-
公开(公告)号:US20190087586A1
公开(公告)日:2019-03-21
申请号:US16123593
申请日:2018-09-06
Applicant: Intel Corporation
Inventor: Francis X. McKEEN , Carlos V. ROZAS , Uday R. SAVAGAONKAR , Simon P. JOHNSON , Vincent SCARLATA , Michael A. GOLDSMITH , Ernie BRICKELL , Jiang Tao LI , Howard C. HERBERT , Prashant DEWAN , Stephen J. TOLOPKA , Gilbert NEIGER , David DURHAM , Gary GRAUNKE , Bernard LINT , Don A. VAN DYKE , Joseph CIHULA , Stalinselvaraj JEYASINGH , Stephen R. VAN DOREN , Dion RODGERS , John GARNEY , Asher ALTMAN
Abstract: A technique to enable secure application and data integrity within a computer system. In one embodiment, one or more secure enclaves are established in which an application and data may be stored and executed.
-
2.发明公开公开(公告)号:US20230409699A1
公开(公告)日:2023-12-21
申请号:US17948829
申请日:2022-09-20
Applicant: Intel Corporation
Inventor: Scott CONSTABLE , Ilya ALEXANDROVICH , Ittai ANATI , Simon JOHNSON , Vincent SCARLATA , Mona VIJ , Yuan XIAO , Bin XING , Krystof SMUDZINSKI
IPC: G06F21/53
CPC classification number: G06F21/53 , G06F2221/034
Abstract: Detailed herein are examples of determining when to allow access to a trusted execution environment (TEE). For example, using TEE logic associated with software to at least in part: determine that a TEE feature is supported based at least on a value of a bit position in a data structure; and not allow a TEE entry instruction to access to a TEE when the bit position of the data structure is reserved.
-
公开(公告)号:US20230274034A1
公开(公告)日:2023-08-31
申请号:US18311253
申请日:2023-05-03
Applicant: Intel Corporation
Inventor: Marcela S. MELARA , Bruno VAVALA , Michael STEINER , Vincent SCARLATA , Anjo Lucas VAHLDIEK-OBERWAGNER
Abstract: A method and apparatus for multi-dimensional attestations for a software application. A multi-dimensional attestation is generated for at least one component of the software application. The multi-dimensional attestation includes a signed attestation for the at least one component and an attestation reference to at least one other related component. A verifier obtains multi-dimensional attestations for the components of the software application and obtains the signed attestation for the related components of the software application based on the attestation reference and verifies integrity of at least part of the software application based on the obtained signed attestations. The multi-dimensional attestation for a given component of a software application can link attestations across spatial and temporal dimensions including other microservice(s) that communicates directly with the subject microservice, imported code dependencies on which the subject microservice is dependent, and/or the underlying software layer of the subject microservice.
-
公开(公告)号:US20220206842A1
公开(公告)日:2022-06-30
申请号:US17134339
申请日:2020-12-26
Applicant: INTEL CORPORATION
Inventor: Ravi SAHITA , Dror CASPI , Vincent SCARLATA , Sharon YANIV , Baruch CHAIKIN , Vedvyas SHANBHOGUE , Jun NAKAJIMA , Arumugam THIYAGARAJAH , Sean CHRISTOPHERSON , Haidong XIA , Vinay AWASTHI , Isaku YAMAHATA , Wei WANG , Thomas ADELMEYER
Abstract: Techniques for migration of a source protected virtual machine from a source platform to a destination platform are descried. A method of an aspect includes enforcing that bundles of state, of a first protected virtual machine (VM), received at a second platform over a stream, during an in-order phase of a migration of the first protected VM from a first platform to the second platform, are imported to a second protected VM of the second platform, in a same order that they were exported from the first protected VM. Receiving a marker over the stream marking an end of the in-order phase. Determining that all bundles of state exported from the first protected VM prior to export of the marker have been imported to the second protected VM. Starting an out-of-order phase of the migration based on the determination that said all bundles of the state exported have been imported.
-
-
-
Search Results
4
records
(took 0.014 seconds)
