-
公开(公告)号:US08522044B2
公开(公告)日:2013-08-27
申请号:US12869544
申请日:2010-08-26
申请人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
发明人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
IPC分类号: G06F21/00
CPC分类号: G06F21/74 , G06F12/145 , G06F12/1491 , G06F21/52 , G06F21/53
摘要: A platform and method for secure handling of events in an isolated environment. A processor executing in isolated execution “IsoX” mode may leak data when an event occurs as a result of the event being handled in a traditional manner based on the exception vector. By defining a class of events to be handled in IsoX mode, and switching between a normal memory map and an IsoX memory map dynamically in response to receipt of an event of the class, data security may be maintained in the face of such events.
摘要翻译: 用于在孤立环境中安全处理事件的平台和方法。 在隔离执行“IsoX”模式下执行的处理器可能会因事件以传统方式基于异常向量处理事件而发生事件而泄露数据。 通过定义要在IsoX模式下处理的事件类别,以及响应于类的事件的动态地在正常存储器映射和IsoX存储器映射之间切换,可以面对这种事件来维护数据安全性。
-
公开(公告)号:US20100325445A1
公开(公告)日:2010-12-23
申请号:US12869568
申请日:2010-08-26
申请人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
发明人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
IPC分类号: G06F12/14
CPC分类号: G06F21/74 , G06F12/145 , G06F12/1491 , G06F21/52 , G06F21/53
摘要: A platform and method for secure handling of events in an isolated environment. A processor executing in isolated execution “IsoX” mode may leak data when an event occurs as a result of the event being handled in a traditional manner based on the exception vector. By defining a class of events to be handled in IsoX mode, and switching between a normal memory map and an IsoX memory map dynamically in response to receipt of an event of the class, data security may be maintained in the face of such events.
-
公开(公告)号:US08671275B2
公开(公告)日:2014-03-11
申请号:US12869568
申请日:2010-08-26
申请人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
发明人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
CPC分类号: G06F21/74 , G06F12/145 , G06F12/1491 , G06F21/52 , G06F21/53
摘要: A platform and method for secure handling of events in an isolated environment. A processor executing in isolated execution “IsoX” mode may leak data when an event occurs as a result of the event being handled in a traditional manner based on the exception vector. By defining a class of events to be handled in IsoX mode, and switching between a normal memory map and an IsoX memory map dynamically in response to receipt of an event of the class, data security may be maintained in the face of such events.
摘要翻译: 用于在孤立环境中安全处理事件的平台和方法。 在隔离执行“IsoX”模式下执行的处理器可能会因事件以传统方式基于异常向量处理事件而发生事件而泄露数据。 通过定义要在IsoX模式下处理的事件类别,以及响应于类的事件的动态地在正常存储器映射和IsoX存储器映射之间切换,可以面对这种事件来维护数据安全性。
-
公开(公告)号:US20100332760A1
公开(公告)日:2010-12-30
申请号:US12869544
申请日:2010-08-26
申请人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
发明人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
IPC分类号: G06F12/08
CPC分类号: G06F21/74 , G06F12/145 , G06F12/1491 , G06F21/52 , G06F21/53
摘要: A platform and method for secure handling of events in an isolated environment. A processor executing in isolated execution “IsoX” mode may leak data when an event occurs as a result of the event being handled in a traditional manner based on the exception vector. By defining a class of events to be handled in IsoX mode, and switching between a normal memory map and an IsoX memory map dynamically in response to receipt of an event of the class, data security may be maintained in the face of such events.
-
公开(公告)号:US20100325354A1
公开(公告)日:2010-12-23
申请号:US12869639
申请日:2010-08-26
申请人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
发明人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
CPC分类号: G06F21/74 , G06F12/145 , G06F12/1491 , G06F21/52 , G06F21/53
摘要: A platform and method for secure handling of events in an isolated environment. A processor executing in isolated execution “IsoX” mode may leak data when an event occurs as a result of the event being handled in a traditional manner based on the exception vector. By defining a class of events to be handled in IsoX mode, and switching between a normal memory map and an IsoX memory map dynamically in response to receipt of an event of the class, data security may be maintained in the face of such events.
摘要翻译: 用于在孤立环境中安全处理事件的平台和方法。 在隔离执行“IsoX”模式下执行的处理器可能会因事件以传统方式基于异常向量处理事件而发生事件而泄露数据。 通过定义要在IsoX模式下处理的事件类别,以及响应于类的事件的动态地在正常存储器映射和IsoX存储器映射之间切换,可以面对这种事件来维护数据安全性。
-
公开(公告)号:US07793111B1
公开(公告)日:2010-09-07
申请号:US09672368
申请日:2000-09-28
申请人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
发明人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
CPC分类号: G06F21/74 , G06F12/145 , G06F12/1491 , G06F21/52 , G06F21/53
摘要: A platform and method for secure handling of events in an isolated environment. A processor executing in isolated execution “IsoX” mode may leak data when an event occurs as a result of the event being handled in a traditional manner based on the exception vector. By defining a class of events to be handled in IsoX mode, and switching between a normal memory map and an IsoX memory map dynamically in response to receipt of an event of the class, data security may be maintained in the face of such events.
摘要翻译: 用于在孤立环境中安全处理事件的平台和方法。 在隔离执行“IsoX”模式下执行的处理器可能会因事件以传统方式基于异常向量处理事件而发生事件而泄露数据。 通过定义要在IsoX模式下处理的事件类别,以及响应于类的事件的动态地在正常存储器映射和IsoX存储器映射之间切换,可以面对这种事件来维护数据安全性。
-
公开(公告)号:US08458464B2
公开(公告)日:2013-06-04
申请号:US12869639
申请日:2010-08-26
申请人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
发明人: Francis X. McKeen , Lawrence O. Smith , Benjamin Crawford Chaffin , Michael P. Cornaby , Bryant Bigbee
IPC分类号: G06F21/00
CPC分类号: G06F21/74 , G06F12/145 , G06F12/1491 , G06F21/52 , G06F21/53
摘要: A platform and method for secure handling of events in an isolated environment. A processor executing in isolated execution “IsoX” mode may leak data when an event occurs as a result of the event being handled in a traditional manner based on the exception vector. By defining a class of events to be handled in IsoX mode, and switching between a normal memory map and an IsoX memory map dynamically in response to receipt of an event of the class, data security may be maintained in the face of such events.
-
公开(公告)号:US20100050266A1
公开(公告)日:2010-02-25
申请号:US12606408
申请日:2009-10-27
CPC分类号: G06F12/145 , G06F12/1063
摘要: In one embodiment, the present invention provides for extended memory protection for memory of a system. The embodiment includes a method for associating a protection indicator of a protection record maintained outside of an application's data space with a memory location, and preventing access to the memory location based on the status of the protection indicator. In such manner, more secure operation is provided, as malicious code or other malware is prevented from accessing protected memory locations. Other embodiments are described and claimed.
摘要翻译: 在一个实施例中,本发明提供用于系统的存储器的扩展存储器保护。 该实施例包括一种用于将维护在应用程序的数据空间外部的保护记录的保护指示符与存储器位置相关联的方法,以及基于保护指示符的状态来阻止对存储器位置的访问。 以这种方式,提供更安全的操作,因为防止恶意代码或其他恶意软件访问受保护的存储器位置。 描述和要求保护其他实施例。
-
9.发明授权Mechanism to secure computer output from software attack using isolated execution 有权使用隔离执行来保护软件攻击的计算机输出的机制公开(公告)号:US07389427B1
公开(公告)日:2008-06-17
申请号:US09672367
申请日:2000-09-28
IPC分类号: G06F12/14
CPC分类号: G06F12/1433 , G06F21/78 , G06F2221/2105
摘要: A method and platform for maintaining the security of output data in an isolated execution environment. A system memory has an isolated output area readable only by secure output controllers having an isolated execution mode. The output controllers may make a request for access to the isolated output area, upon proper authentication if the request access is granted. The output device may either DMA the content of the isolated output area to an output end point, such as a display, or load it into local storage, the security of which is guaranteed by the controller.
摘要翻译: 一种用于在独立执行环境中维护输出数据的安全性的方法和平台。 系统存储器具有仅由具有隔离执行模式的安全输出控制器可读的隔离输出区域。 如果请求访问被授权,输出控制器可以在进行适当认证时请求访问隔离的输出区域。 输出设备可以将隔离输出区域的内容DMA传输到诸如显示器的输出端点,或将其加载到本地存储器中,其安全性由控制器保证。
-
公开(公告)号:US20080059711A1
公开(公告)日:2008-03-06
申请号:US11513871
申请日:2006-08-31
IPC分类号: G06F12/00
CPC分类号: G06F21/79 , G06F12/0804 , G06F12/0848 , G06F12/0891 , G06F12/126 , G06F12/1416 , G06F21/556
摘要: A method for managing a cache is disclosed. A context switch is identified. It is determined whether an application running after the context switch requires protection. Upon determining that the application requires protection the cache is partitioned. According to an aspect of the present invention, a partitioned section of the cache is completely over written with data associated with the application. Other embodiments are described and claimed.
摘要翻译: 公开了一种用于管理高速缓存的方法。 识别上下文切换。 确定在上下文切换后运行的应用程序是否需要保护。 在确定应用程序需要保护时,缓存被分区。 根据本发明的一个方面,高速缓存的分区部分完全被写入与应用相关的数据。 描述和要求保护其他实施例。
-
-
-
-
-
-
-
-
-
搜索结果
65 条记录 (耗时 0.028 秒)
