TWI563385B - Object oriented marshaling scheme for calls to a secure region - Google Patents

Object oriented marshaling scheme for calls to a secure region

Info

Publication number
TWI563385B
TWI563385B TW104103471A TW104103471A TWI563385B TW I563385 B TWI563385 B TW I563385B TW 104103471 A TW104103471 A TW 104103471A TW 104103471 A TW104103471 A TW 104103471A TW I563385 B TWI563385 B TW I563385B
Authority
TW
Taiwan
Prior art keywords
marshaling
calls
scheme
object oriented
secure region
Prior art date
Application number
TW104103471A
Other languages
English (en)
Other versions
TW201544955A (zh
Inventor
Bin Cedric Xing
Mark W Shanahan
Beaney, Jr
Original Assignee
Intel Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Intel Corp filed Critical Intel Corp
Publication of TW201544955A publication Critical patent/TW201544955A/zh
Application granted granted Critical
Publication of TWI563385B publication Critical patent/TWI563385B/zh

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/53Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/547Remote procedure calls [RPC]; Web services
    • G06F9/548Object oriented; Remote method invocation [RMI]

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Stored Programmes (AREA)
TW104103471A 2014-03-27 2015-02-02 Object oriented marshaling scheme for calls to a secure region TWI563385B (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US14/227,411 US9864861B2 (en) 2014-03-27 2014-03-27 Object oriented marshaling scheme for calls to a secure region

Publications (2)

Publication Number Publication Date
TW201544955A TW201544955A (zh) 2015-12-01
TWI563385B true TWI563385B (en) 2016-12-21

Family

ID=54190800

Family Applications (1)

Application Number Title Priority Date Filing Date
TW104103471A TWI563385B (en) 2014-03-27 2015-02-02 Object oriented marshaling scheme for calls to a secure region

Country Status (6)

Country Link
US (1) US9864861B2 (zh)
EP (2) EP3123340B1 (zh)
KR (1) KR101833341B1 (zh)
CN (1) CN106415506B (zh)
TW (1) TWI563385B (zh)
WO (1) WO2015148881A1 (zh)

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9864861B2 (en) * 2014-03-27 2018-01-09 Intel Corporation Object oriented marshaling scheme for calls to a secure region
US10044695B1 (en) 2014-09-02 2018-08-07 Amazon Technologies, Inc. Application instances authenticated by secure measurements
US9246690B1 (en) 2014-09-03 2016-01-26 Amazon Technologies, Inc. Secure execution environment services
US10079681B1 (en) 2014-09-03 2018-09-18 Amazon Technologies, Inc. Securing service layer on third party hardware
US9754116B1 (en) 2014-09-03 2017-09-05 Amazon Technologies, Inc. Web services in secure execution environments
US10061915B1 (en) 2014-09-03 2018-08-28 Amazon Technologies, Inc. Posture assessment in a secure execution environment
US9491111B1 (en) 2014-09-03 2016-11-08 Amazon Technologies, Inc. Securing service control on third party hardware
US9577829B1 (en) 2014-09-03 2017-02-21 Amazon Technologies, Inc. Multi-party computation services
US9584517B1 (en) * 2014-09-03 2017-02-28 Amazon Technologies, Inc. Transforms within secure execution environments
US9710622B2 (en) * 2015-02-23 2017-07-18 Intel Corporation Instructions and logic to fork processes of secure enclaves and establish child enclaves in a secure enclave page cache
US10353831B2 (en) * 2015-12-24 2019-07-16 Intel Corporation Trusted launch of secure enclaves in virtualized environments
US10055577B2 (en) * 2016-03-29 2018-08-21 Intel Corporation Technologies for mutual application isolation with processor-enforced secure enclaves
GB2555961B (en) * 2016-11-14 2019-08-28 Google Llc System of enclaves
US10311217B2 (en) * 2016-12-09 2019-06-04 Microsoft Technology Licensing, Llc Application piracy prevention with secure enclave protection of automatically modularized functions
CN108388524A (zh) * 2016-12-21 2018-08-10 伊姆西Ip控股有限责任公司 用于缓存数据的方法和设备
US10372945B2 (en) * 2017-01-24 2019-08-06 Microsoft Technology Licensing, Llc Cross-platform enclave identity
US11061703B2 (en) 2019-01-10 2021-07-13 International Business Machines Corporation Managed runtime data marshaling for native code access using a thread local native buffer
US11714895B2 (en) * 2019-07-18 2023-08-01 Anjuna Security, Inc. Secure runtime systems and methods
CN111414194B (zh) * 2020-03-19 2023-08-11 政采云有限公司 一种接口信息生成方法、系统、电子设备及存储介质

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6128774A (en) * 1997-10-28 2000-10-03 Necula; George C. Safe to execute verification of software
US20030144894A1 (en) * 2001-11-12 2003-07-31 Robertson James A. System and method for creating and managing survivable, service hosting networks
TW200306473A (en) * 2002-02-19 2003-11-16 Intel Corp Network data storage-related operations
US20060101412A1 (en) * 2004-11-10 2006-05-11 Microsoft Corporation Method to bridge between unmanaged code and managed code
US20070162466A1 (en) * 2005-05-20 2007-07-12 International Business Machines Corporation Algorithm to marshal/unmarshal XML schema annotations to SDO dataobjects
US20090293066A1 (en) * 2008-05-20 2009-11-26 Anthony Low Systems and methods for remoting calls issued to embedded or linked object interfaces
TW201224918A (en) * 2010-07-22 2012-06-16 Intel Corp Providing platform independent memory logic
US20120163589A1 (en) * 2010-12-22 2012-06-28 Johnson Simon P System and method for implementing a trusted dynamic launch and trusted platform module (tpm) using secure enclaves
CN103384196A (zh) * 2005-11-18 2013-11-06 安全第一公司 安全数据解析方法和系统

Family Cites Families (67)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6941556B1 (en) * 1995-03-24 2005-09-06 Sun Microsystems, Inc. Method and system for type identification for multiple object interfaces in a distributed object environment
US7930340B2 (en) * 1995-11-13 2011-04-19 Lakshmi Arunachalam Network transaction portal to control multi-service provider transactions
US6272538B1 (en) * 1996-07-30 2001-08-07 Micron Technology, Inc. Method and system for establishing a security perimeter in computer networks
US5857197A (en) * 1997-03-20 1999-01-05 Thought Inc. System and method for accessing data stores as objects
US6446116B1 (en) * 1997-06-30 2002-09-03 Sun Microsystems, Inc. Method and apparatus for dynamic loading of a transport mechanism in a multipoint data delivery system
US6167565A (en) * 1998-01-08 2000-12-26 Microsoft Corporation Method and system of custom marshaling of inter-language parameters
US6330677B1 (en) * 1998-10-27 2001-12-11 Sprint Communications Company, L. P. Object-based security system
US6594671B1 (en) * 1999-06-14 2003-07-15 International Business Machines Corporation Separating privileged functions from non-privileged functions in a server instance
US6519568B1 (en) * 1999-06-15 2003-02-11 Schlumberger Technology Corporation System and method for electronic data delivery
EP1117033A1 (en) * 2000-01-14 2001-07-18 Sun Microsystems, Inc. Dynamic dispatch function
US9785140B2 (en) * 2000-02-01 2017-10-10 Peer Intellectual Property Inc. Multi-protocol multi-client equipment server
US20020019843A1 (en) * 2000-04-26 2002-02-14 Killian Robert T. Multiprocessor object control
US6898710B1 (en) * 2000-06-09 2005-05-24 Northop Grumman Corporation System and method for secure legacy enclaves in a public key infrastructure
US6865607B1 (en) * 2001-06-28 2005-03-08 Microsoft Corp. Pluggable channels
US7213236B2 (en) * 2001-11-30 2007-05-01 Intrinsyc Software International, Inc. Method of bridging between .Net and Java
US8275910B1 (en) * 2003-07-02 2012-09-25 Apple Inc. Source packet bridge
US7831693B2 (en) * 2003-08-18 2010-11-09 Oracle America, Inc. Structured methodology and design patterns for web services
US7694328B2 (en) * 2003-10-21 2010-04-06 Google Inc. Systems and methods for secure client applications
JP4257235B2 (ja) * 2004-03-05 2009-04-22 株式会社東芝 情報処理装置および情報処理方法
US7444408B2 (en) * 2004-06-30 2008-10-28 Intel Corporation (A Delaware Corporation) Network data analysis and characterization model for implementation of secure enclaves within large corporate networks
GB0422750D0 (en) * 2004-10-13 2004-11-17 Ciphergrid Ltd Remote database technique
US7730522B2 (en) * 2005-05-16 2010-06-01 Microsoft Corporation Self-registering objects for an IPC mechanism
US20070234412A1 (en) * 2006-03-29 2007-10-04 Smith Ned M Using a proxy for endpoint access control
US7873071B2 (en) * 2006-05-15 2011-01-18 The Boeing Company Multiple level security adapter
US8756616B2 (en) * 2006-12-29 2014-06-17 Core Wireless Licensing S.A.R.L. System and method for reducing the static footprint of mixed-language JAVA classes
US20100031342A1 (en) * 2007-04-12 2010-02-04 Honeywell International, Inc Method and system for providing secure video data transmission and processing
US20090064287A1 (en) * 2007-08-28 2009-03-05 Rohati Systems, Inc. Application protection architecture with triangulated authorization
US20090168758A1 (en) * 2007-12-31 2009-07-02 Sony Ericsson Mobile Communications Ab Methods for facilitating communication between internet protocol multimedia subsystem (ims) devices and non-ims devices and between ims devices on different ims networks and related electronic devices and computer program products
US8250666B2 (en) * 2008-07-03 2012-08-21 Sap Ag Method and apparatus for improving security in an application level virtual machine environment
US9262628B2 (en) 2009-09-11 2016-02-16 Empire Technology Development Llc Operating system sandbox
US8255607B2 (en) * 2009-11-05 2012-08-28 Emulex Design & Manufacturing Corporation SAS expander-based SAS/SATA bridging
BRPI0924512A2 (pt) 2009-12-22 2016-03-01 Intel Corp método e aparelho de fornecimento de execução de aplicativos seguros
US9087200B2 (en) * 2009-12-22 2015-07-21 Intel Corporation Method and apparatus to provide secure application execution
US20110202740A1 (en) * 2010-02-17 2011-08-18 Arm Limited Storing secure page table data in secure and non-secure regions of memory
KR101661201B1 (ko) * 2010-03-02 2016-09-30 삼성전자주식회사 휴대용 단말기에서 줌 마이크 기능을 지원하기 위한 장치 및 방법
US8353013B2 (en) * 2010-04-28 2013-01-08 Bmc Software, Inc. Authorized application services via an XML message protocol
US20120020374A1 (en) * 2010-07-26 2012-01-26 Kenneth Jonsson Method and System for Merging Network Stacks
GB2484717B (en) * 2010-10-21 2018-06-13 Advanced Risc Mach Ltd Security provision for a subject image displayed in a non-secure domain
US8972746B2 (en) * 2010-12-17 2015-03-03 Intel Corporation Technique for supporting multiple secure enclaves
EP2482220A1 (en) * 2011-01-27 2012-08-01 SafeNet, Inc. Multi-enclave token
US8914876B2 (en) * 2011-05-05 2014-12-16 Ebay Inc. System and method for transaction security enhancement
US20120303854A1 (en) * 2011-05-24 2012-11-29 Raidundant LLC Modular interface-independent storage solution system
US8590005B2 (en) 2011-06-08 2013-11-19 Adventium Enterprises, Llc Multi-domain information sharing
US20130031454A1 (en) * 2011-07-28 2013-01-31 Peter Griffiths System for Programmatically Accessing Document Annotations
US8695021B2 (en) 2011-08-31 2014-04-08 Microsoft Corporation Projecting native application programming interfaces of an operating system into other programming languages
US9047476B2 (en) * 2011-11-07 2015-06-02 At&T Intellectual Property I, L.P. Browser-based secure desktop applications for open computing platforms
US20130152153A1 (en) * 2011-12-07 2013-06-13 Reginald Weiser Systems and methods for providing security for sip and pbx communications
US9183064B2 (en) * 2011-12-30 2015-11-10 General Electric Company Intelligent mediation of messages in a healthcare product integration platform
EP2831825A4 (en) * 2012-03-30 2015-12-16 Intel Corp RATING A CUSTOMER'S SECURITY
WO2013172958A1 (en) * 2012-05-16 2013-11-21 Spydrsafe Mobile Security, Inc. Systems and methods for providing and managing distributed enclaves
US20140006919A1 (en) * 2012-06-29 2014-01-02 3S International, Llc. Method and apparatus for annotation content conversions
US20140040973A1 (en) * 2012-08-02 2014-02-06 Samsung Electronics Co., Ltd. Method for controlling initial access rights to open mobile alliance device management servers
US9747102B2 (en) * 2012-12-28 2017-08-29 Intel Corporation Memory management in secure enclaves
US20140189246A1 (en) * 2012-12-31 2014-07-03 Bin Xing Measuring applications loaded in secure enclaves at runtime
US9176712B2 (en) * 2013-03-14 2015-11-03 Oracle International Corporation Node Grouped Data Marshalling
US9086966B2 (en) * 2013-03-15 2015-07-21 Intel Corporation Systems, apparatuses, and methods for handling timeouts
US9087202B2 (en) * 2013-05-10 2015-07-21 Intel Corporation Entry/exit architecture for protected device modules
US9276750B2 (en) * 2013-07-23 2016-03-01 Intel Corporation Secure processing environment measurement and attestation
US20150033034A1 (en) * 2013-07-23 2015-01-29 Gideon Gerzon Measuring a secure enclave
US10678908B2 (en) * 2013-09-27 2020-06-09 Mcafee, Llc Trusted execution of an executable object on a local device
US9536063B2 (en) * 2013-10-24 2017-01-03 Intel Corporation Methods and apparatus for protecting software from unauthorized copying
WO2015094176A1 (en) * 2013-12-17 2015-06-25 Intel Corporation Secure enclaves for use by kernel mode applications
US9448950B2 (en) * 2013-12-24 2016-09-20 Intel Corporation Using authenticated manifests to enable external certification of multi-processor platforms
US20150188710A1 (en) * 2013-12-28 2015-07-02 Simon Johnson Offloading functionality from a secure processing environment
US9934216B2 (en) * 2014-03-24 2018-04-03 Ca, Inc. Schema validation for metadata builder
US9436825B2 (en) * 2014-03-25 2016-09-06 Owl Computing Technologies, Inc. System and method for integrity assurance of partial data
US9864861B2 (en) * 2014-03-27 2018-01-09 Intel Corporation Object oriented marshaling scheme for calls to a secure region

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6128774A (en) * 1997-10-28 2000-10-03 Necula; George C. Safe to execute verification of software
US20030144894A1 (en) * 2001-11-12 2003-07-31 Robertson James A. System and method for creating and managing survivable, service hosting networks
TW200306473A (en) * 2002-02-19 2003-11-16 Intel Corp Network data storage-related operations
US20060101412A1 (en) * 2004-11-10 2006-05-11 Microsoft Corporation Method to bridge between unmanaged code and managed code
US20070162466A1 (en) * 2005-05-20 2007-07-12 International Business Machines Corporation Algorithm to marshal/unmarshal XML schema annotations to SDO dataobjects
CN103384196A (zh) * 2005-11-18 2013-11-06 安全第一公司 安全数据解析方法和系统
US20090293066A1 (en) * 2008-05-20 2009-11-26 Anthony Low Systems and methods for remoting calls issued to embedded or linked object interfaces
TW201224918A (en) * 2010-07-22 2012-06-16 Intel Corp Providing platform independent memory logic
US20120163589A1 (en) * 2010-12-22 2012-06-28 Johnson Simon P System and method for implementing a trusted dynamic launch and trusted platform module (tpm) using secure enclaves

Also Published As

Publication number Publication date
TW201544955A (zh) 2015-12-01
EP3754510A1 (en) 2020-12-23
KR101833341B1 (ko) 2018-02-28
EP3123340B1 (en) 2020-10-28
KR20160113254A (ko) 2016-09-28
EP3123340A4 (en) 2017-11-01
US20150278528A1 (en) 2015-10-01
EP3123340A1 (en) 2017-02-01
CN106415506B (zh) 2019-08-13
WO2015148881A1 (en) 2015-10-01
CN106415506A (zh) 2017-02-15
US9864861B2 (en) 2018-01-09

Similar Documents

Publication Publication Date Title
TWI563385B (en) Object oriented marshaling scheme for calls to a secure region
ZA201907128B (en) Securing a second object to a first object
HK1232078A1 (zh) 水果榨汁機
PL3240679T3 (pl) Maszyna przekształcająca
AU360248S (en) A flask
PL3190909T3 (pl) Odzież dla rowerzystów
GB201604376D0 (en) Improvements to a propellar
HUE052364T2 (hu) Hõformázó gép
GB2530706B (en) Implement system for machine
GB2522454B (en) Positioning system for implement of machine
PL2930087T3 (pl) Ulepszona podpora dla błotnika
GB2522473B (en) Improvements to windposts
ZA201600761B (en) A tie
GB2529026B (en) A bolster
GB2536612B (en) A motorcycle overglove
GB201404051D0 (en) Improvements to a scope
GB2520781B (en) Improvements to hydro-turbines
SG10201701026PA (en) A system for cosmetic enhancement
SG11201505964PA (en) A system for cosmetic enhancement
GB201418246D0 (en) A casting system
GB201415466D0 (en) A new approach to trackbed construction
HUP1400156A2 (en) Packing machine
GB201400381D0 (en) Machine attachment
GB201409954D0 (en) Equestrian supplement
GB201408284D0 (en) PAVTrack machine

Legal Events

Date Code Title Description
MM4A Annulment or lapse of patent due to non-payment of fees