WO2011020954A3 - Traitement automatise de donnees multi-usages, mettant en oeuvre des fonctions ayant besoin de differents niveaux de surete ou limites de responsabilite - Google Patents

Traitement automatise de donnees multi-usages, mettant en oeuvre des fonctions ayant besoin de differents niveaux de surete ou limites de responsabilite Download PDF

Info

Publication number
WO2011020954A3
WO2011020954A3 PCT/FR2010/000552 FR2010000552W WO2011020954A3 WO 2011020954 A3 WO2011020954 A3 WO 2011020954A3 FR 2010000552 W FR2010000552 W FR 2010000552W WO 2011020954 A3 WO2011020954 A3 WO 2011020954A3
Authority
WO
WIPO (PCT)
Prior art keywords
responsibility
security
limits
usage data
various levels
Prior art date
Application number
PCT/FR2010/000552
Other languages
English (en)
Other versions
WO2011020954A2 (fr
Inventor
Severine Vermande
Philippe Biondi
Original Assignee
Airbus
European Aeronautic Defence And Space Company Eads France
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Airbus, European Aeronautic Defence And Space Company Eads France filed Critical Airbus
Priority to RU2012107091/08A priority Critical patent/RU2012107091A/ru
Priority to CN201080041951.3A priority patent/CN102656559B/zh
Priority to EP10752854A priority patent/EP2460071A2/fr
Priority to CA2769239A priority patent/CA2769239C/fr
Priority to US13/387,561 priority patent/US9804875B2/en
Priority to JP2012522202A priority patent/JP5646622B2/ja
Publication of WO2011020954A2 publication Critical patent/WO2011020954A2/fr
Publication of WO2011020954A3 publication Critical patent/WO2011020954A3/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/74Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • G06F2009/45587Isolation or security of virtual machine instances
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/53Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2113Multi-level security, e.g. mandatory access control

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • General Physics & Mathematics (AREA)
  • Mathematical Physics (AREA)
  • Storage Device Security (AREA)
  • Stored Programmes (AREA)

Abstract

L'invention a notamment pour objet un composant logiciel pour le traitement automatisé de données multi-usages, mettant en œuvre des fonctions ayant besoin de différents niveaux de sûreté ou limites de responsabilité. Le composant logiciel selon l'invention comprend une pluralité de machines virtuelles (215), chaque machine virtuelle étant adaptée à exécuter au moins une fonction ayant besoin d'un niveau de sûreté ou d'une limite de responsabilité prédéterminé et un hyperviseur (210) adapté à contrôler l'exécution de ladite pluralité de machines virtuelles.
PCT/FR2010/000552 2009-07-28 2010-07-28 COMPOSANT LOGICIEL ET DISPOSITIF POUR LE TRAITEMENT AUTOMATISÉ DE DONNÉES MULTI-USAGES, METTANT EN œUVRE DES FONCTIONS AVANT BESOIN DE DIFFÉRENTS NIVEAUX DE SÛRETÉ OU LIMITES DE RESPONSABILITÉ WO2011020954A2 (fr)

Priority Applications (6)

Application Number Priority Date Filing Date Title
RU2012107091/08A RU2012107091A (ru) 2009-07-28 2010-07-28 Программный компонент и устройство для автоматизированной обработки многоцелевых данных с применением функций, требующих разных уровней безопасности или границ ответственности
CN201080041951.3A CN102656559B (zh) 2009-07-28 2010-07-28 实施需要不同安全级别或责任限制的功能的多用途数据的自动处理
EP10752854A EP2460071A2 (fr) 2009-07-28 2010-07-28 Traitement automatisé de données multi-usages, mettant en oeuvre des fonctions ayant besoin de différents niveaux de sûreté ou limites de responsabilité
CA2769239A CA2769239C (fr) 2009-07-28 2010-07-28 Systeme pour effectuer un traitement automatique de donnees multi-usages
US13/387,561 US9804875B2 (en) 2009-07-28 2010-07-28 Software component and device for the automated processing of multi-purpose data, employing functions requiring different security levels or responsibility limits
JP2012522202A JP5646622B2 (ja) 2009-07-28 2010-07-28 異なるセキュリティレベル又は異なる責任限界を必要とする機能を実施する多目的データの自動処理

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
FR0955281A FR2948789B1 (fr) 2009-07-28 2009-07-28 Composant logiciel et dispositif pour le traitement automatise de donnees multi-usages, mettant en oeuvre des fonctions ayant besoin de differents niveaux de surete ou limites de responsabilite
FR0955281 2009-07-28

Publications (2)

Publication Number Publication Date
WO2011020954A2 WO2011020954A2 (fr) 2011-02-24
WO2011020954A3 true WO2011020954A3 (fr) 2011-04-14

Family

ID=41432807

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/FR2010/000552 WO2011020954A2 (fr) 2009-07-28 2010-07-28 COMPOSANT LOGICIEL ET DISPOSITIF POUR LE TRAITEMENT AUTOMATISÉ DE DONNÉES MULTI-USAGES, METTANT EN œUVRE DES FONCTIONS AVANT BESOIN DE DIFFÉRENTS NIVEAUX DE SÛRETÉ OU LIMITES DE RESPONSABILITÉ

Country Status (8)

Country Link
US (1) US9804875B2 (fr)
EP (1) EP2460071A2 (fr)
JP (1) JP5646622B2 (fr)
CN (1) CN102656559B (fr)
CA (1) CA2769239C (fr)
FR (1) FR2948789B1 (fr)
RU (1) RU2012107091A (fr)
WO (1) WO2011020954A2 (fr)

Families Citing this family (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
BR112012020933A2 (pt) * 2010-02-23 2017-03-07 Astronautics Corp pacote de voo eletrônico de classe 3
CN103677983B (zh) * 2012-09-20 2018-05-04 三亚中兴软件有限责任公司 应用的调度方法及装置
FR2997811B1 (fr) 2012-11-05 2015-01-02 Viaccess Sa Dispositif de traitement de contenus multimedia mettant en oeuvre une pluralite de machines virtuelles.
US9781118B2 (en) * 2013-03-14 2017-10-03 Intel Corporation Differentiated containerization and execution of web content based on trust level and other attributes
RU2568282C2 (ru) * 2014-04-18 2015-11-20 Закрытое акционерное общество "Лаборатория Касперского" Система и способ обеспечения отказоустойчивости антивирусной защиты, реализуемой в виртуальной среде
US9454497B2 (en) * 2014-08-15 2016-09-27 Intel Corporation Technologies for secure inter-virtual-machine shared memory communication
US20160098259A1 (en) * 2014-10-02 2016-04-07 The Boeing Company Software Aircraft Part Installation System
US9444849B2 (en) * 2014-10-06 2016-09-13 The Boeing Company Enforcing policy compliance on a device
FR3038404B1 (fr) * 2015-07-02 2019-04-26 Viaccess Procede et systeme d'execution securisee de machines virtuelles par un ensemble de dispositifs programmables interconnectes
EP3323077A4 (fr) * 2015-07-15 2019-03-27 Nokia Solutions and Networks Oy Instanciation sensible à la sécurité se rapportant à des services de réseau et/ou des fonctions de réseau virtualisées
DE102015214389A1 (de) * 2015-07-29 2017-02-02 Robert Bosch Gmbh Verfahren und Vorrichtung zum Aktualisieren einer auf einer physischen Maschine unter einem Hypervisor betriebenen virtuellen Maschine
US10225349B2 (en) 2016-10-26 2019-03-05 Honeywell International Inc. Software development kit for aircraft tablet device and airborne application server
US11175937B2 (en) * 2018-03-30 2021-11-16 The Boeing Company Virtualized avionics systems for operational environments
CN116260823B (zh) * 2023-05-15 2023-09-15 南方电网数字电网研究院有限公司 受控数据共享方法、装置、计算机设备和存储介质

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020169987A1 (en) * 2001-05-14 2002-11-14 Meushaw Robert V. Device for and method of secure computing using virtual machines
US20050223220A1 (en) * 2004-03-31 2005-10-06 Campbell Randolph L Secure virtual machine monitor to tear down a secure execution environment
US20080216096A1 (en) * 2005-07-15 2008-09-04 Lenovo (Beijing) Limited Virtual Computer System Supporting Trusted Computing and Method for Implementing Trusted Computation Thereon

Family Cites Families (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5442645A (en) * 1989-06-06 1995-08-15 Bull Cp8 Method for checking the integrity of a program or data, and apparatus for implementing this method
US5809493A (en) * 1995-12-14 1998-09-15 Lucent Technologies Inc. Knowledge processing system employing confidence levels
US5870610A (en) * 1996-06-28 1999-02-09 Siemens Business Communication Systems, Inc. Autoconfigurable method and system having automated downloading
US6941410B1 (en) * 2000-06-02 2005-09-06 Sun Microsystems, Inc. Virtual heap for a virtual machine
US7730318B2 (en) * 2003-10-24 2010-06-01 Microsoft Corporation Integration of high-assurance features into an application through application factoring
US7506170B2 (en) * 2004-05-28 2009-03-17 Microsoft Corporation Method for secure access to multiple secure networks
JP2006201845A (ja) * 2005-01-18 2006-08-03 Hitachi Software Eng Co Ltd ウィルス感染及び機密情報漏洩防止対策コンピュータ
US7881755B1 (en) * 2005-05-26 2011-02-01 Marvell International Ltd. Wireless LAN power savings
JP2009512939A (ja) * 2005-10-21 2009-03-26 ヴァー2アス インコーポレイテッド 複数のオペレーティングシステムのインスタンスが単一のマシン資源を安全に共有することを可能とする、オペレーティングシステムの仮想化、を有するコンピュータセキュリティ方法
JP5203969B2 (ja) * 2006-01-17 2013-06-05 キダロ (イスラエル) リミテッド ネットワーク化環境におけるデータの安全保護
JP4735331B2 (ja) * 2006-03-01 2011-07-27 日本電気株式会社 仮想マシンを利用した情報処理装置および情報処理システム、並びに、アクセス制御方法
JP2008084081A (ja) * 2006-09-28 2008-04-10 Nec Corp 機密情報の漏洩防止システム、機密情報の漏洩防止方法、記録媒体、及びプログラム
US8234641B2 (en) * 2006-10-17 2012-07-31 Managelq, Inc. Compliance-based adaptations in managed virtual systems
US8949826B2 (en) * 2006-10-17 2015-02-03 Managelq, Inc. Control and management of virtual systems
US9015703B2 (en) * 2006-10-17 2015-04-21 Manageiq, Inc. Enforcement of compliance policies in managed virtual systems
JP4907371B2 (ja) * 2007-02-01 2012-03-28 株式会社日立ソリューションズ ウィルス感染及び機密情報漏洩防止対策システム
US8024790B2 (en) * 2007-04-11 2011-09-20 Trend Micro Incorporated Portable secured computing environment for performing online confidential transactions in untrusted computers
JP4987555B2 (ja) * 2007-04-27 2012-07-25 株式会社東芝 情報処理装置、および情報処理システム
JP4782871B2 (ja) * 2007-10-03 2011-09-28 富士通株式会社 デバイスアクセス制御プログラム、デバイスアクセス制御方法および情報処理装置
US8555081B2 (en) * 2007-10-30 2013-10-08 Vmware, Inc. Cryptographic multi-shadowing with integrity verification
US20090133097A1 (en) * 2007-11-15 2009-05-21 Ned Smith Device, system, and method for provisioning trusted platform module policies to a virtual machine monitor
KR101489244B1 (ko) * 2007-12-24 2015-02-04 삼성전자 주식회사 가상 머신 모니터 기반의 프로그램 실행 시스템 및 그 제어방법
JP5029701B2 (ja) * 2008-01-09 2012-09-19 富士通株式会社 仮想マシン実行プログラム、ユーザ認証プログラムおよび情報処理装置
CA2661398C (fr) * 2008-04-05 2016-05-17 Third Brigade Inc. Systeme et methode de coordination intelligente de prevention d'intrusion au niveau de l'hote dans un environnement virtuel
US8561137B2 (en) * 2008-07-23 2013-10-15 Oracle International Corporation Techniques for identity authentication of virtualized machines
US8387046B1 (en) * 2009-03-26 2013-02-26 Symantec Corporation Security driver for hypervisors and operating systems of virtualized datacenters

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020169987A1 (en) * 2001-05-14 2002-11-14 Meushaw Robert V. Device for and method of secure computing using virtual machines
US20050223220A1 (en) * 2004-03-31 2005-10-06 Campbell Randolph L Secure virtual machine monitor to tear down a secure execution environment
US20080216096A1 (en) * 2005-07-15 2008-09-04 Lenovo (Beijing) Limited Virtual Computer System Supporting Trusted Computing and Method for Implementing Trusted Computation Thereon

Also Published As

Publication number Publication date
US20120167089A1 (en) 2012-06-28
RU2012107091A (ru) 2013-09-10
JP2013500531A (ja) 2013-01-07
CA2769239C (fr) 2018-10-23
CN102656559A (zh) 2012-09-05
EP2460071A2 (fr) 2012-06-06
CN102656559B (zh) 2016-12-07
FR2948789A1 (fr) 2011-02-04
WO2011020954A2 (fr) 2011-02-24
US9804875B2 (en) 2017-10-31
CA2769239A1 (fr) 2011-02-24
FR2948789B1 (fr) 2016-12-09
JP5646622B2 (ja) 2014-12-24

Similar Documents

Publication Publication Date Title
WO2011020954A3 (fr) Traitement automatise de donnees multi-usages, mettant en oeuvre des fonctions ayant besoin de differents niveaux de surete ou limites de responsabilite
EP3613170A4 (fr) Traitement de données de chaîne de blocs sur la base d'opérations sur contrats intelligents exécutées dans un environnement d'exécution de confiance
EP3642753A4 (fr) Exécution sécurisée d'opérations de contrat intelligent dans un environnement d'exécution sécurisé
WO2008115279A3 (fr) Virtualisation pour inviolabilité diversifiée
GB201302443D0 (en) Detecting malicious computer code in an executing program module
WO2010147600A3 (fr) Instruction qualifiée
WO2012097073A3 (fr) Verrouillage de mode de processeur
WO2009136080A3 (fr) Systeme et procede de securisation d'un ordinateur comportant un micronoyau
WO2011090596A3 (fr) Isolation de coeurs de processeur par hyperviseur
WO2012088171A3 (fr) Procédé d'emploi de point de reprise et restauration d'état de programme
WO2009094582A3 (fr) Procédé et systèmes de fourniture d'un disque virtuel à des machines virtuelle et physique sans disque
WO2011097588A3 (fr) Virtualisation d'interruption
GB2508553A (en) Protecting memory of a virtual guest
JP2014083261A5 (fr)
WO2014009243A3 (fr) Ensemble comprenant un système à microprocesseur
WO2012143603A3 (fr) Procédés et appareils pour faciliter la reconnaissance de gestes
GB2485683A (en) Thread shift: Allocating threads to cores
GB2557478A (en) Manegement of virtual machine in virtualized computing environment based on fabric limit
WO2010068786A3 (fr) Commande d'exécution de sous-graphe dans un environnement de modélisation graphique
JP2018079330A5 (fr)
WO2008017796A8 (fr) Appareil et procédé pour réaliser des contrôles d'intégrité sur un logiciel
WO2014104912A8 (fr) Procédé de traitement pour processeur multicoeur et processeur multicoeur
WO2012112302A3 (fr) Traitement parallèle dans des applications d'interface homme-machine
WO2007008845A3 (fr) Systemes de jeu tolerants aux pannes
EP2624132A3 (fr) Automatisation de récupération dans des environnements hétérogènes

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 201080041951.3

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10752854

Country of ref document: EP

Kind code of ref document: A2

WWE Wipo information: entry into national phase

Ref document number: 2769239

Country of ref document: CA

WWE Wipo information: entry into national phase

Ref document number: 2012522202

Country of ref document: JP

NENP Non-entry into the national phase

Ref country code: DE

REEP Request for entry into the european phase

Ref document number: 2010752854

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2010752854

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2012107091

Country of ref document: RU

WWE Wipo information: entry into national phase

Ref document number: 13387561

Country of ref document: US