CN110462624B - 用于安全地隔离系统特征的系统和方法 - Google Patents

用于安全地隔离系统特征的系统和方法 Download PDF

Info

Publication number
CN110462624B
CN110462624B CN201780088688.5A CN201780088688A CN110462624B CN 110462624 B CN110462624 B CN 110462624B CN 201780088688 A CN201780088688 A CN 201780088688A CN 110462624 B CN110462624 B CN 110462624B
Authority
CN
China
Prior art keywords
hardware logic
signal
programmable hardware
hardware
volatile memory
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201780088688.5A
Other languages
English (en)
Chinese (zh)
Other versions
CN110462624A (zh
Inventor
R·P·瓦兰迪诺
J·A·埃克
D·W·哈特韦尔
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Oracle International Corp
Original Assignee
Oracle International Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Oracle International Corp filed Critical Oracle International Corp
Publication of CN110462624A publication Critical patent/CN110462624A/zh
Application granted granted Critical
Publication of CN110462624B publication Critical patent/CN110462624B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0629Configuration or reconfiguration of storage systems
    • G06F3/0634Configuration or reconfiguration of storage systems by changing the state or mode of one or more devices
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1416Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights
    • G06F12/1425Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights the protection being physical, e.g. cell, word, block
    • G06F12/1433Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights the protection being physical, e.g. cell, word, block for a module or a part of a module
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • G06F21/85Protecting input, output or interconnection devices interconnection devices, e.g. bus-connected or in-line devices
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/062Securing storage systems
    • G06F3/0622Securing storage systems in relation to access
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0655Vertical data movement, i.e. input-output transfer; data movement between one or more hosts and one or more storage devices
    • G06F3/0656Data buffering arrangements
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0655Vertical data movement, i.e. input-output transfer; data movement between one or more hosts and one or more storage devices
    • G06F3/0659Command handling arrangements, e.g. command buffers, queues, command scheduling
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/0671In-line storage system
    • G06F3/0673Single storage device
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/0671In-line storage system
    • G06F3/0673Single storage device
    • G06F3/0679Non-volatile semiconductor memory device, e.g. flash memory, one time programmable memory [OTP]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2212/00Indexing scheme relating to accessing, addressing or allocation within memory systems or architectures
    • G06F2212/10Providing a specific technical effect
    • G06F2212/1052Security improvement

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Human Computer Interaction (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Mathematical Physics (AREA)
  • Storage Device Security (AREA)
  • Microcomputers (AREA)
  • Logic Circuits (AREA)
CN201780088688.5A 2017-03-22 2017-12-06 用于安全地隔离系统特征的系统和方法 Active CN110462624B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US15/466,484 US10585608B2 (en) 2017-03-22 2017-03-22 System and method for securely isolating a system feature
US15/466,484 2017-03-22
PCT/US2017/064824 WO2018174971A1 (en) 2017-03-22 2017-12-06 System and method for securely isolating a system feature

Publications (2)

Publication Number Publication Date
CN110462624A CN110462624A (zh) 2019-11-15
CN110462624B true CN110462624B (zh) 2023-08-29

Family

ID=60782386

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201780088688.5A Active CN110462624B (zh) 2017-03-22 2017-12-06 用于安全地隔离系统特征的系统和方法

Country Status (5)

Country Link
US (1) US10585608B2 (enExample)
EP (1) EP3602390B1 (enExample)
JP (2) JP7159190B2 (enExample)
CN (1) CN110462624B (enExample)
WO (1) WO2018174971A1 (enExample)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11099922B2 (en) * 2019-08-12 2021-08-24 Dell Products L.P. System and method for isolating a failed card
US11288372B2 (en) * 2019-10-07 2022-03-29 Microsoft Technology Licensing, Llc Secure installation of baseboard management controller firmware via a physical interface

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5524008A (en) * 1995-03-21 1996-06-04 National Semiconductor Corporation Generating real-time events in a TDMA digital wireless communications system
CN1524206A (zh) * 2001-05-10 2004-08-25 �Ƚ�΢װ�ù�˾ 用于个人计算机存储器区域的外部锁固机构
CN101126995A (zh) * 2006-08-14 2008-02-20 国际商业机器公司 处理严重硬件错误的方法及设备
CN101479707A (zh) * 2006-06-30 2009-07-08 莫塞德技术公司 为混合磁盘驱动器配置非易失性存储器的方法
CN105164635A (zh) * 2013-05-31 2015-12-16 英特尔公司 针对固态存储设备在运行中的性能调整
WO2016043962A1 (en) * 2014-09-17 2016-03-24 Cryptography Research, Inc. Managing privileges of different entities for an integrated circuit
CN106227636A (zh) * 2016-07-20 2016-12-14 国网安徽省电力公司信息通信分公司 一种基于ipmi的数据中心带外管理系统

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000267847A (ja) * 1999-03-18 2000-09-29 Miyazaki Oki Electric Co Ltd セキュリティシステム
JP4256859B2 (ja) * 2005-04-21 2009-04-22 シャープ株式会社 半導体記憶装置
KR100833189B1 (ko) * 2006-11-03 2008-05-28 삼성전자주식회사 불휘발성 메모리 장치 및 불휘발성 메모리 장치의환경설정정보 설정 방법
US7574576B2 (en) * 2006-12-22 2009-08-11 Spansion Llc Semiconductor device and method of controlling the same
US7902964B2 (en) * 2007-06-05 2011-03-08 Xerox Corporation Hybrid system option key
US8392683B1 (en) * 2009-11-30 2013-03-05 Micron Technology, Inc. Dynamic range unlock or lock memory device and method to operate the same
US10771448B2 (en) * 2012-08-10 2020-09-08 Cryptography Research, Inc. Secure feature and key management in integrated circuits
US9521032B1 (en) * 2013-03-14 2016-12-13 Amazon Technologies, Inc. Server for authentication, authorization, and accounting
US9940048B2 (en) * 2014-02-26 2018-04-10 Macronix International Co., Ltd. Nonvolatile memory data protection using nonvolatile protection codes and volatile protection codes
US20150381368A1 (en) * 2014-06-27 2015-12-31 William A. Stevens, Jr. Technologies for secure offline activation of hardware features
US9747739B2 (en) * 2014-08-18 2017-08-29 Noke, Inc. Wireless locking device
JP6492835B2 (ja) * 2015-03-23 2019-04-03 富士通クライアントコンピューティング株式会社 ポータブル機器、及び情報処理装置

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5524008A (en) * 1995-03-21 1996-06-04 National Semiconductor Corporation Generating real-time events in a TDMA digital wireless communications system
CN1524206A (zh) * 2001-05-10 2004-08-25 �Ƚ�΢װ�ù�˾ 用于个人计算机存储器区域的外部锁固机构
CN101479707A (zh) * 2006-06-30 2009-07-08 莫塞德技术公司 为混合磁盘驱动器配置非易失性存储器的方法
CN101126995A (zh) * 2006-08-14 2008-02-20 国际商业机器公司 处理严重硬件错误的方法及设备
CN105164635A (zh) * 2013-05-31 2015-12-16 英特尔公司 针对固态存储设备在运行中的性能调整
WO2016043962A1 (en) * 2014-09-17 2016-03-24 Cryptography Research, Inc. Managing privileges of different entities for an integrated circuit
CN106227636A (zh) * 2016-07-20 2016-12-14 国网安徽省电力公司信息通信分公司 一种基于ipmi的数据中心带外管理系统

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Information Hiding Based on Block Match Coding for Vector Quantization-Compressed Images;Jiann-Der Lee等;《网页在线公开:https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=6407687》;20130109;第1-12页 *

Also Published As

Publication number Publication date
JP2022141880A (ja) 2022-09-29
US10585608B2 (en) 2020-03-10
JP2020514927A (ja) 2020-05-21
US20180275904A1 (en) 2018-09-27
EP3602390A1 (en) 2020-02-05
WO2018174971A1 (en) 2018-09-27
CN110462624A (zh) 2019-11-15
EP3602390B1 (en) 2021-11-17
JP7441896B2 (ja) 2024-03-01
JP7159190B2 (ja) 2022-10-24

Similar Documents

Publication Publication Date Title
CN110494855B (zh) 用于恢复可信系统固件状态的系统和方法
US8140733B2 (en) Secure external computer hub
US8938626B2 (en) Single command functionality for providing data security and preventing data access within a decommissioned information handling system
US8892837B2 (en) Integrated circuit with tamper-detection and self-erase mechanisms
US11334510B1 (en) Systems and methods for combination write blocking with connection interface control devices
US20100005531A1 (en) Isolated multiplexed multi-dimensional processing in a virtual processing space having virus, spyware, and hacker protection features
US9768952B1 (en) Removable circuit for unlocking self-encrypting data storage devices
CN1954297A (zh) 在具有病毒、间谍软件以及黑客防护特征的虚拟处理空间中的隔离复用多维处理
WO2019072111A1 (zh) Fpga设备、基于fpga设备的云系统
US11416615B2 (en) Configuring trusted remote management communications using UEFI
JP7441896B2 (ja) システム特徴をセキュアに分離するためのシステムおよび方法
US20230125588A1 (en) Geographic restrictions for information handling systems
US20150067896A1 (en) Asserting physical presence to a trusted platform module by physically connecting or disconnecting a hot pluggable device
US12367274B2 (en) Verification and/or validation of unreversible information handling system commands
US11669646B2 (en) Security method and apparatus for locking of mediators between console peripheral devices and hosts
US11775646B2 (en) Enhanced security apparatus for mediation between console peripheral devices and hosts
AU2005248713A2 (en) Isolated multiplexed multi-dimensional processing in a virtual processing space having virus, spyware, and hacker protection features
US20190137567A1 (en) Systems and methods for debugging access
US12413421B2 (en) Trusted and validated platform device certificate provisioning using security protocol data model (SPDM)
CN105809069A (zh) 防止固态驱动器可访问时被移除的装置、方法和该驱动器
US11720517B2 (en) Information handling system bus out of band message access control
US20250350459A1 (en) Processor module initialization based on authentication key generation at a security module

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant