JP4603585B2 - 制限付き実行環境及び非制限実行環境を生成するメカニズム - Google Patents

制限付き実行環境及び非制限実行環境を生成するメカニズム Download PDF

Info

Publication number
JP4603585B2
JP4603585B2 JP2007539196A JP2007539196A JP4603585B2 JP 4603585 B2 JP4603585 B2 JP 4603585B2 JP 2007539196 A JP2007539196 A JP 2007539196A JP 2007539196 A JP2007539196 A JP 2007539196A JP 4603585 B2 JP4603585 B2 JP 4603585B2
Authority
JP
Japan
Prior art keywords
thread
restricted
access
unrestricted
chipset
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
JP2007539196A
Other languages
English (en)
Japanese (ja)
Other versions
JP2008518363A (ja
Inventor
ポイズナー、デーヴィッド
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Intel Corp
Original Assignee
Intel Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Intel Corp filed Critical Intel Corp
Publication of JP2008518363A publication Critical patent/JP2008518363A/ja
Application granted granted Critical
Publication of JP4603585B2 publication Critical patent/JP4603585B2/ja
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/468Specific access rights for resources, e.g. using capability register
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/50Allocation of resources, e.g. of the central processing unit [CPU]

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Mathematical Physics (AREA)
  • Computer Security & Cryptography (AREA)
  • Storage Device Security (AREA)
JP2007539196A 2004-10-27 2005-10-27 制限付き実行環境及び非制限実行環境を生成するメカニズム Expired - Fee Related JP4603585B2 (ja)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/974,217 US7797728B2 (en) 2004-10-27 2004-10-27 Mechanism to generate restricted and unrestricted execution environments
PCT/US2005/039048 WO2006047762A1 (en) 2004-10-27 2005-10-27 Mechanism to generate restricted and unrestricted execution environments

Publications (2)

Publication Number Publication Date
JP2008518363A JP2008518363A (ja) 2008-05-29
JP4603585B2 true JP4603585B2 (ja) 2010-12-22

Family

ID=35811715

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2007539196A Expired - Fee Related JP4603585B2 (ja) 2004-10-27 2005-10-27 制限付き実行環境及び非制限実行環境を生成するメカニズム

Country Status (7)

Country Link
US (1) US7797728B2 (GUID-C5D7CC26-194C-43D0-91A1-9AE8C70A9BFF.html)
JP (1) JP4603585B2 (GUID-C5D7CC26-194C-43D0-91A1-9AE8C70A9BFF.html)
CN (1) CN101031922A (GUID-C5D7CC26-194C-43D0-91A1-9AE8C70A9BFF.html)
DE (1) DE112005002314T5 (GUID-C5D7CC26-194C-43D0-91A1-9AE8C70A9BFF.html)
GB (2) GB2434468B (GUID-C5D7CC26-194C-43D0-91A1-9AE8C70A9BFF.html)
TW (1) TWI294097B (GUID-C5D7CC26-194C-43D0-91A1-9AE8C70A9BFF.html)
WO (1) WO2006047762A1 (GUID-C5D7CC26-194C-43D0-91A1-9AE8C70A9BFF.html)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8095517B2 (en) * 2007-02-08 2012-01-10 Blue Coat Systems, Inc. Method and system for policy-based protection of application data
JP5444628B2 (ja) * 2008-03-31 2014-03-19 富士通株式会社 情報端末装置および情報処理方法
US8910165B2 (en) * 2009-10-14 2014-12-09 Lenovo Enterprise Solutions (Singapore) Pte. Ltd. Providing thread specific protection levels

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4442484A (en) * 1980-10-14 1984-04-10 Intel Corporation Microprocessor memory management and protection mechanism
US5038281A (en) 1986-09-19 1991-08-06 International Business Machines Corporation Acceleration of system interrupts between operating systems in guest-host relationship
US5596718A (en) * 1992-07-10 1997-01-21 Secure Computing Corporation Secure computer network using trusted path subsystem which encrypts/decrypts and communicates with user through local workstation user I/O devices without utilizing workstation processor
US5901312A (en) * 1994-12-13 1999-05-04 Microsoft Corporation Providing application programs with unmediated access to a contested hardware resource
US5900025A (en) 1995-09-12 1999-05-04 Zsp Corporation Processor having a hierarchical control register file and methods for operating the same
US5845129A (en) 1996-03-22 1998-12-01 Philips Electronics North America Corporation Protection domains in a single address space
US6349355B1 (en) 1997-02-06 2002-02-19 Microsoft Corporation Sharing executable modules between user and kernel threads
US6389449B1 (en) 1998-12-16 2002-05-14 Clearwater Networks, Inc. Interstream control and communications for multi-streaming digital processors
US6192395B1 (en) * 1998-12-23 2001-02-20 Multitude, Inc. System and method for visually identifying speaking participants in a multi-participant networked event
US6438671B1 (en) * 1999-07-01 2002-08-20 International Business Machines Corporation Generating partition corresponding real address in partitioned mode supporting system
FR2811096A1 (fr) * 2000-06-28 2002-01-04 St Microelectronics Sa Microprocesseur securise comprenant un systeme d'attribution de droits a des librairies
US6684262B1 (en) 2000-10-25 2004-01-27 International Business Machines Corporation Method and system for controlling peripheral device interface behavior using thread registration
US7448025B2 (en) 2000-12-29 2008-11-04 Intel Corporation Qualification of event detection by thread ID and thread privilege level
JP4054572B2 (ja) * 2001-12-17 2008-02-27 キヤノン株式会社 アプリケーション実行システム
US6925643B2 (en) 2002-10-11 2005-08-02 Sandbridge Technologies, Inc. Method and apparatus for thread-based memory access in a multithreaded processor
US7152167B2 (en) 2002-12-11 2006-12-19 Intel Corporation Apparatus and method for data bus power control

Also Published As

Publication number Publication date
GB0706013D0 (en) 2007-05-09
TWI294097B (en) 2008-03-01
CN101031922A (zh) 2007-09-05
WO2006047762A1 (en) 2006-05-04
GB2434468B (en) 2009-05-27
GB0705991D0 (en) 2007-05-09
US7797728B2 (en) 2010-09-14
GB2434468A (en) 2007-07-25
GB2434468A8 (GUID-C5D7CC26-194C-43D0-91A1-9AE8C70A9BFF.html) 2007-07-26
JP2008518363A (ja) 2008-05-29
US20060101463A1 (en) 2006-05-11
DE112005002314T5 (de) 2007-09-06
TW200630877A (en) 2006-09-01

Similar Documents

Publication Publication Date Title
US9021605B2 (en) Method and system for protecting sensitive data in a program
US8533777B2 (en) Mechanism to determine trust of out-of-band management agents
US7631196B2 (en) Method and apparatus for loading a trustable operating system
JP5007867B2 (ja) 安全な環境におけるプロセッサ実行を制御するための装置
US6922740B2 (en) Apparatus and method of memory access control for bus masters
US6934817B2 (en) Controlling access to multiple memory zones in an isolated execution environment
US20100293392A1 (en) Semiconductor device having secure memory controller
US20080052534A1 (en) Processor and Secure Processing System
US10180913B1 (en) Secure virtual access for real-time embedded devices
US9734326B2 (en) Dynamic interrupt stack protection
US20130305388A1 (en) Link status based content protection buffers
US20070101424A1 (en) Apparatus and Method for Improving Security of a Bus Based System Through Communication Architecture Enhancements
US20040187019A1 (en) Information processing apparatus
US10437523B2 (en) Secure receive packet processing for network function virtualization applications
US7454787B2 (en) Secure direct memory access through system controllers and similar hardware devices
CN114065257A (zh) 地址空间的保护方法、保护装置、设备和存储介质
US20070168574A1 (en) System and method for securing access to general purpose input/output ports in a computer system
US20050216611A1 (en) Method and apparatus to achieve data pointer obfuscation for content protection of streaming media DMA engines
WO2010032330A1 (ja) 情報処理装置及びそのメモリ保護方法
CN101290646A (zh) 在虚拟环境中保护系统的设备和方法
JP4603585B2 (ja) 制限付き実行環境及び非制限実行環境を生成するメカニズム
WO2019133211A1 (en) Method, apparatus, and system for dynamic management of integrity-protected memory
CN119293863A (zh) 内存保护方法、系统、计算机设备、存储介质及产品
CN114003869B (zh) 提高保护多内容处理效率的系统及方法
JPH05225068A (ja) 機密保護ソフトウェアのアクセス制御方式

Legal Events

Date Code Title Description
A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20100420

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20100720

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20100914

A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20101001

FPAY Renewal fee payment (event date is renewal date of database)

Free format text: PAYMENT UNTIL: 20131008

Year of fee payment: 3

R150 Certificate of patent or registration of utility model

Free format text: JAPANESE INTERMEDIATE CODE: R150

R250 Receipt of annual fees

Free format text: JAPANESE INTERMEDIATE CODE: R250

R250 Receipt of annual fees

Free format text: JAPANESE INTERMEDIATE CODE: R250

R250 Receipt of annual fees

Free format text: JAPANESE INTERMEDIATE CODE: R250

R250 Receipt of annual fees

Free format text: JAPANESE INTERMEDIATE CODE: R250

R250 Receipt of annual fees

Free format text: JAPANESE INTERMEDIATE CODE: R250

LAPS Cancellation because of no payment of annual fees