公开(公告)号：US20230058046A1

公开(公告)日：2023-02-23

申请号：US17792292

申请日：2020-01-29

Applicant: Sampo SOVIO ,  Huawei Technologies Co., Ltd.

Inventor： Sampo Sovio ,  Qiming Li ,  Gang Lian ,  Kui Wang ,  Santeri Salko ,  Vladimir Ushakov

IPC: G06F21/53

Abstract: An apparatus is configured to protect the privacy of shared objects by loading shared object into a user memory of a rich execution environment. The shared object has an encrypted segment and metadata. A request for decryption is sent to a trusted execution environment and the encrypted segment is decrypted based on the metadata and a predetermined platform key to produce a decrypted segment. The decrypted segment is written into the shared object. A request to lock the shared object is sent and a memory occupied by the shared object is locked or set to execute only. The lock of the memory region occupied by the decrypted shared object maps the memory region to be non-readable and non-writable to applications executing at a first privilege level and to the operating system kernel executing at a second privilege level.

公开(公告)号：US12197563B2

公开(公告)日：2025-01-14

申请号：US17792292

申请日：2020-01-29

Applicant: Huawei Technologies Co., Ltd. ,  Sampo Sovio

Inventor： Sampo Sovio ,  Qiming Li ,  Gang Lian ,  Kui Wang ,  Santeri Salko ,  Vladimir Ushakov

IPC: G06F21/53

Abstract: An apparatus is configured to protect the privacy of shared objects by loading shared object into a user memory of a rich execution environment. The shared object has an encrypted segment and metadata. A request for decryption is sent to a trusted execution environment and the encrypted segment is decrypted based on the metadata and a predetermined platform key to produce a decrypted segment. The decrypted segment is written into the shared object. A request to lock the shared object is sent and a memory occupied by the shared object is locked or set to execute only. The lock of the memory region occupied by the decrypted shared object maps the memory region to be non-readable and non-writable to applications executing at a first privilege level and to the operating system kernel executing at a second privilege level.

公开(公告)号：US11307760B2

公开(公告)日：2022-04-19

申请号：US16650264

申请日：2017-09-25

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Jinpeng Zhu ,  Kui Wang ,  Xiang Li ,  Zongfang Lin

IPC: G06F9/451 ,  G06F3/04883 ,  G06F16/25 ,  G06F3/04817 ,  G06F3/0482

Abstract: This application provides a terminal interface display method and a terminal. A specific solution includes: determining, by a terminal, a frequently used touch area on a first side of the terminal in response to a first gesture input by a user on a first interface, where the first gesture is a gesture input by a finger on a first side of the user, the frequently used touch area is a touch area that is on a terminal interface and that has undergone user operation whose frequency or quantity of times is greater than a first threshold, and the first interface includes at least two application icons; and displaying, by the terminal, at least one frequently used application icon of the at least two application icons in the frequently used touch area on the first side.

公开(公告)号：US20240095408A1

公开(公告)日：2024-03-21

申请号：US18264248

申请日：2021-12-31

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Huayuan Han ,  Bing Ma ,  Jie Li ,  Kui Wang ,  Xuan Zhou ,  Lei Chen ,  Qiang Li

IPC: G06F21/74 ,  G06F21/60

CPC classification number: G06F21/74 ,  G06F21/602 ,  G06F21/604

Abstract: Embodiments of this application disclose a data protection method and system, a medium, and an electronic device, and belong to the field of communication technologies. In embodiments of this application, a first electronic device establishes a communication connection to a second electronic device. The first electronic device is a trusted device of the second electronic device. When detecting a first trigger condition, the first electronic device sends first data to the second electronic device. The first data is used to trigger the second electronic device to enter a maintenance mode. According to embodiments of this application, the first electronic device triggers the second electronic device to enter the maintenance mode, to protect data of the electronic devices.

公开(公告)号：US11775201B2

公开(公告)日：2023-10-03

申请号：US17266901

申请日：2018-08-08

Applicant: Huawei Technologies Co., Ltd.

Inventor： Liming Wu ,  Kui Wang ,  Rémi Robert Michel Denis-Courmont ,  Igor Stoppa

IPC: G06F12/00 ,  G06F3/06 ,  G06F9/455 ,  G06F21/53 ,  G06F12/14 ,  G06F12/02

CPC classification number: G06F3/0655 ,  G06F3/0604 ,  G06F3/064 ,  G06F3/0673 ,  G06F9/45558 ,  G06F12/023 ,  G06F12/1491 ,  G06F21/53 ,  G06F2221/033

Abstract: An apparatus that includes a processor and a memory. The processor and the memory are configured to provide a first software process configured to execute at a first privilege level; and a second software process configured to execute at a second privilege level, wherein the first privilege level is more restrictive than the second privilege level. The processor is configured to, initialize, at the first privilege level, a memory pool within the memory, allocate, at the first privilege level, a block of memory, send a request to write protect the block of memory to the second software process, and to write protect, at the second privilege level, the allocated block of memory.