WO2007008595A3 - Method and system for a multi-sharing security firewall - Google Patents
Method and system for a multi-sharing security firewall Download PDFInfo
- Publication number
- WO2007008595A3 WO2007008595A3 PCT/US2006/026344 US2006026344W WO2007008595A3 WO 2007008595 A3 WO2007008595 A3 WO 2007008595A3 US 2006026344 W US2006026344 W US 2006026344W WO 2007008595 A3 WO2007008595 A3 WO 2007008595A3
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- region
- access
- memory
- logic
- initiator
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
Abstract
Systems and methods for a multi-sharing security firewall (200) are provided. Embodiments of a memory security firewall apparatus are provided that include region configuration logic (264), region selection logic (266), and access validation logic (268). The region configuration logic is operable to define memory protection regions of a target memory (118, 120, 146, 148), each memory protection region having two initiator groups and two sets of access attribute combinations, one for each initiator group. The region selection logic is operable to select a memory protection region that includes the address of a target memory access request from a system initiator (e.g., 122, 138). The access validation logic is operable to allow the requested memory access if the system initiator is in one of the initiator groups of the memory protection region selected by the region selection logic, and the combination of access attributes is in a set of access attribute combinations of the memory protection region.
Applications Claiming Priority (4)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| EP5291479.3 | 2005-07-07 | ||
| EP05291479A EP1742152B1 (en) | 2005-07-07 | 2005-07-07 | Method and system for a multi-sharing memory access control |
| US11/272,532 | 2005-11-11 | ||
| US11/272,532 US7853997B2 (en) | 2005-07-07 | 2005-11-11 | Method and system for a multi-sharing security firewall |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| WO2007008595A2 WO2007008595A2 (en) | 2007-01-18 |
| WO2007008595A3 true WO2007008595A3 (en) | 2009-04-16 |
Family
ID=37637747
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PCT/US2006/026344 WO2007008595A2 (en) | 2005-07-07 | 2006-07-07 | Method and system for a multi-sharing security firewall |
Country Status (1)
| Country | Link |
|---|---|
| WO (1) | WO2007008595A2 (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2254070A1 (en) | 2009-05-18 | 2010-11-24 | Nxp B.V. | Secure execution of native code |
| WO2017019061A1 (en) * | 2015-07-29 | 2017-02-02 | Hewlett Packard Enterprise Development Lp | Firewall to determine access to a portion of memory |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6212599B1 (en) * | 1997-11-26 | 2001-04-03 | Intel Corporation | Method and apparatus for a memory control system including a secondary controller for DRAM refresh during sleep mode |
| US6595415B2 (en) * | 1998-09-30 | 2003-07-22 | Fujitsu Limited | IC card processor |
| US6901401B2 (en) * | 2002-03-21 | 2005-05-31 | International Business Machines Corporation | System and method for database integrity via local database lockout |
-
2006
- 2006-07-07 WO PCT/US2006/026344 patent/WO2007008595A2/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6212599B1 (en) * | 1997-11-26 | 2001-04-03 | Intel Corporation | Method and apparatus for a memory control system including a secondary controller for DRAM refresh during sleep mode |
| US6595415B2 (en) * | 1998-09-30 | 2003-07-22 | Fujitsu Limited | IC card processor |
| US6901401B2 (en) * | 2002-03-21 | 2005-05-31 | International Business Machines Corporation | System and method for database integrity via local database lockout |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2007008595A2 (en) | 2007-01-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP2166487A3 (en) | Security system utilizing gesture recognition | |
| WO2008058152A3 (en) | Multiple stakeholder secure memory partitioning and access control | |
| WO2007120387A3 (en) | Methods and systems for sharing or presenting member information | |
| WO2002104023A3 (en) | Conditional access for functional units | |
| WO2007120360A3 (en) | Information management system | |
| WO2008049094A3 (en) | Stateful firewall clustering for processing-intensive network applications | |
| WO2008099402A3 (en) | A method and system for dynamic security using authentication server | |
| WO2005109121A3 (en) | System and method for mapping results from sporting events to game inputs | |
| WO2006118968A3 (en) | System and method for fraud monitoring, detection, and tiered user authentication | |
| EP1826701A3 (en) | Secure processor | |
| GB2451207A (en) | Method and system for authenticating an accessory | |
| NO20080232L (en) | Security in synchronization applications for similar devices | |
| WO2011082322A3 (en) | A system and method for transmission of files within a secured network | |
| WO2005107241A3 (en) | System and methods for using graphics hardware for real time two and three dimensional, single definition, and high definition video effects | |
| WO2004040578A3 (en) | Wear leveling in non-volatile storage systems | |
| WO2004040455A3 (en) | Method and apparatus for splitting a logical block | |
| WO2009105702A3 (en) | License auditing for distributed applications | |
| WO2007117650A3 (en) | Automatically determining size or shape of a radiation beam | |
| WO2014018743A3 (en) | Method and system for secure authentication and information sharing and analysis | |
| WO2007109607A3 (en) | Verification and screening system | |
| WO2006118907A3 (en) | System and method for controlling operation of a component on a computer system | |
| WO2009026096A3 (en) | System and method for enforcing network device provisioning policy | |
| EP3451624B1 (en) | Device and method for controlling a communication network | |
| WO2006014820A3 (en) | Serial number allocation | |
| WO2007137090A3 (en) | Hardware support for computer speciation |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| 121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
| NENP | Non-entry into the national phase |
Ref country code: DE |
|
| 122 | Ep: pct application non-entry in european phase |
Ref document number: 06786484 Country of ref document: EP Kind code of ref document: A2 |