CN110134545B - Method and system for providing virtual NVRAM based on trusted execution environment - Google Patents
Method and system for providing virtual NVRAM based on trusted execution environment Download PDFInfo
- Publication number
- CN110134545B CN110134545B CN201910267393.5A CN201910267393A CN110134545B CN 110134545 B CN110134545 B CN 110134545B CN 201910267393 A CN201910267393 A CN 201910267393A CN 110134545 B CN110134545 B CN 110134545B
- Authority
- CN
- China
- Prior art keywords
- execution environment
- read
- trusted execution
- virtual nvram
- nvram
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/14—Error detection or correction of the data by redundancy in operation
- G06F11/1402—Saving, restoring, recovering or retrying
- G06F11/1446—Point-in-time backing up or restoration of persistent data
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/14—Error detection or correction of the data by redundancy in operation
- G06F11/1479—Generic software techniques for error detection or fault masking
- G06F11/1482—Generic software techniques for error detection or fault masking by means of middleware or OS functionality
- G06F11/1484—Generic software techniques for error detection or fault masking by means of middleware or OS functionality involving virtual machines
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
- G06F21/53—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
Abstract
The invention provides a method for providing a virtual NVRAM (non-volatile random access memory) based on a trusted execution environment, which comprises the following steps: establishing a memory area: dividing a memory area with a preset size in the trusted execution environment as a memory area of the virtual NVRAM; reading and writing operation steps: the virtual NVRAM waits for a read-write request, and executes corresponding read-write operation when receiving the read-write request; shutdown backup step: when the equipment is shut down, before the trusted execution environment is closed, backing up data in a virtual NVRAM (non-volatile random access memory) divided in the trusted execution environment into a disk; a step of starting up and reading: when the device is started, the trusted execution environment is started first, the data backed up in the disk is read into the virtual NVRAM, and the virtual NVRAM is started. The invention has the advantages that the hardware of the existing mobile equipment is not modified, the data is not lost when the power is off, and the data in the virtual NVRAM is not lost when the operating system of the mobile equipment crashes or has errors, thereby improving the performance of the mobile equipment.
Description
Technical Field
The present invention relates to the field of data reliability, and in particular, to a method and a system for providing a Non-Volatile Random Access Memory (NVRAM) for a device based on a trusted execution environment.
Background
Random access memory, memory (RAM) for short, is an important component of a computer system and is used for storing operation data in a CPU. Compared with external storage devices such as a magnetic disk and the like, the RAM is characterized by high speed and small capacity, but data can be lost when power is off. Although the disk can permanently store data, the speed is very slow, and the disk is not suitable for being directly accessed by a CPU. So in mobile devices, RAM often functions as a disk cache. Software programs on mobile devices, such as android operating systems, chat software, game software, etc., are generally installed on external memories such as a disk, etc., but these software programs cannot be directly used. If the software needs to be run, they must first be loaded from disk into RAM, and then the CPU accesses the data and runs the software. The modified data can be written back to the disk from the RAM, so as to achieve the purpose of persistence.
However, RAM loses data when it is powered down. Meanwhile, because the operating system can change the data in the memory at will, if the operating system crashes, the data will be lost. In these cases, the cache in the RAM is likely to fail to be successfully written back to disk, causing data corruption and possibly even rendering the device inoperable again. Therefore, in modern computer systems, many fault tolerance mechanisms are designed, such as a log system of a file system, which is equivalent to performing an additional recording of the operations of the file system. These fault tolerance mechanisms all negatively impact system performance.
With the development of the existing computing equipment, the computing speed is continuously improved, the memory capacity is continuously increased, and the requirement on the reliability of data is higher and higher. Non-volatile random access memory (NVRAM) is used to avoid data loss that may occur when a computer is powered down suddenly, and is characterized in that stored data is not lost in case of power down, but the data cannot be protected when the operating system crashes. The current NVRAM is mainly of several types: firstly, a special standby power supply is added through an RAM (random access memory); and secondly, the transistor without losing level information is manufactured by using a novel material.
As disclosed in the publication: the CN102956262B patent "static RAM", currently NVRAM, is still not suitable for replacing RAM on mobile devices. Firstly, the existing high-speed NVRAM is very high in cost, and is not suitable for mobile electronic devices such as mobile phones and tablet computers purchased by ordinary consumers. Secondly, because the power consumption of the existing NVRAM is much higher than that of the existing RAM, the power supply design of the existing mobile device is not enough to support the normal use time. Thirdly, common consumers often install a lot of third-party software on the mobile device, which affects the stability of the operating system and may also cause the loss of data in the NVRAM.
The existing mobile device CPU introduces a mechanism of Trusted Execution Environment (TEE), which has its own system and memory, etc., and is not directly accessible by the device operating system, and has a program Execution Environment isolated from the device operating system. This technique has been widely used to run security software on mobile devices, such as payment verification fingerprinting and the like. The existing TrustZone technology of ARM corporation can maintain a trusted execution environment outside an operating system (such as an android system) of a device, which is also called TrustZone trusted execution environment, and is called trusted execution environment for short. And the trusted execution environment of the TrustZone technology has the characteristics that the trusted execution environment is started before the operating system is started before the mobile equipment is started, and is ended after the operating system is shut down. Because most mobile devices are designed to be non-detachable power supplies, the mobile devices cannot be powered off suddenly, memory data in the trusted execution environment can be backed up in a disk before the power supply is turned off, and the memory data can be read out from the disk to restore data after the power supply is turned on.
Disclosure of Invention
In view of the defects in the prior art, an object of the present invention is to provide a method and system for providing a virtual NVRAM based on a trusted execution environment.
The method for providing the virtual NVRAM based on the trusted execution environment comprises the following steps:
establishing a memory area: dividing a memory area with a preset size in the trusted execution environment as a memory area of the virtual NVRAM;
reading and writing operation steps: the virtual NVRAM waits for a read-write request, and executes corresponding read-write operation when receiving the read-write request;
shutdown backup step: when the equipment is shut down, before the trusted execution environment is closed, backing up data in a virtual NVRAM (non-volatile random access memory) divided in the trusted execution environment into a disk;
a step of starting up and reading: when the device is started, the trusted execution environment is started first, the data backed up in the disk is read into the virtual NVRAM, and the virtual NVRAM is started.
Preferably, the memory area establishing step executes an operation of newly establishing the virtual NVRAM according to a request of newly establishing the virtual NVRAM sent by a driver in the device operating system.
Preferably, under the condition that the request includes the size of the memory area required to be divided, dividing according to the value of the size; and under the condition that the request does not comprise the size of the memory area needing to be divided, dividing according to a default value.
Preferably, the read-write operation step executes a corresponding read-write operation and returns a read-write result to the device operating system when receiving a read-write request sent by a driver in the device operating system.
Preferably, in the shutdown backup step, the shutdown mode includes: normal shutdown and shutdown by long-time pressing of a power supply.
The invention provides a system for providing virtual NVRAM based on a trusted execution environment, which comprises:
a memory area establishing module: dividing a memory area with a preset size in the trusted execution environment as a memory area of the virtual NVRAM;
a read-write operation module: the virtual NVRAM waits for a read-write request, and executes corresponding read-write operation when receiving the read-write request;
a shutdown backup module: when the equipment is shut down, before the trusted execution environment is closed, backing up data in a virtual NVRAM (non-volatile random access memory) divided in the trusted execution environment into a disk;
a starting reading module: when the device is started, the trusted execution environment is started first, the data backed up in the disk is read into the virtual NVRAM, and the virtual NVRAM is started.
Preferably, the memory area establishing module executes an operation of creating the virtual NVRAM according to a request of creating the virtual NVRAM sent by a driver in the device operating system.
Preferably, under the condition that the request includes the size of the memory area required to be divided, dividing according to the value of the size; and under the condition that the request does not comprise the size of the memory area needing to be divided, dividing according to a default value.
Preferably, the read-write operation module executes corresponding read-write operation and returns a read-write result to the device operating system when receiving a read-write request sent by a driver in the device operating system.
Preferably, in the shutdown backup module, the shutdown mode includes: normal shutdown and shutdown by long-time pressing of a power supply.
Compared with the prior art, the invention has the following beneficial effects:
1. the common memory of the trusted execution environment is virtualized into the NVRAM, so that the cost is low, the power consumption is basically equivalent to that of the common memory, and the existing hardware is not required to be changed;
2. by utilizing the characteristics that the trusted execution environment is started before the operating system is started and then is closed after the operating system is closed, the data in the virtual NVRAM memory area is protected by utilizing the disk backup when the power is off, and the data cannot be lost when the power is off compared with the common memory;
3. by utilizing the characteristic that the trusted execution environment memory cannot be directly accessed by the operating system, compared with a common memory or a common NVRAM, the method can prevent the operating system which is crashed or has errors from damaging data in the virtual NVRAM;
4. based on the virtual NVRAM, new hardware support can be provided for the design of an operating system and a file system of the mobile device, the log function of the file system is accelerated, and the performance of the mobile device is improved.
Drawings
Other features, objects and advantages of the invention will become more apparent upon reading of the detailed description of non-limiting embodiments with reference to the following drawings:
FIG. 1 is a system architecture diagram according to an embodiment of the present invention;
fig. 2 is a flowchart illustrating an exemplary embodiment of the present invention.
Detailed Description
The present invention will be described in detail with reference to specific examples. The following examples will assist those skilled in the art in further understanding the invention, but are not intended to limit the invention in any way. It should be noted that it would be obvious to those skilled in the art that various changes and modifications can be made without departing from the spirit of the invention. All falling within the scope of the present invention.
If NVRAM can be provided in a mobile device, then there can be several benefits: firstly, data cannot be lost during power failure, so that the situations that a file is lost and has errors and even a system cannot run due to the loss of cache data are avoided; secondly, some fault-tolerant mechanisms aiming at memory data loss can be avoided, and unnecessary performance loss is reduced; thirdly, some important data can be stored in the NVRAM without being stored on a disk with a slower speed, such as a log of a file system, so that the read-write performance of the data can be improved, and the overall performance of the equipment is further improved; finally, if the NVRAM can also avoid data loss due to a crash of the mobile device operating system, better data reliability can be achieved.
As shown in fig. 1 and fig. 2, a method for providing a virtual NVRAM based on a trusted execution environment according to the present invention includes:
establishing a memory area: dividing a memory area with a preset size in a trusted execution environment of the electronic equipment as a memory area of a virtual NVRAM;
reading and writing operation steps: the virtual NVRAM waits for a read-write request, and executes corresponding read-write operation when receiving the read-write request;
shutdown backup step: when the equipment is shut down, before the trusted execution environment is closed, backing up data in a virtual NVRAM (non-volatile random access memory) divided in the trusted execution environment into a disk;
a step of starting up and reading: when the device is started, the trusted execution environment is started first, the data backed up in the disk is read into the virtual NVRAM, and the virtual NVRAM is started.
In this embodiment, the trusted execution environment is implemented by the existing TrustZone technology of ARM corporation, but the present invention is not limited thereto, and those skilled in the art may implement the present invention by any technology for implementing the trusted execution environment.
The memory area establishing step executes the operation of newly establishing the virtual NVRAM according to the request of newly establishing the virtual NVRAM sent by a driver in the device operating system through SMC (secure Monitor Call). The request may include the size of the partitioned memory region, and if not, a default value configured in the virtual NVRAM memory management module.
Under the condition that the request comprises the size of the memory area needing to be divided, dividing the memory area according to the size value; and under the condition that the request does not comprise the size of the memory area needing to be divided, dividing according to a default value.
And the read-write operation step executes corresponding read-write operation and returns a read-write result to the equipment operating system when receiving a read-write request sent by a drive program in the equipment operating system.
In the shutdown backup step, the shutdown mode comprises the following steps: normal shutdown (shutdown by pressing down by a user or automatic shutdown due to insufficient electric quantity of equipment) and shutdown by pressing down a power supply for a long time.
On the basis of the method for providing the virtual NVRAM based on the trusted execution environment, the invention also provides a system for providing the virtual NVRAM based on the trusted execution environment, which comprises the following steps:
a memory area establishing module: dividing a memory area with a preset size in the trusted execution environment as a memory area of the virtual NVRAM;
a read-write operation module: the virtual NVRAM waits for a read-write request, and executes corresponding read-write operation when receiving the read-write request;
a shutdown backup module: when the equipment is shut down, before the trusted execution environment is closed, backing up data in a virtual NVRAM (non-volatile random access memory) divided in the trusted execution environment into a disk;
a starting reading module: when the device is started, the trusted execution environment is started first, the data backed up in the disk is read into the virtual NVRAM, and the virtual NVRAM is started.
Examples
The method for providing the virtual NVRAM for the mobile equipment based on the ARM TrustZone technology comprises three stages of creating the virtual NVRAM, sending and processing a read-write request of the virtual NVRAM, and protecting data of the virtual NVRAM in power failure. The method of providing the virtual NVRAM of the present invention will be described in detail below by way of specific implementation examples.
As shown in fig. 2, the specific steps of the system providing the mobile device with the ARM TrustZone-based method are as follows:
in step 1, in the normal operation process of the operating system of the mobile device, if a virtual NVRAM needs to be newly built, executing step 2; if the virtual NVRAM has read-write request, executing step 4; if an event needing to turn off the power supply occurs, executing the step 6;
in step 2, the operating system needs to create a new virtual NVRAM. A virtual NVRAM driver in the operating system sends a request for newly building a virtual NVRAM to a memory area building module through an SMC (sheet molding compound), wherein the request can specify the size information of the virtual NVRAM, and then step 3 is executed;
in step 3, the memory area establishing module in the trusted execution environment divides a memory area with a specific size in the trusted execution environment memory as a virtual NVRAM memory area. If the size information of the virtual NVRAM is specified in the step (II), the specific size is a specified value, otherwise, a default value is taken. Then, returning the serial number of the newly-built virtual NVRAM to the operating system, and continuously executing the step 1 by the operating system;
in step 4, the operating system needs to read and write the virtual NVRAM. A virtual NVRAM driver in the operating system sends a request to read and write the virtual NVRAM through the SMC. The read request includes the sequence number of the virtual NVRAM, the location of the read, and the number of bytes, and the write request includes the sequence number of the virtual NVRAM, the location of the write, the number of bytes of the write, and the content of the write. Then, executing the step 5 by a read-write operation module in the trusted execution environment;
in step 5, the read-write operation module in the trusted execution environment performs corresponding read-write operation on the virtual NVRAM with the sequence number according to the request in step 4, and then returns the content of the read request or the success or failure information of the write request to the virtual NVRAM driver of the operating system. After the read-write request is completed, the operating system continues to execute the step 1;
in step 6, the system needs to shut down the power supply, if the reason is to normally shut down the power supply (the user presses down to shut down or the device is insufficient in power), at this time, the operating system will be shut down first, and then the trusted execution environment executes step 7; if the reason is that the operating system crashes, when the user cuts off the power supply (generally, long-time pressing of a power supply key), the trusted execution environment can intercept the power supply closing information, and then step 7 is executed;
in step 7, the shutdown backup module in the trusted execution environment writes the data in the virtual NVRAM memory area into the virtual NVRAM data backup space on the disk, and then the trusted execution environment is closed and the power of the mobile device is turned off. After the power of the mobile device is turned on next time, the trusted execution environment executes step 8;
in step 8, the boot reading module in the trusted execution environment reads the data in the virtual NVRAM data backup space on the disk into the virtual NVRAM memory area, starts the virtual NVRAM, and then the operating system starts to execute step 1.
In summary, according to the system and method for providing the virtual NVRAM for the mobile device based on the ARM TrustZone provided by the present invention, by using the characteristics that the operating system cannot read and write the memory of the trusted execution environment, and the trusted execution environment can restore the data of the virtual NVRAM through backup when the mobile device is powered off, a virtual NVRAM is provided for the mobile device on the premise that the existing hardware is not required to be modified, which has the advantage that the data is not lost when the power is off, and the data is not damaged when the operating system crashes, and can be effectively used for improving the performance of the mobile device.
Those skilled in the art will appreciate that, in addition to implementing the system and its various devices, modules, units provided by the present invention as pure computer readable program code, the system and its various devices, modules, units provided by the present invention can be fully implemented by logically programming method steps in the form of logic gates, switches, application specific integrated circuits, programmable logic controllers, embedded microcontrollers and the like. Therefore, the system and various devices, modules and units thereof provided by the invention can be regarded as a hardware component, and the devices, modules and units included in the system for realizing various functions can also be regarded as structures in the hardware component; means, modules, units for performing the various functions may also be regarded as structures within both software modules and hardware components for performing the method.
The foregoing description of specific embodiments of the present invention has been presented. It is to be understood that the present invention is not limited to the specific embodiments described above, and that various changes or modifications may be made by one skilled in the art within the scope of the appended claims without departing from the spirit of the invention. The embodiments and features of the embodiments of the present application may be combined with each other arbitrarily without conflict.
Claims (10)
1. A method for providing virtual NVRAM based on a trusted execution environment, comprising:
establishing a memory area: dividing a memory area with a preset size in the trusted execution environment as a memory area of the virtual NVRAM;
reading and writing operation steps: the virtual NVRAM waits for a read-write request, and executes corresponding read-write operation when receiving the read-write request;
shutdown backup step: when the equipment is shut down, before the trusted execution environment is closed, backing up data in a virtual NVRAM (non-volatile random access memory) divided in the trusted execution environment into a disk;
a step of starting up and reading: when the device is started, the trusted execution environment is started first, the data backed up in the disk is read into the virtual NVRAM, and the virtual NVRAM is started.
2. The method of claim 1, wherein the step of establishing the memory area is performed in response to a request from a driver in the operating system of the device to create a new virtual NVRAM.
3. The trusted execution environment-based method for providing virtual NVRAM of claim 2, wherein in case the request for new virtual NVRAM includes a size of the memory region to be partitioned, partitioning according to the size value; and under the condition that the request for newly building the virtual NVRAM does not comprise the size of the memory area needing to be divided, dividing the virtual NVRAM according to a default value.
4. The method of claim 1, wherein the read-write operation step executes a corresponding read-write operation and returns a read-write result to the device operating system when receiving a read-write request sent by a driver in the device operating system.
5. The method of claim 1, wherein the shutdown backup step comprises a shutdown mode comprising: normal shutdown and shutdown by long-time pressing of a power supply.
6. A trusted execution environment based system for providing virtual NVRAM, comprising:
a memory area establishing module: dividing a memory area with a preset size in the trusted execution environment as a memory area of the virtual NVRAM;
a read-write operation module: the virtual NVRAM waits for a read-write request, and executes corresponding read-write operation when receiving the read-write request;
a shutdown backup module: when the equipment is shut down, before the trusted execution environment is closed, backing up data in a virtual NVRAM (non-volatile random access memory) divided in the trusted execution environment into a disk;
a starting reading module: when the device is started, the trusted execution environment is started first, the data backed up in the disk is read into the virtual NVRAM, and the virtual NVRAM is started.
7. The trusted execution environment-based system for providing virtual NVRAM of claim 6, wherein the memory region creation module performs the operation of creating the new virtual NVRAM in response to a request for creating the new virtual NVRAM sent by a driver in the device operating system.
8. The trusted execution environment based system for providing virtual NVRAM of claim 7, wherein in the event that the request to create the virtual NVRAM includes a size of the memory region to be partitioned, partitioning according to the size value; and under the condition that the request for newly building the virtual NVRAM does not comprise the size of the memory area needing to be divided, dividing the virtual NVRAM according to a default value.
9. The system of claim 6, wherein the read/write operation module, when receiving a read/write request from a driver in the device operating system, executes a corresponding read/write operation and returns a read/write result to the device operating system.
10. The trusted execution environment based system for providing virtual NVRAM of claim 6, wherein the shutdown mode in the shutdown backup module comprises: normal shutdown and shutdown by long-time pressing of a power supply.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910267393.5A CN110134545B (en) | 2019-04-03 | 2019-04-03 | Method and system for providing virtual NVRAM based on trusted execution environment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910267393.5A CN110134545B (en) | 2019-04-03 | 2019-04-03 | Method and system for providing virtual NVRAM based on trusted execution environment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110134545A CN110134545A (en) | 2019-08-16 |
| CN110134545B true CN110134545B (en) | 2020-12-22 |
Family
ID=67569069
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910267393.5A Active CN110134545B (en) | 2019-04-03 | 2019-04-03 | Method and system for providing virtual NVRAM based on trusted execution environment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110134545B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113138878B (en) * | 2020-01-19 | 2022-11-18 | 华为技术有限公司 | Method for processing crash of trusted execution environment operating system and electronic equipment |
| CN113485524B (en) * | 2021-07-12 | 2022-11-11 | 上海瓶钵信息科技有限公司 | Clock synchronization method and system based on trusted execution environment |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101645027A (en) * | 2008-08-07 | 2010-02-10 | 中兴通讯股份有限公司 | Object storage controller, powder-down protection device thereof and powder-down protection method thereof |
| CN101937344A (en) * | 2009-06-30 | 2011-01-05 | 联想(北京)有限公司 | Computer and method for quickly starting same |
| CN104798040A (en) * | 2012-11-07 | 2015-07-22 | 高通股份有限公司 | Method for providing anti-rollback protection in device which has no internal non-volatile memory |
| US9525555B2 (en) * | 2014-12-18 | 2016-12-20 | Intel Corporation | Partitioning access to system resources |
| CN106959906A (en) * | 2017-03-28 | 2017-07-18 | 联想(北京)有限公司 | Information processing method, information processor and electronic equipment |
| CN107391316A (en) * | 2017-09-01 | 2017-11-24 | 中国科学院计算技术研究所 | A kind of computing device and its application method based on non-volatile memory |
| CN107734176A (en) * | 2017-10-25 | 2018-02-23 | 深圳市金立通信设备有限公司 | Loss guard method, terminal and the computer-readable recording medium of mobile terminal |
| CN108959932A (en) * | 2017-05-19 | 2018-12-07 | 英特尔公司 | The technology of safety chip memory for credible performing environment |
| CN109491837A (en) * | 2018-11-01 | 2019-03-19 | 郑州云海信息技术有限公司 | A kind of the log fault-tolerance processing method and device of Nonvolatile memory reservoir |
| CN109557498A (en) * | 2018-12-21 | 2019-04-02 | 中国电力科学研究院有限公司 | A kind of electric energy meter stops the processing method of telegram in reply event |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9652312B2 (en) * | 2014-07-03 | 2017-05-16 | FishEye Products, LLC | Realtime processing of streaming data |
| US20180101688A1 (en) * | 2016-10-11 | 2018-04-12 | Intel Corporation | Trust-enhanced attribute-based encryption |
-
2019
- 2019-04-03 CN CN201910267393.5A patent/CN110134545B/en active Active
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101645027A (en) * | 2008-08-07 | 2010-02-10 | 中兴通讯股份有限公司 | Object storage controller, powder-down protection device thereof and powder-down protection method thereof |
| CN101937344A (en) * | 2009-06-30 | 2011-01-05 | 联想(北京)有限公司 | Computer and method for quickly starting same |
| CN104798040A (en) * | 2012-11-07 | 2015-07-22 | 高通股份有限公司 | Method for providing anti-rollback protection in device which has no internal non-volatile memory |
| US9525555B2 (en) * | 2014-12-18 | 2016-12-20 | Intel Corporation | Partitioning access to system resources |
| CN106959906A (en) * | 2017-03-28 | 2017-07-18 | 联想(北京)有限公司 | Information processing method, information processor and electronic equipment |
| CN108959932A (en) * | 2017-05-19 | 2018-12-07 | 英特尔公司 | The technology of safety chip memory for credible performing environment |
| CN107391316A (en) * | 2017-09-01 | 2017-11-24 | 中国科学院计算技术研究所 | A kind of computing device and its application method based on non-volatile memory |
| CN107734176A (en) * | 2017-10-25 | 2018-02-23 | 深圳市金立通信设备有限公司 | Loss guard method, terminal and the computer-readable recording medium of mobile terminal |
| CN109491837A (en) * | 2018-11-01 | 2019-03-19 | 郑州云海信息技术有限公司 | A kind of the log fault-tolerance processing method and device of Nonvolatile memory reservoir |
| CN109557498A (en) * | 2018-12-21 | 2019-04-02 | 中国电力科学研究院有限公司 | A kind of electric energy meter stops the processing method of telegram in reply event |
Non-Patent Citations (4)
| Title |
|---|
| Research on ARM TrustZone;Wenhao Li;《Mobile Platforms》;20180930;全文 * |
| TZ-KMS:A secure Key Management Service for Joint Cloud Computing with ARM TrustZone;Shiyu Luo;《2018 IEEE Symposium on Service-Oriented System Engineering》;20181231;全文 * |
| vTZ:Virtualizing ARM TrustZone;Zhichao Hua;《USENIX》;20170818;全文 * |
| 基于TrustZone的应用程序完整性保护研究与实现;袁野;《中国优秀硕士学位论文全文》;20180929;全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110134545A (en) | 2019-08-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10896099B2 (en) | Memory module with non-volatile backup storage | |
| US8065472B2 (en) | System and method for improving data integrity and memory performance using non-volatile media | |
| EP2329360B1 (en) | Managing cache data and metadata | |
| US7937524B2 (en) | Cache write integrity logging | |
| US9417794B2 (en) | Including performance-related hints in requests to composite memory | |
| US20120173824A1 (en) | Managing cache data and metadata | |
| US9858086B2 (en) | Load boot data | |
| US11249658B2 (en) | Memory controller systems with nonvolatile memory for storing operating parameters | |
| CN110134545B (en) | Method and system for providing virtual NVRAM based on trusted execution environment | |
| US11379141B2 (en) | SSD supporting read-only mode after PLP backup failure | |
| CN110647764B (en) | Protection method and system for user-mode nonvolatile memory file system | |
| KR102145358B1 (en) | Method and computer-readable medium emboding program for protecting data integrity of disk in alternate operating system environment | |
| US11960748B2 (en) | SSD supporting read-only mode after PLP backup failure | |
| CN113010451B (en) | Memory simulation nonvolatile processing method, device, equipment and readable storage medium | |
| CN111831590A (en) | Algorithm for reliably protecting NVRAM data content from loss | |
| CN106815008B (en) | System pause method, system recovery method and computer system using same | |
| US20130262796A1 (en) | Indicators for storage cells | |
| JP2022184735A (en) | Program starting method and device, and storage medium | |
| JP2000267936A (en) | Disk sub-system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |