CN105393258B - 用于提供对图形处理单元的安全访问控制的系统和方法 - Google Patents

用于提供对图形处理单元的安全访问控制的系统和方法 Download PDF

Info

Publication number
CN105393258B
CN105393258B CN201480037591.8A CN201480037591A CN105393258B CN 105393258 B CN105393258 B CN 105393258B CN 201480037591 A CN201480037591 A CN 201480037591A CN 105393258 B CN105393258 B CN 105393258B
Authority
CN
China
Prior art keywords
processing unit
graphics processing
programming interface
safely
area
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201480037591.8A
Other languages
English (en)
Chinese (zh)
Other versions
CN105393258A (zh
Inventor
T·曾
A·托兹尼
W·托尔泽乌斯基
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Qualcomm Inc
Original Assignee
Qualcomm Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Qualcomm Inc filed Critical Qualcomm Inc
Publication of CN105393258A publication Critical patent/CN105393258A/zh
Application granted granted Critical
Publication of CN105393258B publication Critical patent/CN105393258B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/74Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06TIMAGE DATA PROCESSING OR GENERATION, IN GENERAL
    • G06T1/00General purpose image data processing
    • G06T1/20Processor architectures; Processor configuration, e.g. pipelining
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2113Multi-level security, e.g. mandatory access control

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Physics & Mathematics (AREA)
  • Mathematical Physics (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Storage Device Security (AREA)
  • Image Generation (AREA)
CN201480037591.8A 2013-07-01 2014-06-30 用于提供对图形处理单元的安全访问控制的系统和方法 Active CN105393258B (zh)

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
US201361841881P 2013-07-01 2013-07-01
US61/841,881 2013-07-01
US14/014,032 2013-08-29
US14/014,032 US9507961B2 (en) 2013-07-01 2013-08-29 System and method for providing secure access control to a graphics processing unit
PCT/US2014/044776 WO2015002851A1 (en) 2013-07-01 2014-06-30 System and method for providing secure access control to a graphics processing unit

Publications (2)

Publication Number Publication Date
CN105393258A CN105393258A (zh) 2016-03-09
CN105393258B true CN105393258B (zh) 2018-05-25

Family

ID=52115146

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201480037591.8A Active CN105393258B (zh) 2013-07-01 2014-06-30 用于提供对图形处理单元的安全访问控制的系统和方法

Country Status (8)

Country Link
US (1) US9507961B2 (enExample)
EP (1) EP3017396B1 (enExample)
JP (1) JP2016524257A (enExample)
KR (1) KR20160025554A (enExample)
CN (1) CN105393258B (enExample)
BR (1) BR112015032790A2 (enExample)
CA (1) CA2912929A1 (enExample)
WO (1) WO2015002851A1 (enExample)

Families Citing this family (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA2886389A1 (en) 2012-09-28 2014-04-03 Cepheid Methods for dna and rna extraction from fixed paraffin-embedded tissue samples
FR3026207B1 (fr) * 2014-09-22 2018-08-17 Prove & Run Terminal a affichage securise
US11055806B2 (en) * 2015-02-27 2021-07-06 Advanced Micro Devices, Inc. Method and apparatus for directing application requests for rendering
US9767320B2 (en) * 2015-08-07 2017-09-19 Qualcomm Incorporated Hardware enforced content protection for graphics processing units
US10102391B2 (en) 2015-08-07 2018-10-16 Qualcomm Incorporated Hardware enforced content protection for graphics processing units
US10127627B2 (en) * 2015-09-23 2018-11-13 Intel Corporation Mapping graphics resources to linear arrays using a paging system
US10769312B2 (en) 2015-10-06 2020-09-08 Carnegie Mellon University Method and apparatus for trusted display on untrusted computing platforms to secure applications
US10471543B2 (en) * 2015-12-15 2019-11-12 Lawrence Livermore National Security, Llc Laser-assisted additive manufacturing
US10089272B2 (en) * 2016-02-22 2018-10-02 Dell Products, Lp Data-category switch module in the control plane for use with internet of things devices
US10628611B2 (en) * 2016-11-04 2020-04-21 Qualcomm Incorporated Exclusive execution environment within a system-on-a-chip computing system
US10848483B2 (en) * 2016-12-08 2020-11-24 Ricoh Company, Ltd. Shared terminal, communication system, and display control method, and recording medium
US10387679B2 (en) * 2017-01-06 2019-08-20 Capitalogix Ip Owner, Llc Secure intelligent networked architecture with dynamic feedback
EP3355188B1 (en) 2017-01-31 2021-08-25 OpenSynergy GmbH Instrument display on a car dashboard by checking frames of a gui by a realtime os
WO2019012625A1 (ja) * 2017-07-12 2019-01-17 日本電気株式会社 権限判定システム、セキュアデバイス、判定装置、権限管理方法及び権限判定プログラム
US11295008B2 (en) * 2019-02-13 2022-04-05 Nec Corporation Graphics processing unit accelerated trusted execution environment
TWI759827B (zh) 2019-08-16 2022-04-01 邊信聯科技股份有限公司 異構處理器透過開放式連接器進行具有遠距認證及資訊獨立的可信運算系統及方法

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060095793A1 (en) * 2004-10-08 2006-05-04 International Business Machines Corporation Secure memory control parameters in table look aside buffer data fields and support memory array
CN1991906A (zh) * 2005-10-18 2007-07-04 威盛电子股份有限公司 在多重图形处理单元图形子系统中进行多重缓冲
CN101427282A (zh) * 2006-04-26 2009-05-06 高通股份有限公司 具有可配置高速缓存器的图形系统
US20100031342A1 (en) * 2007-04-12 2010-02-04 Honeywell International, Inc Method and system for providing secure video data transmission and processing
CN102754077A (zh) * 2009-12-14 2012-10-24 思杰系统有限公司 可从外部媒体装置引导的安全虚拟化环境

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7007025B1 (en) 2001-06-08 2006-02-28 Xsides Corporation Method and system for maintaining secure data input and output
US7203310B2 (en) * 2001-12-04 2007-04-10 Microsoft Corporation Methods and systems for cryptographically protecting secure content
US7421694B2 (en) 2003-02-18 2008-09-02 Microsoft Corporation Systems and methods for enhancing performance of a coprocessor
US7673304B2 (en) 2003-02-18 2010-03-02 Microsoft Corporation Multithreaded kernel for graphics processing unit
US7444523B2 (en) 2004-08-27 2008-10-28 Microsoft Corporation System and method for using address bits to signal security attributes of data in the address space
JP3965408B2 (ja) * 2004-12-28 2007-08-29 イーストラテジー株式会社 デジタルコンテンツデータ提供システム
US8269780B2 (en) * 2007-06-07 2012-09-18 Apple Inc. Batching graphics operations with time stamp tracking
US8393008B2 (en) * 2008-05-21 2013-03-05 Microsoft Corporation Hardware-based output protection of multiple video streams
US9405931B2 (en) * 2008-11-14 2016-08-02 Dell Products L.P. Protected information stream allocation using a virtualized platform
JP5699755B2 (ja) * 2011-03-31 2015-04-15 富士通株式会社 割当方法、割当装置、および割当プログラム
US8562441B1 (en) 2011-05-03 2013-10-22 Zynga Inc. Secure, parallel, and independent script execution
US8943330B2 (en) * 2011-05-10 2015-01-27 Qualcomm Incorporated Apparatus and method for hardware-based secure data processing using buffer memory address range rules
US9727385B2 (en) * 2011-07-18 2017-08-08 Apple Inc. Graphical processing unit (GPU) implementing a plurality of virtual GPUs
GB2501274B (en) * 2012-04-17 2020-05-13 Advanced Risc Mach Ltd Management of data processing security in a secondary processor
GB2501470B (en) * 2012-04-17 2020-09-16 Advanced Risc Mach Ltd Management of data processing security in a secondary processor
US8931108B2 (en) * 2013-02-18 2015-01-06 Qualcomm Incorporated Hardware enforced content protection for graphics processing units

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060095793A1 (en) * 2004-10-08 2006-05-04 International Business Machines Corporation Secure memory control parameters in table look aside buffer data fields and support memory array
CN1991906A (zh) * 2005-10-18 2007-07-04 威盛电子股份有限公司 在多重图形处理单元图形子系统中进行多重缓冲
CN101427282A (zh) * 2006-04-26 2009-05-06 高通股份有限公司 具有可配置高速缓存器的图形系统
US20100031342A1 (en) * 2007-04-12 2010-02-04 Honeywell International, Inc Method and system for providing secure video data transmission and processing
CN102754077A (zh) * 2009-12-14 2012-10-24 思杰系统有限公司 可从外部媒体装置引导的安全虚拟化环境

Also Published As

Publication number Publication date
EP3017396A1 (en) 2016-05-11
US9507961B2 (en) 2016-11-29
CN105393258A (zh) 2016-03-09
BR112015032790A2 (pt) 2017-07-25
WO2015002851A1 (en) 2015-01-08
US20150002523A1 (en) 2015-01-01
EP3017396B1 (en) 2017-10-11
CA2912929A1 (en) 2015-01-08
JP2016524257A (ja) 2016-08-12
KR20160025554A (ko) 2016-03-08

Similar Documents

Publication Publication Date Title
CN105393258B (zh) 用于提供对图形处理单元的安全访问控制的系统和方法
US10909257B1 (en) Multi-domain application execution management
CN109416651B (zh) 多租户云计算环境中的更新协调
CN102938039B (zh) 针对应用的选择性文件访问
TWI697804B (zh) 安全區之平台遷移
CN103329139B (zh) 在具有随机分配的存储范围的安全系统中支持jit的系统和方法
TWI606364B (zh) 處理安全內容之系統單晶片及包含其之行動裝置
KR101658070B1 (ko) 연속 월드 스위치 보안을 갖는 데이터 센터
CN102918865B (zh) 使用虚拟化保护视频内容
US20170277903A1 (en) Data Protection Using Virtual Resource Views
CN112148425A (zh) 信任域架构内的信任域内部的可缩放虚拟机操作
CN104981815A (zh) 用于用安全属性限制cpu事务的方法、装置和系统
TW201346589A (zh) 處理器加速器介面的虛擬化
KR20160075499A (ko) 가상 머신 관리자에 의해 촉진되는 선택적 코드 무결성 강화 기법
TW201346730A (zh) 虛擬化中斷優先順序及遞送之技術
US9824225B1 (en) Protecting virtual machines processing sensitive information
US20170286066A1 (en) Dynamic Addition of Code in Shared Libraries
US10395028B2 (en) Virtualization based intra-block workload isolation
US10459851B2 (en) Method and apparatus for executing a process on a device using memory privileges
US20100169884A1 (en) Injecting transactions to support the virtualization of a physical device controller
TW201843561A (zh) 用於提供高效功率檔案系統操作至一非揮發性區塊記憶體之系統及方法
CN116578530A (zh) 片上系统、中断隔离方法及计算机设备
KR20160128414A (ko) 세분된 권한 레벨에 대한 운영 체제/하이퍼바이저 효율
US10121001B1 (en) System and method for monolithic scheduling in a portable computing device using a hypervisor
KR20140127124A (ko) 시스템 자원에 대한 접근을 관리하는 전자 장치

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant