GB2501343A - Data processing apparatus and method using secure domain and less secure domain - Google Patents

Data processing apparatus and method using secure domain and less secure domain Download PDF

Info

Publication number
GB2501343A
GB2501343A GB1220769.2A GB201220769A GB2501343A GB 2501343 A GB2501343 A GB 2501343A GB 201220769 A GB201220769 A GB 201220769A GB 2501343 A GB2501343 A GB 2501343A
Authority
GB
United Kingdom
Prior art keywords
domain
instruction
secure
target
control flow
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
GB1220769.2A
Other languages
English (en)
Other versions
GB201220769D0 (en
Inventor
Thomas Christopher Grocutt
Richard Roy Grisenthwaite
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ARM Ltd
Original Assignee
ARM Ltd
Advanced Risc Machines Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US13/368,419 external-priority patent/US9477834B2/en
Priority claimed from GB201217531A external-priority patent/GB201217531D0/en
Application filed by ARM Ltd, Advanced Risc Machines Ltd filed Critical ARM Ltd
Publication of GB201220769D0 publication Critical patent/GB201220769D0/en
Priority to US13/735,350 priority Critical patent/US10210349B2/en
Priority to JP2013012980A priority patent/JP6189039B2/ja
Priority to CN201310038646.4A priority patent/CN103310163B/zh
Priority to KR1020157008994A priority patent/KR102160916B1/ko
Priority to MYPI2015700654A priority patent/MY176723A/en
Priority to PCT/GB2013/052105 priority patent/WO2014053802A1/en
Priority to EP13750108.6A priority patent/EP2888691B1/en
Publication of GB2501343A publication Critical patent/GB2501343A/en
Priority to IL237280A priority patent/IL237280B/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/30Arrangements for executing machine instructions, e.g. instruction decode
    • G06F9/38Concurrent instruction execution, e.g. pipeline or look ahead
    • G06F9/3861Recovery, e.g. branch miss-prediction, exception handling
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/74Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2105Dual mode as a secondary aspect

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Mathematical Physics (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Storage Device Security (AREA)
  • Executing Machine-Instructions (AREA)
  • Advance Control (AREA)
  • Medicines Containing Antibodies Or Antigens For Use As Internal Diagnostic Agents (AREA)
  • Memory System Of A Hierarchy Structure (AREA)
GB1220769.2A 2012-02-08 2012-11-19 Data processing apparatus and method using secure domain and less secure domain Withdrawn GB2501343A (en)

Priority Applications (8)

Application Number Priority Date Filing Date Title
US13/735,350 US10210349B2 (en) 2012-02-08 2013-01-07 Data processing apparatus and method using secure domain and less secure domain
JP2013012980A JP6189039B2 (ja) 2012-02-08 2013-01-28 セキュアドメインおよび低セキュアドメインを使用するデータ処理装置および方法
CN201310038646.4A CN103310163B (zh) 2012-02-08 2013-01-31 使用安全域与次安全域的数据处理装置和方法
EP13750108.6A EP2888691B1 (en) 2012-10-01 2013-08-07 Data processing apparatus and method using secure domain and less secure domain
PCT/GB2013/052105 WO2014053802A1 (en) 2012-10-01 2013-08-07 Data processing apparatus and method using secure domain and less secure domain
MYPI2015700654A MY176723A (en) 2012-10-01 2013-08-07 Data processing apparatus and method using secure domain and less secure domain
KR1020157008994A KR102160916B1 (ko) 2012-10-01 2013-08-07 안전한 도메인과 덜 안전한 도메인을 이용한 데이터 처리 장치 및 방법
IL237280A IL237280B (en) 2012-10-01 2015-02-17 A device and method for processing data using a guaranteed domain and a less guaranteed domain

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US13/368,419 US9477834B2 (en) 2012-02-08 2012-02-08 Maintaining secure data isolated from non-secure access when switching between domains
GB201217531A GB201217531D0 (en) 2012-10-01 2012-10-01 ARMv7-M Asset Protection Proposal

Publications (2)

Publication Number Publication Date
GB201220769D0 GB201220769D0 (en) 2013-01-02
GB2501343A true GB2501343A (en) 2013-10-23

Family

ID=47521366

Family Applications (2)

Application Number Title Priority Date Filing Date
GB1220771.8A Withdrawn GB2499287A (en) 2012-02-08 2012-11-19 Exception handling in data processing with different security domains
GB1220769.2A Withdrawn GB2501343A (en) 2012-02-08 2012-11-19 Data processing apparatus and method using secure domain and less secure domain

Family Applications Before (1)

Application Number Title Priority Date Filing Date
GB1220771.8A Withdrawn GB2499287A (en) 2012-02-08 2012-11-19 Exception handling in data processing with different security domains

Country Status (10)

Country Link
EP (1) EP2812836B1 (enExample)
JP (2) JP6134742B2 (enExample)
KR (1) KR102075367B1 (enExample)
CN (2) CN104115155B (enExample)
GB (2) GB2499287A (enExample)
IL (1) IL233521A (enExample)
IN (1) IN2014DN05705A (enExample)
MY (1) MY167888A (enExample)
TW (1) TWI569164B (enExample)
WO (1) WO2013117899A1 (enExample)

Families Citing this family (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9268970B2 (en) 2014-03-20 2016-02-23 Analog Devices, Inc. System and method for security-aware master
GB2531844B (en) * 2014-10-31 2019-06-26 Hewlett Packard Development Co Hardware-protective data processing systems and methods using an application executing in a secure domain
TW201710947A (zh) 2015-08-25 2017-03-16 Seltech Corp 具有管理程序的系統
GB2547912B (en) * 2016-03-02 2019-01-30 Advanced Risc Mach Ltd Register access control
GB2549774B (en) * 2016-04-28 2019-04-10 Imagination Tech Ltd Method for handling exceptions in exception-driven system
GB2552966B (en) * 2016-08-15 2019-12-11 Arm Ip Ltd Methods and apparatus for protecting domains of a device from unauthorised accesses
US11392438B2 (en) * 2017-02-09 2022-07-19 Arm Limited Responding to unresponsive processing circuitry
GB2562102B (en) * 2017-05-05 2019-09-04 Advanced Risc Mach Ltd An apparatus and method for managing use of capabilities
CN107436752B (zh) * 2017-07-20 2020-12-01 龙芯中科技术有限公司 异常现场恢复方法、装置及计算机可读存储介质
GB2577878B (en) * 2018-10-08 2020-11-11 Advanced Risc Mach Ltd Transition disable indicator
GB2578135B (en) * 2018-10-18 2020-10-21 Advanced Risc Mach Ltd Range checking instruction
JP6877475B2 (ja) * 2019-03-11 2021-05-26 日立Astemo株式会社 電子制御装置及びスタック使用方法
US11216277B2 (en) * 2019-09-26 2022-01-04 Arm Limited Apparatus and method of capturing a register state
GB2589897B (en) 2019-12-11 2022-03-23 Advanced Risc Mach Ltd Domain transition disable configuration parameter
GB2589895B (en) 2019-12-11 2022-03-16 Advanced Risc Mach Ltd Intermodal calling branch instruction
GB2589896B (en) * 2019-12-11 2022-07-27 Advanced Risc Mach Ltd An apparatus and method for handling exceptions
CN114490448B (zh) * 2020-11-13 2025-01-28 华为技术有限公司 一种切换执行环境的方法及其相关设备

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007089373A2 (en) * 2005-12-23 2007-08-09 Texas Instruments Incorporated Method and system for preventing unauthorized processor mode switches
GB2448149A (en) * 2007-04-03 2008-10-08 Advanced Risc Mach Ltd Protected function calling across domains
US20100031360A1 (en) * 2008-07-31 2010-02-04 Arvind Seshadri Systems and methods for preventing unauthorized modification of an operating system
GB2482701A (en) * 2010-08-11 2012-02-15 Advanced Risc Mach Ltd Detecting and suppressing illegal mode changes in a data processing system

Family Cites Families (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH10228421A (ja) * 1997-02-14 1998-08-25 Nec Ic Microcomput Syst Ltd メモリアクセス制御回路
JP2990140B2 (ja) * 1998-01-09 1999-12-13 日本電気アイシーマイコンシステム株式会社 割り込み制御回路
JP3716604B2 (ja) * 1998-03-24 2005-11-16 富士電機機器制御株式会社 情報処理装置
CA2309627A1 (en) * 1998-09-25 2000-04-06 Hughes Electronics Corporation An apparatus for providing a secure processing environment
US6363474B1 (en) * 1999-06-30 2002-03-26 Bull Hn Information Systems Inc. Process switching register replication in a data processing system
GB2369464B (en) * 2000-11-27 2005-01-05 Advanced Risc Mach Ltd A data processing apparatus and method for saving return state
EP1331539B1 (en) * 2002-01-16 2016-09-28 Texas Instruments France Secure mode for processors supporting MMU and interrupts
GB2396034B (en) * 2002-11-18 2006-03-08 Advanced Risc Mach Ltd Technique for accessing memory in a data processing apparatus
US7539853B2 (en) * 2002-11-18 2009-05-26 Arm Limited Handling interrupts in data processing of data in which only a portion of a function has been processed
DE60308215T2 (de) * 2002-11-18 2007-08-23 Arm Ltd., Cherry Hinton Prozessorschaltung zwischen sicheren und nicht sicheren modi
US7383587B2 (en) * 2002-11-18 2008-06-03 Arm Limited Exception handling control in a secure processing system
GB0226874D0 (en) * 2002-11-18 2002-12-24 Advanced Risc Mach Ltd Switching between secure and non-secure processing modes
GB2396930B (en) * 2002-11-18 2005-09-07 Advanced Risc Mach Ltd Apparatus and method for managing access to a memory
GB2411254B (en) * 2002-11-18 2006-06-28 Advanced Risc Mach Ltd Monitoring control for multi-domain processors
JP2004280801A (ja) * 2003-02-24 2004-10-07 Matsushita Electric Ind Co Ltd プロセッサおよびこのプロセッサ用のプログラムを生成するコンパイラ装置
US20080133858A1 (en) * 2004-11-04 2008-06-05 Board Of Trustees Of Michigan State University Secure Bit
US7401210B2 (en) * 2005-03-30 2008-07-15 Arm Limited Selecting subroutine return mechanisms
JP4519738B2 (ja) * 2005-08-26 2010-08-04 株式会社東芝 メモリアクセス制御装置
US8621607B2 (en) * 2006-05-18 2013-12-31 Vmware, Inc. Computational system including mechanisms for tracking taint
KR101326414B1 (ko) * 2006-09-06 2013-11-11 실리콘 하이브 비.브이. 데이터 처리회로
GB2448151B (en) 2007-04-03 2011-05-04 Advanced Risc Mach Ltd Memory domain based security control within data processing systems
US8051467B2 (en) * 2008-08-26 2011-11-01 Atmel Corporation Secure information processing
JP2010186386A (ja) * 2009-02-13 2010-08-26 Oki Semiconductor Co Ltd プロセッサ
GB2471138B (en) * 2009-06-19 2014-08-13 Advanced Risc Mach Ltd Handling integer and floating point registers during a context switch
JP2011070290A (ja) * 2009-09-24 2011-04-07 Renesas Electronics Corp データプロセッサ
GB2478733B (en) * 2010-03-15 2013-08-14 Advanced Risc Mach Ltd Apparatus and method for handling exception events

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007089373A2 (en) * 2005-12-23 2007-08-09 Texas Instruments Incorporated Method and system for preventing unauthorized processor mode switches
GB2448149A (en) * 2007-04-03 2008-10-08 Advanced Risc Mach Ltd Protected function calling across domains
US20100031360A1 (en) * 2008-07-31 2010-02-04 Arvind Seshadri Systems and methods for preventing unauthorized modification of an operating system
GB2482701A (en) * 2010-08-11 2012-02-15 Advanced Risc Mach Ltd Detecting and suppressing illegal mode changes in a data processing system

Also Published As

Publication number Publication date
CN104115155A (zh) 2014-10-22
IL233521A (en) 2017-11-30
IL233521A0 (en) 2014-08-31
EP2812836A1 (en) 2014-12-17
GB2499287A (en) 2013-08-14
CN103310163B (zh) 2018-01-05
JP6134742B2 (ja) 2017-05-24
CN104115155B (zh) 2016-12-28
CN103310163A (zh) 2013-09-18
TWI569164B (zh) 2017-02-01
JP2013161479A (ja) 2013-08-19
GB201220771D0 (en) 2013-01-02
WO2013117899A1 (en) 2013-08-15
EP2812836B1 (en) 2016-01-06
KR20140123545A (ko) 2014-10-22
JP6189039B2 (ja) 2017-08-30
IN2014DN05705A (enExample) 2015-04-10
GB201220769D0 (en) 2013-01-02
MY167888A (en) 2018-09-26
KR102075367B1 (ko) 2020-02-11
JP2015506525A (ja) 2015-03-02
TW201346625A (zh) 2013-11-16

Similar Documents

Publication Publication Date Title
EP2888691B1 (en) Data processing apparatus and method using secure domain and less secure domain
GB2501343A (en) Data processing apparatus and method using secure domain and less secure domain
US10210349B2 (en) Data processing apparatus and method using secure domain and less secure domain
CA2809516C (en) Preventing stack buffer overflow attacks
US11727110B2 (en) Verifying stack pointer
US9251378B2 (en) Security protection of software libraries in a data processing apparatus
US12248562B2 (en) Domain transition disable configuration parameter
US12067400B2 (en) Intermodal calling branch instruction

Legal Events

Date Code Title Description
WAP Application withdrawn, taken to be withdrawn or refused ** after publication under section 16(1)