公开(公告)号：US20200004552A1

公开(公告)日：2020-01-02

申请号：US16024733

申请日：2018-06-29

Applicant: Intel Corporation

Inventor： Fangfei LIU ,  Bin XING ,  Michael STEINER ,  Mona VIJ ,  Carlos ROZAS ,  Francis MCKEEN ,  Meltem OZSOY ,  Matthew FERNANDEZ ,  Krystof ZMUDZINSKI ,  Mark SHANAHAN

IPC: G06F9/38 ,  G06F9/30 ,  G06F21/55

Abstract: Detailed herein are systems, apparatuses, and methods for a computer architecture with instruction set support to mitigate against page fault- and/or cache-based side-channel attacks. In an embodiment, an apparatus includes a decoder to decode a first instruction, the first instruction having a first field for a first opcode that indicates that execution circuitry is to set a first flag in a first register that indicates a mode of operation that redirects program flow to an exception handler upon the occurrence of an event. The apparatus further includes execution circuitry to execute the decoded first instruction to set the first flag in the first register that indicates the mode of operation and to store an address of an exception handler in a second register.

公开(公告)号：US20230274034A1

公开(公告)日：2023-08-31

申请号：US18311253

申请日：2023-05-03

Applicant: Intel Corporation

Inventor： Marcela S. MELARA ,  Bruno VAVALA ,  Michael STEINER ,  Vincent SCARLATA ,  Anjo Lucas VAHLDIEK-OBERWAGNER

IPC: G06F21/64 ,  G06F21/51

CPC classification number: G06F21/64 ,  G06F21/51

Abstract: A method and apparatus for multi-dimensional attestations for a software application. A multi-dimensional attestation is generated for at least one component of the software application. The multi-dimensional attestation includes a signed attestation for the at least one component and an attestation reference to at least one other related component. A verifier obtains multi-dimensional attestations for the components of the software application and obtains the signed attestation for the related components of the software application based on the attestation reference and verifies integrity of at least part of the software application based on the obtained signed attestations. The multi-dimensional attestation for a given component of a software application can link attestations across spatial and temporal dimensions including other microservice(s) that communicates directly with the subject microservice, imported code dependencies on which the subject microservice is dependent, and/or the underlying software layer of the subject microservice.