CN101031922A - 生成受限和非受限执行环境的机制 - Google Patents

生成受限和非受限执行环境的机制 Download PDF

Info

Publication number
CN101031922A
CN101031922A CNA2005800329889A CN200580032988A CN101031922A CN 101031922 A CN101031922 A CN 101031922A CN A2005800329889 A CNA2005800329889 A CN A2005800329889A CN 200580032988 A CN200580032988 A CN 200580032988A CN 101031922 A CN101031922 A CN 101031922A
Authority
CN
China
Prior art keywords
thread
restricted
access
unrestricted
chipset
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CNA2005800329889A
Other languages
English (en)
Chinese (zh)
Inventor
戴维·珀斯纳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Intel Corp
Original Assignee
Intel Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Intel Corp filed Critical Intel Corp
Publication of CN101031922A publication Critical patent/CN101031922A/zh
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/468Specific access rights for resources, e.g. using capability register
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/50Allocation of resources, e.g. of the central processing unit [CPU]

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Mathematical Physics (AREA)
  • Computer Security & Cryptography (AREA)
  • Storage Device Security (AREA)
CNA2005800329889A 2004-10-27 2005-10-27 生成受限和非受限执行环境的机制 Pending CN101031922A (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/974,217 US7797728B2 (en) 2004-10-27 2004-10-27 Mechanism to generate restricted and unrestricted execution environments
US10/974,217 2004-10-27

Publications (1)

Publication Number Publication Date
CN101031922A true CN101031922A (zh) 2007-09-05

Family

ID=35811715

Family Applications (1)

Application Number Title Priority Date Filing Date
CNA2005800329889A Pending CN101031922A (zh) 2004-10-27 2005-10-27 生成受限和非受限执行环境的机制

Country Status (7)

Country Link
US (1) US7797728B2 (https=)
JP (1) JP4603585B2 (https=)
CN (1) CN101031922A (https=)
DE (1) DE112005002314T5 (https=)
GB (2) GB2434468B (https=)
TW (1) TWI294097B (https=)
WO (1) WO2006047762A1 (https=)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8095517B2 (en) * 2007-02-08 2012-01-10 Blue Coat Systems, Inc. Method and system for policy-based protection of application data
JP5444628B2 (ja) * 2008-03-31 2014-03-19 富士通株式会社 情報端末装置および情報処理方法
US8910165B2 (en) * 2009-10-14 2014-12-09 Lenovo Enterprise Solutions (Singapore) Pte. Ltd. Providing thread specific protection levels

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4442484A (en) * 1980-10-14 1984-04-10 Intel Corporation Microprocessor memory management and protection mechanism
US5038281A (en) 1986-09-19 1991-08-06 International Business Machines Corporation Acceleration of system interrupts between operating systems in guest-host relationship
US5596718A (en) * 1992-07-10 1997-01-21 Secure Computing Corporation Secure computer network using trusted path subsystem which encrypts/decrypts and communicates with user through local workstation user I/O devices without utilizing workstation processor
US5901312A (en) * 1994-12-13 1999-05-04 Microsoft Corporation Providing application programs with unmediated access to a contested hardware resource
US5900025A (en) 1995-09-12 1999-05-04 Zsp Corporation Processor having a hierarchical control register file and methods for operating the same
US5845129A (en) * 1996-03-22 1998-12-01 Philips Electronics North America Corporation Protection domains in a single address space
US6349355B1 (en) 1997-02-06 2002-02-19 Microsoft Corporation Sharing executable modules between user and kernel threads
US6389449B1 (en) 1998-12-16 2002-05-14 Clearwater Networks, Inc. Interstream control and communications for multi-streaming digital processors
US6192395B1 (en) * 1998-12-23 2001-02-20 Multitude, Inc. System and method for visually identifying speaking participants in a multi-participant networked event
US6438671B1 (en) * 1999-07-01 2002-08-20 International Business Machines Corporation Generating partition corresponding real address in partitioned mode supporting system
FR2811096A1 (fr) * 2000-06-28 2002-01-04 St Microelectronics Sa Microprocesseur securise comprenant un systeme d'attribution de droits a des librairies
US6684262B1 (en) 2000-10-25 2004-01-27 International Business Machines Corporation Method and system for controlling peripheral device interface behavior using thread registration
US7448025B2 (en) 2000-12-29 2008-11-04 Intel Corporation Qualification of event detection by thread ID and thread privilege level
JP4054572B2 (ja) * 2001-12-17 2008-02-27 キヤノン株式会社 アプリケーション実行システム
US6925643B2 (en) 2002-10-11 2005-08-02 Sandbridge Technologies, Inc. Method and apparatus for thread-based memory access in a multithreaded processor
US7152167B2 (en) 2002-12-11 2006-12-19 Intel Corporation Apparatus and method for data bus power control

Also Published As

Publication number Publication date
GB0706013D0 (en) 2007-05-09
WO2006047762A1 (en) 2006-05-04
GB0705991D0 (en) 2007-05-09
US20060101463A1 (en) 2006-05-11
DE112005002314T5 (de) 2007-09-06
JP2008518363A (ja) 2008-05-29
TWI294097B (en) 2008-03-01
GB2434468A8 (https=) 2007-07-26
GB2434468B (en) 2009-05-27
US7797728B2 (en) 2010-09-14
JP4603585B2 (ja) 2010-12-22
TW200630877A (en) 2006-09-01
GB2434468A (en) 2007-07-25

Similar Documents

Publication Publication Date Title
US7693838B2 (en) Method and apparatus for securely accessing data
US8380634B2 (en) First computer process and second computer process proxy-executing code on behalf of first process
KR101242312B1 (ko) 낮은 권한으로 실행하는 인터넷 애플리케이션에 대한컴퓨터 구현 방법
EP2385479B1 (en) Information flow tracking and protection
AU2012262867B2 (en) System and method for preserving references in sandboxes
US8533777B2 (en) Mechanism to determine trust of out-of-band management agents
KR100596135B1 (ko) 가상 디스크를 이용한 응용 프로그램 별 접근통제시스템과 그 통제방법
US20040054894A1 (en) Method for controlling access to protected content
US20040205203A1 (en) Enforcing isolation among plural operating systems
CN1656432A (zh) 用于复位平台配置寄存器的系统和方法
US9092617B2 (en) Protecting systems from unauthorized access to system resources using browser independent web page technology
CN1816786A (zh) 可信外围机制
US7076557B1 (en) Applying a permission grant set to a call stack during runtime
GB2397665A (en) Operating system data management
US7454787B2 (en) Secure direct memory access through system controllers and similar hardware devices
US20060179487A1 (en) Methods and apparatus for secure processor collaboration in a multi-processor system
WO2009045059A2 (en) Security method of keyboard input by directly controling the keyboard controler
CN1623143A (zh) 用于划分安全保护的输入/输出许可位图
CN101290646B (zh) 在虚拟环境中保护系统的设备和方法
CN114218129A (zh) 一种Flash数据访问方法及相关设备
RU2637433C2 (ru) Система и способ противодействия несанкционированному доступу к данным микрофона
CN101031922A (zh) 生成受限和非受限执行环境的机制
CN1284068C (zh) 用于移动平台交易的受信输入
US6986058B1 (en) Method and system for providing data security using file spoofing
US20050222960A1 (en) First computer process and second computer process proxy-executing code from third computer process on behalf of first process

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C12 Rejection of a patent application after its publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20070905