JP7159190B2 - システム特徴をセキュアに分離するためのシステムおよび方法 - Google Patents

システム特徴をセキュアに分離するためのシステムおよび方法 Download PDF

Info

Publication number
JP7159190B2
JP7159190B2 JP2019552241A JP2019552241A JP7159190B2 JP 7159190 B2 JP7159190 B2 JP 7159190B2 JP 2019552241 A JP2019552241 A JP 2019552241A JP 2019552241 A JP2019552241 A JP 2019552241A JP 7159190 B2 JP7159190 B2 JP 7159190B2
Authority
JP
Japan
Prior art keywords
lockdown
signal
hardware logic
state
volatile memory
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
JP2019552241A
Other languages
English (en)
Japanese (ja)
Other versions
JP2020514927A (ja
JP2020514927A5 (enExample
Inventor
バレンティノ,ラルフ・ピィ
ヘック,ジェームズ・エイ
ハートウェル,デイビッド・ダブリュ
Original Assignee
オラクル・インターナショナル・コーポレイション
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by オラクル・インターナショナル・コーポレイション filed Critical オラクル・インターナショナル・コーポレイション
Publication of JP2020514927A publication Critical patent/JP2020514927A/ja
Publication of JP2020514927A5 publication Critical patent/JP2020514927A5/ja
Priority to JP2022117179A priority Critical patent/JP7441896B2/ja
Application granted granted Critical
Publication of JP7159190B2 publication Critical patent/JP7159190B2/ja
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0629Configuration or reconfiguration of storage systems
    • G06F3/0634Configuration or reconfiguration of storage systems by changing the state or mode of one or more devices
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1416Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights
    • G06F12/1425Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights the protection being physical, e.g. cell, word, block
    • G06F12/1433Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights the protection being physical, e.g. cell, word, block for a module or a part of a module
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • G06F21/85Protecting input, output or interconnection devices interconnection devices, e.g. bus-connected or in-line devices
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/062Securing storage systems
    • G06F3/0622Securing storage systems in relation to access
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0655Vertical data movement, i.e. input-output transfer; data movement between one or more hosts and one or more storage devices
    • G06F3/0656Data buffering arrangements
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0655Vertical data movement, i.e. input-output transfer; data movement between one or more hosts and one or more storage devices
    • G06F3/0659Command handling arrangements, e.g. command buffers, queues, command scheduling
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/0671In-line storage system
    • G06F3/0673Single storage device
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0668Interfaces specially adapted for storage systems adopting a particular infrastructure
    • G06F3/0671In-line storage system
    • G06F3/0673Single storage device
    • G06F3/0679Non-volatile semiconductor memory device, e.g. flash memory, one time programmable memory [OTP]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2212/00Indexing scheme relating to accessing, addressing or allocation within memory systems or architectures
    • G06F2212/10Providing a specific technical effect
    • G06F2212/1052Security improvement

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Human Computer Interaction (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Mathematical Physics (AREA)
  • Storage Device Security (AREA)
  • Microcomputers (AREA)
  • Logic Circuits (AREA)
JP2019552241A 2017-03-22 2017-12-06 システム特徴をセキュアに分離するためのシステムおよび方法 Active JP7159190B2 (ja)

Priority Applications (1)

Application Number Priority Date Filing Date Title
JP2022117179A JP7441896B2 (ja) 2017-03-22 2022-07-22 システム特徴をセキュアに分離するためのシステムおよび方法

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US15/466,484 US10585608B2 (en) 2017-03-22 2017-03-22 System and method for securely isolating a system feature
US15/466,484 2017-03-22
PCT/US2017/064824 WO2018174971A1 (en) 2017-03-22 2017-12-06 System and method for securely isolating a system feature

Related Child Applications (1)

Application Number Title Priority Date Filing Date
JP2022117179A Division JP7441896B2 (ja) 2017-03-22 2022-07-22 システム特徴をセキュアに分離するためのシステムおよび方法

Publications (3)

Publication Number Publication Date
JP2020514927A JP2020514927A (ja) 2020-05-21
JP2020514927A5 JP2020514927A5 (enExample) 2021-01-21
JP7159190B2 true JP7159190B2 (ja) 2022-10-24

Family

ID=60782386

Family Applications (2)

Application Number Title Priority Date Filing Date
JP2019552241A Active JP7159190B2 (ja) 2017-03-22 2017-12-06 システム特徴をセキュアに分離するためのシステムおよび方法
JP2022117179A Active JP7441896B2 (ja) 2017-03-22 2022-07-22 システム特徴をセキュアに分離するためのシステムおよび方法

Family Applications After (1)

Application Number Title Priority Date Filing Date
JP2022117179A Active JP7441896B2 (ja) 2017-03-22 2022-07-22 システム特徴をセキュアに分離するためのシステムおよび方法

Country Status (5)

Country Link
US (1) US10585608B2 (enExample)
EP (1) EP3602390B1 (enExample)
JP (2) JP7159190B2 (enExample)
CN (1) CN110462624B (enExample)
WO (1) WO2018174971A1 (enExample)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11099922B2 (en) * 2019-08-12 2021-08-24 Dell Products L.P. System and method for isolating a failed card
US11288372B2 (en) * 2019-10-07 2022-03-29 Microsoft Technology Licensing, Llc Secure installation of baseboard management controller firmware via a physical interface

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000267847A (ja) 1999-03-18 2000-09-29 Miyazaki Oki Electric Co Ltd セキュリティシステム
JP2008305401A (ja) 2007-06-05 2008-12-18 Xerox Corp 製品の機能をプログラムする方法、及び製品の機能をプログラムするための装置

Family Cites Families (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5524008A (en) * 1995-03-21 1996-06-04 National Semiconductor Corporation Generating real-time events in a TDMA digital wireless communications system
US7149854B2 (en) * 2001-05-10 2006-12-12 Advanced Micro Devices, Inc. External locking mechanism for personal computer memory locations
JP4256859B2 (ja) * 2005-04-21 2009-04-22 シャープ株式会社 半導体記憶装置
US20080005462A1 (en) * 2006-06-30 2008-01-03 Mosaid Technologies Incorporated Method of configuring non-volatile memory for a hybrid disk drive
US7594144B2 (en) * 2006-08-14 2009-09-22 International Business Machines Corporation Handling fatal computer hardware errors
KR100833189B1 (ko) * 2006-11-03 2008-05-28 삼성전자주식회사 불휘발성 메모리 장치 및 불휘발성 메모리 장치의환경설정정보 설정 방법
US7574576B2 (en) * 2006-12-22 2009-08-11 Spansion Llc Semiconductor device and method of controlling the same
US8392683B1 (en) * 2009-11-30 2013-03-05 Micron Technology, Inc. Dynamic range unlock or lock memory device and method to operate the same
US10771448B2 (en) * 2012-08-10 2020-09-08 Cryptography Research, Inc. Secure feature and key management in integrated circuits
US9521032B1 (en) * 2013-03-14 2016-12-13 Amazon Technologies, Inc. Server for authentication, authorization, and accounting
US20140359196A1 (en) * 2013-05-31 2014-12-04 Daniel J. Ragland On-the-fly performance adjustment for solid state storage devices
US9940048B2 (en) * 2014-02-26 2018-04-10 Macronix International Co., Ltd. Nonvolatile memory data protection using nonvolatile protection codes and volatile protection codes
US20150381368A1 (en) * 2014-06-27 2015-12-31 William A. Stevens, Jr. Technologies for secure offline activation of hardware features
US9747739B2 (en) * 2014-08-18 2017-08-29 Noke, Inc. Wireless locking device
KR102604892B1 (ko) * 2014-09-17 2023-11-21 크라이프토그라피 리서치, 인코포레이티드 집적 회로를 위한 상이한 엔티티들의 특권들의 관리
JP6492835B2 (ja) * 2015-03-23 2019-04-03 富士通クライアントコンピューティング株式会社 ポータブル機器、及び情報処理装置
CN106227636A (zh) * 2016-07-20 2016-12-14 国网安徽省电力公司信息通信分公司 一种基于ipmi的数据中心带外管理系统

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000267847A (ja) 1999-03-18 2000-09-29 Miyazaki Oki Electric Co Ltd セキュリティシステム
JP2008305401A (ja) 2007-06-05 2008-12-18 Xerox Corp 製品の機能をプログラムする方法、及び製品の機能をプログラムするための装置

Also Published As

Publication number Publication date
JP2022141880A (ja) 2022-09-29
US10585608B2 (en) 2020-03-10
JP2020514927A (ja) 2020-05-21
US20180275904A1 (en) 2018-09-27
EP3602390A1 (en) 2020-02-05
WO2018174971A1 (en) 2018-09-27
CN110462624B (zh) 2023-08-29
CN110462624A (zh) 2019-11-15
EP3602390B1 (en) 2021-11-17
JP7441896B2 (ja) 2024-03-01

Similar Documents

Publication Publication Date Title
JP7200122B2 (ja) 信頼されたシステムファームウェア状態のリストアのためのシステムおよび方法
US8892837B2 (en) Integrated circuit with tamper-detection and self-erase mechanisms
US11061832B2 (en) Hacking-resistant computer design
CN107408172B (zh) 从用户信任的设备安全地引导计算机
JP7441896B2 (ja) システム特徴をセキュアに分離するためのシステムおよび方法
US10564969B2 (en) Enhanced protection of processors from a buffer overflow attack
US9797947B2 (en) Arrangement for selective enabling of a debugging interface
US20230342472A1 (en) Computer System, Trusted Function Component, and Running Method
US10678529B1 (en) Secure device firmware installation
US11003801B2 (en) Functional device and control apparatus
US20170147464A1 (en) Input/output parameter selection
CN110770728B (zh) 无人机控制方法、无人机及控制无人机的终端
US20230315463A1 (en) Methods and devices for defeating buffer overflow problems in multi-core processors
US10678708B2 (en) Encrypted raid drive management
US20210373891A1 (en) Enhanced protection of processors from a buffer overflow attack
JP2007524161A (ja) ウイルス、スパイウェア及びハッカー保護特徴を有する仮想処理空間における分離マルチプレクス型多次元処理
JP7546042B2 (ja) 可変コンピュータファイルシステムが適用されたデータ保存装置
JP6666364B2 (ja) マルチユーザ制御を使用するシステムセキュリティ
WO2025039512A1 (zh) 数据保护方法、装置及系统
CN112470158A (zh) 用于可编程逻辑器件的故障表征系统和方法
US11558190B2 (en) Using keys for selectively preventing execution of commands on a device
CN100492384C (zh) 用于从相关被许可保护配置全解耦许可的方法和系统
CN101894233B (zh) 一种可信赖的可重构器件及其使用方法
EP4383060B1 (en) Programmable physical security identifier
CN110337651A (zh) 防黑客计算机设计

Legal Events

Date Code Title Description
A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20201204

A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20201204

A977 Report on retrieval

Free format text: JAPANESE INTERMEDIATE CODE: A971007

Effective date: 20210930

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20211012

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20220107

A02 Decision of refusal

Free format text: JAPANESE INTERMEDIATE CODE: A02

Effective date: 20220517

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20220722

C60 Trial request (containing other claim documents, opposition documents)

Free format text: JAPANESE INTERMEDIATE CODE: C60

Effective date: 20220722

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A821

Effective date: 20220722

A911 Transfer to examiner for re-examination before appeal (zenchi)

Free format text: JAPANESE INTERMEDIATE CODE: A911

Effective date: 20220816

C21 Notice of transfer of a case for reconsideration by examiners before appeal proceedings

Free format text: JAPANESE INTERMEDIATE CODE: C21

Effective date: 20220823

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20220913

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20221012

R150 Certificate of patent or registration of utility model

Ref document number: 7159190

Country of ref document: JP

Free format text: JAPANESE INTERMEDIATE CODE: R150

R250 Receipt of annual fees

Free format text: JAPANESE INTERMEDIATE CODE: R250