JP2010517164A5 - - Google Patents
Download PDFInfo
- Publication number
- JP2010517164A5 JP2010517164A5 JP2009547246A JP2009547246A JP2010517164A5 JP 2010517164 A5 JP2010517164 A5 JP 2010517164A5 JP 2009547246 A JP2009547246 A JP 2009547246A JP 2009547246 A JP2009547246 A JP 2009547246A JP 2010517164 A5 JP2010517164 A5 JP 2010517164A5
- Authority
- JP
- Japan
- Prior art keywords
- operating system
- virtual machine
- partition
- resources
- machine monitor
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000005192 partition Methods 0.000 claims 13
- 238000000034 method Methods 0.000 claims 5
- 239000011814 protection agent Substances 0.000 claims 4
- 230000004044 response Effects 0.000 claims 3
- 230000002708 enhancing effect Effects 0.000 claims 1
- 238000002407 reforming Methods 0.000 claims 1
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US11/627,314 US7765374B2 (en) | 2007-01-25 | 2007-01-25 | Protecting operating-system resources |
| PCT/US2007/088219 WO2008091462A1 (en) | 2007-01-25 | 2007-12-19 | Protecting operating-system resources |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| JP2010517164A JP2010517164A (ja) | 2010-05-20 |
| JP2010517164A5 true JP2010517164A5 (enExample) | 2010-12-02 |
Family
ID=39644773
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| JP2009547246A Pending JP2010517164A (ja) | 2007-01-25 | 2007-12-19 | オペレーティングシステム資源の保護 |
Country Status (10)
| Country | Link |
|---|---|
| US (1) | US7765374B2 (enExample) |
| EP (2) | EP2521062B1 (enExample) |
| JP (1) | JP2010517164A (enExample) |
| KR (1) | KR101279683B1 (enExample) |
| CN (1) | CN101589365B (enExample) |
| BR (1) | BRPI0720700B1 (enExample) |
| CL (1) | CL2008000176A1 (enExample) |
| RU (1) | RU2462747C2 (enExample) |
| TW (1) | TWI470471B (enExample) |
| WO (1) | WO2008091462A1 (enExample) |
Families Citing this family (56)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8380987B2 (en) | 2007-01-25 | 2013-02-19 | Microsoft Corporation | Protection agents and privilege modes |
| CN101334825B (zh) * | 2007-06-29 | 2011-08-24 | 联想(北京)有限公司 | 应用程序管理和运行系统及方法 |
| DE102007030396B4 (de) * | 2007-06-29 | 2014-11-27 | Trumpf Werkzeugmaschinen Gmbh + Co. Kg | Vorrichtung zur Steuerung einer Maschine sowie Fernkommunikationssystem |
| US8127086B2 (en) * | 2008-06-06 | 2012-02-28 | International Business Machines Corporation | Transparent hypervisor pinning of critical memory areas in a shared memory partition data processing system |
| JP5166169B2 (ja) * | 2008-08-27 | 2013-03-21 | 株式会社日立製作所 | ハイパバイザを有する計算機システム |
| US8954897B2 (en) * | 2008-08-28 | 2015-02-10 | Microsoft Corporation | Protecting a virtual guest machine from attacks by an infected host |
| US7975034B1 (en) * | 2008-10-31 | 2011-07-05 | Symantec Corporation | Systems and methods to secure data and hardware through virtualization |
| US8776028B1 (en) * | 2009-04-04 | 2014-07-08 | Parallels IP Holdings GmbH | Virtual execution environment for software delivery and feedback |
| US8621460B2 (en) * | 2009-11-02 | 2013-12-31 | International Business Machines Corporation | Endpoint-hosted hypervisor management |
| US8955131B2 (en) | 2010-01-27 | 2015-02-10 | Mcafee Inc. | Method and system for proactive detection of malicious shared libraries via a remote reputation system |
| US8819826B2 (en) | 2010-01-27 | 2014-08-26 | Mcafee, Inc. | Method and system for detection of malware that connect to network destinations through cloud scanning and web reputation |
| US9104872B2 (en) * | 2010-01-28 | 2015-08-11 | Bank Of America Corporation | Memory whitelisting |
| US9536089B2 (en) * | 2010-09-02 | 2017-01-03 | Mcafee, Inc. | Atomic detection and repair of kernel memory |
| US8082585B1 (en) * | 2010-09-13 | 2011-12-20 | Raymond R. Givonetti | Protecting computers from malware using a hardware solution that is not alterable by any software |
| US9032013B2 (en) * | 2010-10-29 | 2015-05-12 | Microsoft Technology Licensing, Llc | Unified policy over heterogenous device types |
| US20120144489A1 (en) * | 2010-12-07 | 2012-06-07 | Microsoft Corporation | Antimalware Protection of Virtual Machines |
| US8516509B2 (en) * | 2011-02-08 | 2013-08-20 | BlueStripe Software, Inc. | Methods and computer program products for monitoring system calls using safely removable system function table chaining |
| JP2014514651A (ja) * | 2011-03-28 | 2014-06-19 | マカフィー, インコーポレイテッド | バーチャルマシーンモニタベースのアンチマルウェアセキュリティのためのシステム及び方法 |
| US9262246B2 (en) | 2011-03-31 | 2016-02-16 | Mcafee, Inc. | System and method for securing memory and storage of an electronic device with a below-operating system security agent |
| US9317690B2 (en) | 2011-03-28 | 2016-04-19 | Mcafee, Inc. | System and method for firmware based anti-malware security |
| US9038176B2 (en) | 2011-03-31 | 2015-05-19 | Mcafee, Inc. | System and method for below-operating system trapping and securing loading of code into memory |
| US8635615B2 (en) | 2011-05-14 | 2014-01-21 | Industrial Technology Research Institute | Apparatus and method for managing hypercalls in a hypervisor and the hypervisor thereof |
| US8869235B2 (en) | 2011-10-11 | 2014-10-21 | Citrix Systems, Inc. | Secure mobile browser for protecting enterprise data |
| US9280377B2 (en) | 2013-03-29 | 2016-03-08 | Citrix Systems, Inc. | Application with multiple operation modes |
| WO2013105916A1 (en) * | 2011-12-01 | 2013-07-18 | Intel Corporation | Secure message filtering to vehicle electronic control units with secure provisioning of message filtering rules |
| CN102521016A (zh) * | 2011-12-08 | 2012-06-27 | 中兴通讯股份有限公司 | 一种运行多个虚拟机的方法及系统 |
| US9043903B2 (en) | 2012-06-08 | 2015-05-26 | Crowdstrike, Inc. | Kernel-level security agent |
| CN102779250B (zh) * | 2012-06-29 | 2016-04-13 | 腾讯科技(深圳)有限公司 | 文件可控执行的检测方法及虚拟机 |
| US9292881B2 (en) | 2012-06-29 | 2016-03-22 | Crowdstrike, Inc. | Social sharing of security information in a group |
| US20140109072A1 (en) | 2012-10-16 | 2014-04-17 | Citrix Systems, Inc. | Application wrapping for application management framework |
| US9971585B2 (en) | 2012-10-16 | 2018-05-15 | Citrix Systems, Inc. | Wrapping unmanaged applications on a mobile device |
| US9201642B2 (en) * | 2013-03-15 | 2015-12-01 | International Business Machines Corporation | Extending platform trust during program updates |
| US10284627B2 (en) | 2013-03-29 | 2019-05-07 | Citrix Systems, Inc. | Data management for an application with multiple operation modes |
| US9197654B2 (en) * | 2013-06-28 | 2015-11-24 | Mcafee, Inc. | Rootkit detection by using HW resources to detect inconsistencies in network traffic |
| GB2515736A (en) | 2013-07-01 | 2015-01-07 | Ibm | Controlling access to one or more datasets of an operating system in use |
| FR3012643B1 (fr) * | 2013-10-28 | 2017-03-17 | Oberthur Technologies | Systeme de detection d'intrusion dans un dispositif comprenant un premier systeme d'exploitation et un deuxieme systeme d'exploitation |
| US9772953B2 (en) | 2014-02-03 | 2017-09-26 | Samsung Electronics Co., Ltd. | Methods and apparatus for protecting operating system data |
| US10289405B2 (en) | 2014-03-20 | 2019-05-14 | Crowdstrike, Inc. | Integrity assurance and rebootless updating during runtime |
| US10318765B2 (en) * | 2014-05-02 | 2019-06-11 | Avago Technologies International Sales Pte. Limited | Protecting critical data structures in an embedded hypervisor system |
| US9760712B2 (en) * | 2014-05-23 | 2017-09-12 | Vmware, Inc. | Application whitelisting using user identification |
| US10951655B2 (en) * | 2014-09-26 | 2021-03-16 | Oracle International Corporation | System and method for dynamic reconfiguration in a multitenant application server environment |
| RU2585978C2 (ru) * | 2014-09-30 | 2016-06-10 | Закрытое акционерное общество "Лаборатория Касперского" | Способ вызова системных функций в условиях использования средств защиты ядра операционной системы |
| US10339316B2 (en) | 2015-07-28 | 2019-07-02 | Crowdstrike, Inc. | Integrity assurance through early loading in the boot phase |
| CN108351938B (zh) * | 2015-10-29 | 2022-02-08 | 惠普发展公司,有限责任合伙企业 | 校验针对程序代码的一部分所计算的安全值的装置、系统和方法 |
| RU2624554C1 (ru) * | 2016-05-17 | 2017-07-04 | Закрытое акционерное общество "Перспективный мониторинг" | Способ обнаружения скрытого программного обеспечения в вычислительной системе, работающей под управлением POSIX-совместимой операционной системы |
| JP6319369B2 (ja) * | 2016-06-23 | 2018-05-09 | 日本電気株式会社 | 処理制御装置、処理制御方法、及び、処理制御プログラム |
| US20180004931A1 (en) * | 2016-07-02 | 2018-01-04 | Intel Corporation | Process management |
| US10387228B2 (en) | 2017-02-21 | 2019-08-20 | Crowdstrike, Inc. | Symmetric bridge component for communications between kernel mode and user mode |
| KR102022168B1 (ko) * | 2017-12-15 | 2019-09-18 | 이방훈 | 하드웨어 태스크 스위칭을 이용한 은닉 태스크의 감지 방법 및 장치 |
| US10740459B2 (en) | 2017-12-28 | 2020-08-11 | Crowdstrike, Inc. | Kernel- and user-level cooperative security processing |
| JP7151530B2 (ja) * | 2019-02-13 | 2022-10-12 | 日本電信電話株式会社 | サーバ基盤および物理cpu割当プログラム |
| USD905765S1 (en) | 2019-03-07 | 2020-12-22 | Caterpillar Inc. | Adapter for a ground engaging machine implement |
| RU2728504C1 (ru) * | 2019-03-29 | 2020-07-29 | Акционерное общество "Лаборатория Касперского" | Система и способ поэтапного повышения информационной безопасности элементов технологической системы |
| US12367540B2 (en) * | 2020-11-18 | 2025-07-22 | Intel Corporation | Multi-tile graphics processing unit |
| US12353904B2 (en) | 2021-09-17 | 2025-07-08 | Mediatek Inc. | System for application protection and non-transitory machine-readable medium for storing program code that provides application protection when executed |
| US12265838B2 (en) | 2021-09-17 | 2025-04-01 | Mediatek Inc. | Model protection system |
Family Cites Families (26)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US4091447A (en) | 1976-07-19 | 1978-05-23 | Union Carbide Corporation | Interrupt control system for a microcomputer |
| DE2744111A1 (de) | 1977-09-30 | 1979-04-05 | Siemens Ag | Schaltungsanordnung zur eingabe von unterbrechungsbefehlen und ausgabe von unterbrechungsbestaetigungen fuer computer-systeme |
| US5469556A (en) * | 1989-12-12 | 1995-11-21 | Harris Corporation | Resource access security system for controlling access to resources of a data processing system |
| US5684948A (en) * | 1995-09-01 | 1997-11-04 | National Semiconductor Corporation | Memory management circuit which provides simulated privilege levels |
| US7210040B2 (en) * | 2000-07-14 | 2007-04-24 | Computer Associates Think, Inc. | Detection of suspicious privileged access to restricted computer resources |
| US6938164B1 (en) * | 2000-11-22 | 2005-08-30 | Microsoft Corporation | Method and system for allowing code to be securely initialized in a computer |
| US7035963B2 (en) * | 2000-12-27 | 2006-04-25 | Intel Corporation | Method for resolving address space conflicts between a virtual machine monitor and a guest operating system |
| US7631160B2 (en) * | 2001-04-04 | 2009-12-08 | Advanced Micro Devices, Inc. | Method and apparatus for securing portions of memory |
| KR100389206B1 (ko) * | 2001-04-25 | 2003-06-27 | 주식회사 성진씨앤씨 | 컴퓨터 운영 시스템 보호 방법 및 장치 |
| GB2376761A (en) | 2001-06-19 | 2002-12-24 | Hewlett Packard Co | An arrangement in which a process is run on a host operating system but may be switched to a guest system if it poses a security risk |
| US7272832B2 (en) * | 2001-10-25 | 2007-09-18 | Hewlett-Packard Development Company, L.P. | Method of protecting user process data in a secure platform inaccessible to the operating system and other tasks on top of the secure platform |
| JP4256107B2 (ja) * | 2002-03-07 | 2009-04-22 | 富士通株式会社 | データサーバへの不正侵入対処方法、及びプログラム |
| US7793286B2 (en) | 2002-12-19 | 2010-09-07 | Intel Corporation | Methods and systems to manage machine state in virtual machine operations |
| US20050114687A1 (en) * | 2003-11-21 | 2005-05-26 | Zimmer Vincent J. | Methods and apparatus to provide protection for firmware resources |
| US20050132122A1 (en) | 2003-12-16 | 2005-06-16 | Rozas Carlos V. | Method, apparatus and system for monitoring system integrity in a trusted computing environment |
| US7222062B2 (en) | 2003-12-23 | 2007-05-22 | Intel Corporation | Method and system to support a trusted set of operational environments using emulated trusted hardware |
| US7802250B2 (en) | 2004-06-28 | 2010-09-21 | Intel Corporation | Support for transitioning to a virtual machine monitor based upon the privilege level of guest software |
| US7694121B2 (en) * | 2004-06-30 | 2010-04-06 | Microsoft Corporation | System and method for protected operating system boot using state validation |
| US8955104B2 (en) * | 2004-07-07 | 2015-02-10 | University Of Maryland College Park | Method and system for monitoring system memory integrity |
| US7757231B2 (en) * | 2004-12-10 | 2010-07-13 | Intel Corporation | System and method to deprivilege components of a virtual machine monitor |
| US7409719B2 (en) * | 2004-12-21 | 2008-08-05 | Microsoft Corporation | Computer security management, such as in a virtual machine or hardened operating system |
| JP4400448B2 (ja) * | 2004-12-22 | 2010-01-20 | コニカミノルタセンシング株式会社 | 分光輝度計の校正方法、及び校正システムの動作プログラム |
| US8533777B2 (en) * | 2004-12-29 | 2013-09-10 | Intel Corporation | Mechanism to determine trust of out-of-band management agents |
| US8856473B2 (en) * | 2005-07-01 | 2014-10-07 | Red Hat, Inc. | Computer system protection based on virtualization |
| AU2006100099A4 (en) * | 2006-02-08 | 2006-03-16 | Pc Tools Technology Pty Limited | Automated Threat Analysis System |
| US8380987B2 (en) | 2007-01-25 | 2013-02-19 | Microsoft Corporation | Protection agents and privilege modes |
-
2007
- 2007-01-25 US US11/627,314 patent/US7765374B2/en active Active
- 2007-12-19 EP EP12005459.8A patent/EP2521062B1/en active Active
- 2007-12-19 RU RU2009128684/08A patent/RU2462747C2/ru active
- 2007-12-19 KR KR1020097015094A patent/KR101279683B1/ko active Active
- 2007-12-19 JP JP2009547246A patent/JP2010517164A/ja active Pending
- 2007-12-19 WO PCT/US2007/088219 patent/WO2008091462A1/en not_active Ceased
- 2007-12-19 BR BRPI0720700-0A patent/BRPI0720700B1/pt not_active IP Right Cessation
- 2007-12-19 CN CN2007800505108A patent/CN101589365B/zh not_active Expired - Fee Related
- 2007-12-19 EP EP07869567.3A patent/EP2106583B1/en not_active Not-in-force
- 2007-12-24 TW TW96149789A patent/TWI470471B/zh not_active IP Right Cessation
-
2008
- 2008-01-22 CL CL200800176A patent/CL2008000176A1/es unknown
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP2010517164A5 (enExample) | ||
| KR101019937B1 (ko) | 보안 운영 시스템 스위칭 | |
| CN109726549B (zh) | 用于采用处理器沙箱支持的不可信代码执行的技术 | |
| CN102651062B (zh) | 基于虚拟机架构的恶意行为跟踪系统和方法 | |
| CN102521531B (zh) | 基于硬件虚拟化的密码保护系统 | |
| KR20180099682A (ko) | 가상 머신 감사를 위한 시스템 및 방법들 | |
| CN103984591B (zh) | 计算机虚拟化系统的PCI设备INTx中断投递方法 | |
| US9952890B2 (en) | Kernel state data collection in a protected kernel environment | |
| JP5951879B2 (ja) | オペレーティングシステムに対する悪意ある活動のレポート | |
| US10621340B2 (en) | Hybrid hypervisor-assisted security model | |
| CN104036185B (zh) | 基于虚拟化的宏内核操作系统载入模块权能隔离方法 | |
| US10552345B2 (en) | Virtual machine memory lock-down | |
| CN109074321B (zh) | 用于保护虚拟计算实例的存储器的方法和系统 | |
| CN103632101A (zh) | 一种拦截系统调用的方法和装置 | |
| CN102214277A (zh) | 创建多核处理器虚拟机系统可信环境的方法及装置 | |
| CN106970823A (zh) | 高效的基于嵌套虚拟化的虚拟机安全保护方法及系统 | |
| CN117494108B (zh) | 可信执行环境实现方法、计算机设备及存储介质 | |
| CN108920253B (zh) | 一种无代理的虚拟机监控系统和监控方法 | |
| CN103425563B (zh) | 基于虚拟化技术的在线i/o电子取证系统及其取证方法 | |
| JP2015166952A (ja) | 情報処理装置、情報処理監視方法、プログラム、及び記録媒体 | |
| CN102799480B (zh) | 虚拟化系统中关闭中断的方法和装置 | |
| JP6920286B2 (ja) | 例外処理 | |
| WO2025077469A1 (zh) | 用于云计算的安全扫描方法、相关设备及存储介质 | |
| CN107608756B (zh) | 一种基于cpu硬件特性的虚拟机自省触发方法及系统 | |
| CN107741868B (zh) | 一种基本输入输出系统bios的设置方法和装置 |