virtual address references and expected virtual address references.

    摘要翻译: 本文描述了由物理设备的虚拟机管理器观察物理设备的虚拟机的目标进程(包括在执行期间引用的虚拟机的虚拟地址)的方法,装置,物品和系统 。 虚拟机管理器进一步基于观察到的虚拟地址引用和预期的虚拟地址引用来进一步确定目标进程是否以预期的方式执行。