公开(公告)号：US20230315327A1

公开(公告)日：2023-10-05

申请号：US17710717

申请日：2022-03-31

Applicant: VMware, Inc.

Inventor： Alex Markuze ,  Avishay Yanai ,  Igor Golikov ,  John Manferdelli ,  Ittai Abraham

IPC: G06F3/06

CPC classification number: G06F3/0653 ,  G06F3/0673 ,  G06F3/0604

Abstract: In one set of embodiments, a computer system can initiate a memory stress test on a memory subsystem of the computer system, where the memory subsystem including a dynamic random access memory (DRAM). Then, while the memory stress test is running, the computer system can execute a plurality of access operations for accessing the DRAM, measure the time taken to complete each access operation, combine the measured times to compute a value, and output the value as an entropy sample.

公开(公告)号：US20230315916A1

公开(公告)日：2023-10-05

申请号：US17710462

申请日：2022-03-31

Applicant: VMware, Inc.

Inventor： Alex Markuze ,  Avishay Yanai ,  Igor Golikov ,  John Manferdelli ,  Ittai Abraham

IPC: G06F21/75 ,  G06F7/58

CPC classification number: G06F21/75 ,  G06F7/582

Abstract: In one set of embodiments, a computer system can allocate a memory buffer in a dynamic random access memory (DRAM), determine a plurality of DRAM rows covered by the memory buffer, and execute a Rowhammer attack against a target row in the plurality of DRAM rows, thereby yielding randomly flipped bits in one or more neighboring DRAM rows. The computer system can then compute a value based on the randomly flipped bits and output the value as an entropy sample.

公开(公告)号：US12147530B2

公开(公告)日：2024-11-19

申请号：US17960738

申请日：2022-10-05

Applicant: VMware, Inc.

Inventor： Ye Li ,  Anoop Jaishankar ,  John Manferdelli ,  David Ott ,  Andrei Warkentin

IPC: G06F21/53 ,  G06F21/12 ,  G06F21/54

Abstract: The disclosure herein describes deploying a Virtual Secure Enclave (VSE) using a universal enclave binary and a Trusted Runtime (TR). A universal enclave binary is generated that includes a set of binaries of Instruction Set Architectures (ISAs) associated with Trusted Execution Environment (TEE) hardware backends. A TEE hardware backend is identified in association with a VSE-compatible device. A VSE that is compatible with the identified TEE hardware backend is generated on the VSE-compatible device and an ISA binary that matches the TEE hardware backend is selected from the universal enclave binary. The selected binary is linked to a runtime library of the TR and loads the linked binary into memory of the generated VSE. The execution of a trusted application is initiated in the generated VSE using a set of interfaces of the TR. The trusted application depends on the TR interfaces rather than the selected ISA binary.

公开(公告)号：US20230315392A1

公开(公告)日：2023-10-05

申请号：US17710752

申请日：2022-03-31

Applicant: VMware, Inc.

Inventor： Alex Markuze ,  Avishay Yanai ,  Igor Golikov ,  John Manferdelli ,  Ittai Abraham

IPC: G06F7/58 ,  G06F9/48

CPC classification number: G06F7/582 ,  G06F9/4806

Abstract: In one set of embodiments, a computer system can initialize a counter that is shared by a plurality of software processes, where each software process is programmed to increment the counter a predefined number of times. The computer system can further run the plurality of software processes concurrently. Upon completion of the plurality of software processes, the computer system can apply one or more functions to the shared counter and output the result as an entropy sample.