WO2010010258A3 - Systeme et procede pour la securisation d'une interface utilisateur - Google Patents

Systeme et procede pour la securisation d'une interface utilisateur Download PDF

Info

Publication number
WO2010010258A3
WO2010010258A3 PCT/FR2009/000918 FR2009000918W WO2010010258A3 WO 2010010258 A3 WO2010010258 A3 WO 2010010258A3 FR 2009000918 W FR2009000918 W FR 2009000918W WO 2010010258 A3 WO2010010258 A3 WO 2010010258A3
Authority
WO
WIPO (PCT)
Prior art keywords
user interface
securing
drivers
hardware devices
peripheral hardware
Prior art date
Application number
PCT/FR2009/000918
Other languages
English (en)
Other versions
WO2010010258A2 (fr
Inventor
Nicolas Ponsini
Original Assignee
Trusted Logic
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Trusted Logic filed Critical Trusted Logic
Priority to US13/055,454 priority Critical patent/US8874931B2/en
Priority to EP09784296A priority patent/EP2316088A2/fr
Publication of WO2010010258A2 publication Critical patent/WO2010010258A2/fr
Publication of WO2010010258A3 publication Critical patent/WO2010010258A3/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/53Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/74Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2105Dual mode as a secondary aspect

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Mathematical Physics (AREA)
  • User Interface Of Digital Computer (AREA)
  • Stored Programmes (AREA)

Abstract

L'invention concerne un système pour la sécurisation d'une interface utilisateur comportant une interface utilisateur comprenant un ou plusieurs périphériques matériels de l'interface utilisateur pour interagir avec ladite interface, lesdits périphériques matériels étant pilotés par des logiciels pilotes, et une ou plusieurs applications utilisant l'interface utilisateur, ainsi qu'un procédé de sécurisation d'une telle interface. Le système selon l'invention se caractérise en ce qu'il comporte en outre un hyperviseur et une ou plusieurs machines virtuelle, les pilotes des périphériques matériels de l'interface utilisateur étant scindés en deux parties, une partie principale desdits pilotes étant placée sous le contrôle de l' hyperviseur,une partie frontale desdits pilotes étant placée sous le contrôle des machines virtuelles, la partie frontale du composant logiciel de sécurisation assurant la gestion de la partie frontale des pilotes, la partie principale du composant logiciel de sécurisation assurant la gestion de la partie principale des pilotes. L'invention s'applique, en particulier, aux systèmes embarqués.
PCT/FR2009/000918 2008-07-23 2009-07-23 Systeme et procede pour la securisation d'une interface utilisateur WO2010010258A2 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US13/055,454 US8874931B2 (en) 2008-07-23 2009-07-23 System and method for securing a user interface
EP09784296A EP2316088A2 (fr) 2008-07-23 2009-07-23 Systeme et procede pour la securisation d'une interface utilisateur

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
FR0804192A FR2934395B1 (fr) 2008-07-23 2008-07-23 Systeme et procede pour la securisation d'une interface utilisateur
FR08/04192 2008-07-23

Publications (2)

Publication Number Publication Date
WO2010010258A2 WO2010010258A2 (fr) 2010-01-28
WO2010010258A3 true WO2010010258A3 (fr) 2010-03-18

Family

ID=40230045

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/FR2009/000918 WO2010010258A2 (fr) 2008-07-23 2009-07-23 Systeme et procede pour la securisation d'une interface utilisateur

Country Status (4)

Country Link
US (1) US8874931B2 (fr)
EP (1) EP2316088A2 (fr)
FR (1) FR2934395B1 (fr)
WO (1) WO2010010258A2 (fr)

Families Citing this family (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
IL210169A0 (en) 2010-12-22 2011-03-31 Yehuda Binder System and method for routing-based internet security
EP2689368A4 (fr) 2011-03-22 2014-08-20 Ericsson Telefon Ab L M Procédé pour exécuter une commutation entre un fonctionnement dans un système virtualisé et un fonctionnement dans un système non virtualisé
US8813218B2 (en) * 2012-02-14 2014-08-19 Janus Technologies, Inc. Security-enhanced computer systems and methods
US9129124B2 (en) * 2012-04-12 2015-09-08 Hewlett-Packard Development Company, L.P. Dynamic provisioning of virtual systems
US9769123B2 (en) * 2012-09-06 2017-09-19 Intel Corporation Mitigating unauthorized access to data traffic
US9232176B2 (en) 2013-03-04 2016-01-05 Janus Technologies, Inc. Method and apparatus for securing computer video and audio subsystems
US9424443B2 (en) 2013-08-20 2016-08-23 Janus Technologies, Inc. Method and apparatus for securing computer mass storage data
US9215250B2 (en) 2013-08-20 2015-12-15 Janus Technologies, Inc. System and method for remotely managing security and configuration of compute devices
US9684805B2 (en) 2013-08-20 2017-06-20 Janus Technologies, Inc. Method and apparatus for securing computer interfaces
US9384150B2 (en) 2013-08-20 2016-07-05 Janus Technologies, Inc. Method and apparatus for performing transparent mass storage backups and snapshots
US9231921B2 (en) 2013-08-20 2016-01-05 Janus Technologies, Inc. System and architecture for secure computer devices
US11210432B2 (en) 2013-08-20 2021-12-28 Janus Technologies, Inc. Method and apparatus for selectively snooping and capturing data for secure computer interfaces
US9076003B2 (en) 2013-08-20 2015-07-07 Janus Technologies, Inc. Method and apparatus for transparently encrypting and decrypting computer interface data
US9342331B2 (en) 2013-10-21 2016-05-17 International Business Machines Corporation Secure virtualized mobile cellular device

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040268135A1 (en) * 2003-06-25 2004-12-30 Zimmer Vincent J. Methods and apparatus for secure collection and display of user interface information in a pre-boot environment
US20060089992A1 (en) * 2004-10-26 2006-04-27 Blaho Bruce E Remote computing systems and methods for supporting multiple sessions
US20060218409A1 (en) * 2005-03-25 2006-09-28 Microsoft Corporation Accessing a USB host controller security extension using a HCD proxy
US20060225127A1 (en) * 2005-04-01 2006-10-05 Microsoft Corporation Systems and methods for authenticating a user interface to a computer user
WO2008012567A1 (fr) * 2006-07-28 2008-01-31 Hewlett-Packard Development Company, L.P. Utilisation sécurisée de secrets utilisateur sur une plate-forme informatique

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040268135A1 (en) * 2003-06-25 2004-12-30 Zimmer Vincent J. Methods and apparatus for secure collection and display of user interface information in a pre-boot environment
US20060089992A1 (en) * 2004-10-26 2006-04-27 Blaho Bruce E Remote computing systems and methods for supporting multiple sessions
US20060218409A1 (en) * 2005-03-25 2006-09-28 Microsoft Corporation Accessing a USB host controller security extension using a HCD proxy
US20060225127A1 (en) * 2005-04-01 2006-10-05 Microsoft Corporation Systems and methods for authenticating a user interface to a computer user
WO2008012567A1 (fr) * 2006-07-28 2008-01-31 Hewlett-Packard Development Company, L.P. Utilisation sécurisée de secrets utilisateur sur une plate-forme informatique

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
YUN CHAN CHO ET AL: "Sharing data between processes running on different domains in para-virtualized xen", CONTROL, AUTOMATION AND SYSTEMS, 2007. ICCAS '07. INTERNATIONAL CONFERENCE ON, IEEE, PISCATAWAY, NJ, USA, 1 October 2007 (2007-10-01), pages 1255 - 1260, XP031192980, ISBN: 978-89-950038-6-2 *

Also Published As

Publication number Publication date
US8874931B2 (en) 2014-10-28
WO2010010258A2 (fr) 2010-01-28
EP2316088A2 (fr) 2011-05-04
FR2934395B1 (fr) 2013-01-04
US20110131423A1 (en) 2011-06-02
FR2934395A1 (fr) 2010-01-29

Similar Documents

Publication Publication Date Title
WO2010010258A3 (fr) Systeme et procede pour la securisation d'une interface utilisateur
WO2013182704A3 (fr) Système et procédé de commande de groupe motopropulseur
WO2013044255A3 (fr) Gestion et commande centrales d'un contenu auquel a contribué un utilisateur dans un environnement de collaboration internet et console de gestion associée
WO2013103723A3 (fr) Système d'affichage sans fil pour tableau de bord de véhicule
WO2013030674A3 (fr) Système et procédés de génération et de gestion d'un dispositif virtuel
WO2014091238A3 (fr) Commande de dispositif de prolongation d'autonomie
WO2008051842A3 (fr) Procédés et systèmes pour accéder à des fichiers d'utilisateur à distance associés à des ressources locales
WO2012020293A3 (fr) Dispositif de commande de véhicule, système de commande de véhicule et système de régulation de la circulation
WO2010147847A3 (fr) Annotation de processus d'application virtuelle
WO2011069081A3 (fr) Filtrage de flux d'entrée dans un système tactile multipoint
WO2013006265A3 (fr) Intermédiation entre système de fichiers d'hyperviseur et modèles de dispositifs de stockage
WO2012122376A3 (fr) Traitement spécifique au matériel de composants d'interface d'utilisateur
WO2014121029A3 (fr) Démonstration d'un système d'isolation des vibrations actives
WO2009134927A3 (fr) Système et procédé d'application logicielle commerciale
WO2013003227A8 (fr) Système et procédés pour un fonctionnement sans pilote d'un dispositif usb
WO2012128977A3 (fr) Dispositifs d'interface humaine sur bus périphériques simples
GB2496765A (en) Systems and methods for scheduling driver interface tasks based on driver workload
WO2011159442A3 (fr) Sessions pour héberger des processus à exigences spéciales
WO2013034347A3 (fr) Procédé d'assistance d'un conducteur lors de la conduite d'un véhicule
WO2013181588A3 (fr) Définition et mappage d'une sémantique d'interface d'application
MY171852A (en) Virtual input/output device for printers
WO2011139790A3 (fr) Virtualisation de système d'exploitation et d'application pour exécution d'application
WO2012140667A3 (fr) Partage d'application dans des systèmes informatiques multi-hôtes
WO2009157730A3 (fr) Système permettant de commander des dispositifs et informations sur un réseau par des gestes de la main
GB2479068A (en) File type associated in a remote computing session

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09784296

Country of ref document: EP

Kind code of ref document: A2

WWE Wipo information: entry into national phase

Ref document number: 13055454

Country of ref document: US

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 2009784296

Country of ref document: EP