-
1.发明授权Method and apparatus for run-time in-memory patching of code from a service processor 有权从服务处理器的代码运行时内存补丁的方法和装置公开(公告)号:US08286238B2
公开(公告)日:2012-10-09
申请号:US11540373
申请日:2006-09-29
IPC分类号: H04L29/06
CPC分类号: G06F8/656
摘要: Methods and apparatuses enable in-memory patching of a program loaded in volatile memory. A service processor identifies a program to be patched and an associated patch for the program. The patch is loaded into memory, including applying relocation fix-ups to the patch. The service processor directs the program to the patch in place of the segment of the program to be patched. The program implements the patch while maintaining program state, and without suspending execution of the program.
摘要翻译: 方法和装置使得能够在加载在易失性存储器中的程序的内存中修补。 服务处理器识别要修补的程序和程序的相关修补程序。 修补程序加载到内存中,包括将修补程序应用于修补程序。 服务处理器将程序引导到补丁代替要修补的程序的段。 该程序在维护程序状态的同时实现补丁,并且不会暂停程序的执行。
-
2.发明申请Method and apparatus for run-time in-memory patching of code from a service processor 有权从服务处理器的代码运行时内存补丁的方法和装置公开(公告)号:US20080083030A1
公开(公告)日:2008-04-03
申请号:US11540373
申请日:2006-09-29
IPC分类号: G06F12/14
CPC分类号: G06F8/656
摘要: Methods and apparatuses enable in-memory patching of a program loaded in volatile memory. A service processor identifies a program to be patched and an associated patch for the program. The patch is loaded into memory, including applying relocation fix-ups to the patch. The service processor directs the program to the patch in place of the segment of the program to be patched. The program implements the patch while maintaining program state, and without suspending execution of the program.
摘要翻译: 方法和装置使得能够在加载在易失性存储器中的程序的内存中修补。 服务处理器识别要修补的程序和程序的相关修补程序。 修补程序加载到内存中,包括将修补程序应用于修补程序。 服务处理器将程序引导到补丁代替要修补的程序的段。 该程序在维护程序状态的同时实现补丁,并且不会暂停程序的执行。
-
公开(公告)号:US07571298B2
公开(公告)日:2009-08-04
申请号:US11428335
申请日:2006-06-30
申请人: Hormuzd M. Khosravi , David M. Durham , Travis Schluessler , Ravi Sahita , Uday Savagaonkar , Priya Rajagopal
发明人: Hormuzd M. Khosravi , David M. Durham , Travis Schluessler , Ravi Sahita , Uday Savagaonkar , Priya Rajagopal
CPC分类号: G06F12/1081 , G06F12/00
摘要: Systems and methods are described herein to provide for host virtual memory reconstitution. Virtual memory reconstitution is the ability to translate the host device's virtual memory addresses to the host device's physical memory addresses. The virtual memory reconstitution methods are independent of the operating system running on the host device.
摘要翻译: 这里描述了系统和方法来提供主机虚拟存储器重构。 虚拟内存重构是将主机设备的虚拟内存地址转换为主机设备的物理内存地址的功能。 虚拟内存重构方法与在主机设备上运行的操作系统无关。
-
4.发明申请Method and apparatus for secure page swapping in virtual memory systems 审中-公开用于在虚拟存储器系统中进行安全页面交换的方法和装置公开(公告)号:US20080077767A1
公开(公告)日:2008-03-27
申请号:US11528161
申请日:2006-09-27
申请人: Hormuzd M. Khosravi , Uday Savagaonkar , Ravi Sahita , David Durham , Travis Schluessler , Gayathri Nagabhushan
发明人: Hormuzd M. Khosravi , Uday Savagaonkar , Ravi Sahita , David Durham , Travis Schluessler , Gayathri Nagabhushan
CPC分类号: G06F12/1475 , G06F12/0804 , G06F12/1408 , G06F12/1491
摘要: Embodiments described herein disclose a method and apparatus for secure page swapping in a virtual memory system. An integrity check value mechanism is used to protect software programs from run-time attacks against memory pages while those pages are swapped to secondary memory. A hash value is computed for an agent page as it is swapped from primary memory to secondary memory. When the page is swapped back into primary memory from secondary memory, that hash value is recomputed to verify that the page was not modified while stored in secondary memory. Alternatively, the hash value is pre-computed and placed in an integrity manifest wherein it is retrieved and verified when the page is loaded back into primary memory from secondary memory.
摘要翻译: 本文描述的实施例公开了一种用于虚拟存储器系统中的安全页面交换的方法和装置。 完整性检查值机制用于保护软件程序免受针对存储器页面的运行时攻击,而这些页面被交换到辅助存储器。 当代理页面从主存储器交换到辅助存储器时,计算哈希值。 当页面从辅助存储器交换回主存储器时,重新计算该哈希值,以验证在存储在辅助存储器中的页面是否未被修改。 或者,哈希值是预先计算的并且被放置在完整性清单中,其中当从第二存储器将页面加载回主存储器时,其被检索和验证。
-
5.发明申请Tamper-resistant method and apparatus for verification and measurement of host agent dynamic data updates 审中-公开用于验证和测量主机代理动态数据更新的防篡改方法和装置公开(公告)号:US20080134321A1
公开(公告)日:2008-06-05
申请号:US11648252
申请日:2006-12-29
申请人: Priya Rajagopal , Travis Schluessler , Uday R. Savagaonkar , David Durham , Ravi Sahita , Uri Blumenthal
发明人: Priya Rajagopal , Travis Schluessler , Uday R. Savagaonkar , David Durham , Ravi Sahita , Uri Blumenthal
IPC分类号: H04L9/32
CPC分类号: G06F21/55 , G06F21/52 , G06F21/6281 , G06F21/64 , H04L9/3242 , H04L9/3247 , H04L63/06 , H04L63/123 , H04L63/1441
摘要: A platform for verifying the validity of changes to dynamic data modifiable during the runtime execution of an agent. In one embodiment, a management mode of a processor uses key information to generate a signature for a set of dynamic data, the signature to verify the validity of the state of the dynamic data to an integrity measurement agent.
摘要翻译: 用于验证代理程序运行时执行期间可修改动态数据的更改的有效性的平台。 在一个实施例中,处理器的管理模式使用密钥信息来生成一组动态数据的签名,该签名用于向完整性测量代理验证动态数据的状态的有效性。
-
公开(公告)号:US20110107355A1
公开(公告)日:2011-05-05
申请号:US12987813
申请日:2011-01-10
IPC分类号: G06F9/44
CPC分类号: G06F12/0866 , G06F13/387
摘要: Systems and methods are described herein to provide for secure host resource management on a computing device. Other embodiments include apparatus and system for management of one or more host device drivers from an isolated execution environment. Further embodiments include methods for querying and receiving event data from manageable resources on a host device. Further embodiments include data structures for the reporting of event data from one or more host device drivers to one or more capability modules.
摘要翻译: 这里描述了系统和方法来提供计算设备上的安全的主机资源管理。 其他实施例包括用于从隔离执行环境管理一个或多个主机设备驱动器的装置和系统。 另外的实施例包括用于从主机设备上的可管理资源查询和接收事件数据的方法。 另外的实施例包括用于将事件数据从一个或多个主机设备驱动程序报告给一个或多个能力模块的数据结构。
-
公开(公告)号:US07870565B2
公开(公告)日:2011-01-11
申请号:US11173885
申请日:2005-06-30
IPC分类号: G06F9/44
CPC分类号: G06F12/0866 , G06F13/387
摘要: Systems and methods are described herein to provide for secure host resource management on a computing device. Other embodiments include apparatus and system for management of one or more host device drivers from an isolated execution environment. Further embodiments include methods for querying and receiving event data from manageable resources on a host device. Further embodiments include data structures for the reporting of event data from one or more host device drivers to one or more capability modules.
摘要翻译: 这里描述了系统和方法来提供计算设备上的安全的主机资源管理。 其他实施例包括用于从隔离执行环境管理一个或多个主机设备驱动器的装置和系统。 另外的实施例包括用于从主机设备上的可管理资源查询和接收事件数据的方法。 另外的实施例包括用于将事件数据从一个或多个主机设备驱动程序报告给一个或多个能力模块的数据结构。
-
公开(公告)号:US08510760B2
公开(公告)日:2013-08-13
申请号:US12987813
申请日:2011-01-10
IPC分类号: G06F9/44
CPC分类号: G06F12/0866 , G06F13/387
摘要: Systems and methods are described herein to provide for secure host resource management on a computing device. Other embodiments include apparatus and system for management of one or more host device drivers from an isolated execution environment. Further embodiments include methods for querying and receiving event data from manageable resources on a host device. Further embodiments include data structures for the reporting of event data from one or more host device drivers to one or more capability modules.
摘要翻译: 这里描述了系统和方法来提供计算设备上的安全的主机资源管理。 其他实施例包括用于从隔离执行环境管理一个或多个主机设备驱动器的装置和系统。 另外的实施例包括用于从主机设备上的可管理资源查询和接收事件数据的方法。 另外的实施例包括用于将事件数据从一个或多个主机设备驱动程序报告给一个或多个能力模块的数据结构。
-
公开(公告)号:US20130304986A1
公开(公告)日:2013-11-14
申请号:US13943408
申请日:2013-07-16
IPC分类号: G06F12/08
CPC分类号: G06F12/0866 , G06F13/387
摘要: Systems and methods are described herein to provide for secure host resource management on a computing device. Other embodiments include apparatus and system for management of one or more host device drivers from an isolated execution environment. Further embodiments include methods for querying and receiving event data from manageable resources on a host device. Further embodiments include data structures for the reporting of event data from one or more host device drivers to one or more capability modules.
摘要翻译: 这里描述了系统和方法来提供计算设备上的安全的主机资源管理。 其他实施例包括用于从隔离执行环境管理一个或多个主机设备驱动器的装置和系统。 另外的实施例包括用于从主机设备上的可管理资源查询和接收事件数据的方法。 另外的实施例包括用于将事件数据从一个或多个主机设备驱动程序报告给一个或多个能力模块的数据结构。
-
公开(公告)号:US08375430B2
公开(公告)日:2013-02-12
申请号:US11475751
申请日:2006-06-27
CPC分类号: H04L9/3234 , H04L9/3271 , H04L63/162 , H04W12/06
摘要: Secure re-authentication of host devices roaming between different connection and/or access points within a network controlled by the same administrative domain is described. Platform overhead associated with exchanging information for authentication and/or validation on each new connection during mobility is reduced by enabling prior authenticated network access to influence subsequent network access.
摘要翻译: 描述在由相同管理域控制的网络内的不同连接和/或接入点之间漫游的主机设备的安全重新认证。 通过使先前的经过身份验证的网络访问来影响后续网络访问,减少了在移动性期间在每个新连接上交换用于认证和/或验证的信息的平台开销。
-
-
-
-
-
-
-
-
-
搜索结果
41 条记录 (耗时 0.025 秒)