Secure machine platform that interfaces to operating systems and customized control programs

    公开(公告)号:US07073059B2

    公开(公告)日:2006-07-04

    申请号:US10118646

    申请日:2002-04-08

    IPC分类号: G06F1/24

    摘要: A combined-hardware-and-software secure-platform interface to which operating systems and customized control programs interface within a computer system. The combined-hardware-and-software secure-platform interface employs a hardware platform that provides at least four privilege levels, non-privileged instructions, non-privileged registers, privileged instructions, privileged registers, and firmware interfaces. The combined-hardware-and-software secure-platform interface conceals all privileged instructions, privileged registers, and firmware interfaces and privileged registers from direct access by operating systems and custom control programs, providing to the operating systems and custom control programs the non-privileged instructions and non-privileged registers provided by the hardware platform as well as a set of callable software services. The callable services provide a set of secure-platform management services for operational control of hardware resources that neither exposes privileged instructions, privileged registers, nor firmware interfaces of the hardware nor simulates privileged instructions and privileged registers. The callable services also provide a set of security-management services that employ internally generated secret data, each compartmentalized security-management service managing internal secret data without exposing the internal secret data to computational entities other than the security-management service itself.

    Method and apparatus for system caller authentication
    2.
    发明授权
    Method and apparatus for system caller authentication 有权
    用于系统呼叫者认证的方法和装置

    公开(公告)号:US07784063B2

    公开(公告)日:2010-08-24

    申请号:US10867048

    申请日:2004-06-14

    IPC分类号: G06F9/44 H04L29/06

    摘要: In various embodiments of the present invention, execution-state transitions occur in a first portion of a system, and a cumulative execution state for each process is maintained by a second portion of the system so that, when a second-portion routine is called, the second-portion routine can determine whether or not the current execution state is suitable for execution of the second-portion routine. In various embodiments, a callpoint log, allocated and maintained for each process, stores the cumulative execution state for the process. In one embodiment, the first portion is an operating system, and the second portion is a secure kernel, with the cumulative execution state used by the secure kernel to prevent unauthorized access by erroneously or maliciously invoked operating-system routines to secure kernel routines. In another embodiment, the cumulative execution state is used as a debugging tool by the second-portion routines to catch errors in the implementation of the first-portion routines.

    摘要翻译: 在本发明的各种实施例中,执行状态转换发生在系统的第一部分中,并且由系统的第二部分维护每个进程的累积执行状态,使得当调用第二部分例程时, 第二部分例程可以确定当前执行状态是否适合执行第二部分例程。 在各种实施例中,为每个进程分配和维护的调用点日志存储该进程的累积执行状态。 在一个实施例中,第一部分是操作系统,并且第二部分是安全内核,其中安全内核使用累积执行状态来防止通过错误或恶意调用的操作系统例程来非法访问以保护内核例程。 在另一个实施例中,累积执行状态被第二部分例程用作调试工具,以捕获第一部分例程的实现中的错误。

    Flexible operating system operable as either native or as virtualized
    6.
    发明授权
    Flexible operating system operable as either native or as virtualized 有权
    灵活的操作系统可操作为本机或虚拟化

    公开(公告)号:US07877747B2

    公开(公告)日:2011-01-25

    申请号:US10784065

    申请日:2004-02-20

    CPC分类号: G06F9/4555

    摘要: According to at least one embodiment, a flexible operating system comprises operability for executing in a first manner as a native operating system on a computer system and for executing in a second manner as a virtualized operating system on the computer system. The flexible operating system further comprises code for determining whether it is being used as a native operating system or as a virtualized operating system on the computer system.

    摘要翻译: 根据至少一个实施例,灵活的操作系统包括用于以计算机系统上的本机操作系统的第一方式执行并以第二方式执行作为计算机系统上的虚拟化操作系统的可操作性。 灵活的操作系统还包括用于确定其是否被用作本机操作系统的代码或作为计算机系统上的虚拟操作系统的代码。

    Virtualization with binary translation
    7.
    发明授权
    Virtualization with binary translation 有权
    虚拟化与二进制翻译

    公开(公告)号:US08327354B1

    公开(公告)日:2012-12-04

    申请号:US11756125

    申请日:2007-05-31

    IPC分类号: G06F9/455 G06F9/26

    CPC分类号: G06F9/45554

    摘要: A system for providing virtualization that includes a processor operable to execute one or more machine-readable instructions, the processor having a native instruction set architecture (ISA) and a virtual machine monitor (VMM) operable to host at least a first virtual machine having a first ISA different from the native ISA, the VMM having integrated therein a first dynamic binary translation (DBT) layer to assist in an execution of a first application of the first ISA in the first virtual machine by the processor having the native ISA.

    摘要翻译: 一种用于提供虚拟化的系统,其包括可操作以执行一个或多个机器可读指令的处理器,所述处理器具有本机指令集架构(ISA)和虚拟机监视器(VMM),所述虚拟机监视器(VMM)可操作以托管至少第一虚拟机, 第一ISA与本地ISA不同,VMM已经集成了第一动态二进制转换(DBT)层,以帮助由具有本机ISA的处理器在第一虚拟机中执行第一ISA的第一应用。

    Delivery of an interruption to an operating system
    8.
    发明授权
    Delivery of an interruption to an operating system 有权
    交付操作系统的中断

    公开(公告)号:US07363536B1

    公开(公告)日:2008-04-22

    申请号:US10903218

    申请日:2004-07-30

    IPC分类号: G06F11/00

    摘要: One embodiment of the invention is a method for handling an interruption during execution of an application on a computer system that uses a register stack, the method comprising receiving the interruption by a hypervisor, sending the interruption to an operating system for handling; if the register stack has a fault, then generating, by the operating system, another interruption that is delivered to the hypervisor; after receiving the another interruption, covering, by the hypervisor, the register stack; after covering the register stack, sending the interruption to the operating system for handling; and after handling, returning to execution of the application.

    摘要翻译: 本发明的一个实施例是一种用于在使用寄存器堆栈的计算机系统上执行应用程序期间处理中断的方法,所述方法包括:由管理程序接收中断,将中断发送到操作系统进行处理; 如果寄存器堆栈有故障,则由操作系统产生传递给管理程序的另一个中断; 在收到另一个中断后,由管理程序覆盖寄存器堆栈; 覆盖寄存器堆栈后,将中断发送到操作系统进行处理; 并在处理之后返回执行应用程序。