Memory protection within a virtual partition
    2.
    发明申请
    Memory protection within a virtual partition 有权
    虚拟分区内的内存保护

    公开(公告)号:US20070055837A1

    公开(公告)日:2007-03-08

    申请号:US11219905

    申请日:2005-09-06

    IPC分类号: G06F12/14

    CPC分类号: G06F12/1475

    摘要: The present disclosure relates to attempting to monitor and control memory access and, more specifically, to attempting to limit memory access to a specific registered software agent.

    摘要翻译: 本公开涉及尝试监视和控制存储器访问,更具体地,涉及试图限制对特定注册软件代理的存储器访问。

    Validating a memory type modification attempt
    4.
    发明授权
    Validating a memory type modification attempt 有权
    验证内存类型修改尝试

    公开(公告)号:US07748037B2

    公开(公告)日:2010-06-29

    申请号:US11233733

    申请日:2005-09-22

    IPC分类号: G06F21/00

    摘要: A system and process are described to enable at least one of a plurality of host agents executing on a system to update memory region types of a system memory, register the at least one host agent in a registry stored in system management memory, receive a system management interrupt (SMI) from one of the plurality of host agents to update a memory region type, determine if the host agent issuing the SMI is listed in the registry stored in system management memory, update the memory region in response to determining the host agent issuing the SMI is listed in the registry, and maintain the memory region type in response to determining the host agent issuing the SMI is not listed in the registry.

    摘要翻译: 描述系统和过程以使得在系统上执行的多个主机代理中的至少一个能够更新系统存储器的存储器区域类型,在存储在系统管理存储器中的注册表中注册至少一个主机代理,接收系统 管理中断(SMI)从多个主机代理之一更新存储器区域类型,确定发出SMI的主机代理是否列在存储在系统管理存储器中的注册表中,响应于确定主机代理来更新存储器区域 发出SMI是在注册表中列出的,并且维护内存区域类型以响应确定发起SMI的主机代理不在注册表中列出。

    Maintaining shadow page tables in a sequestered memory region
    5.
    发明授权
    Maintaining shadow page tables in a sequestered memory region 有权
    在隔离内存区域中维护阴影页表

    公开(公告)号:US07467285B2

    公开(公告)日:2008-12-16

    申请号:US11191468

    申请日:2005-07-27

    IPC分类号: G06F12/00

    摘要: Provided are a method, system, program and device for maintaining shadow page tables in a sequestered memory region. A first processor executing an application invokes a second processor to create a shadow page table used for address translation for the application in a sequestered memory region non-alterable by processes controlled by an operating system executed by the first processor. The shadow page table references at least one page in an operating system memory region accessible to processes controlled by the operating system.

    摘要翻译: 提供了一种用于在隔离存储器区域中保持阴影页表的方法,系统,程序和设备。 执行应用的第一处理器调用第二处理器来创建用于经由由第一处理器执行的操作系统控制的进程不可修改的存储存储器区域中的应用的地址转换的影子页表。 影子页面表引用由操作系统控制的进程可访问的操作系统存储器区域中的至少一个页面。

    Maintaining shadow page tables in a sequestered memory region
    7.
    发明申请
    Maintaining shadow page tables in a sequestered memory region 有权
    在隔离内存区域中维护阴影页表

    公开(公告)号:US20070028074A1

    公开(公告)日:2007-02-01

    申请号:US11191468

    申请日:2005-07-27

    IPC分类号: G06F12/00

    摘要: Provided are a method, system, program and device for maintaining shadow page tables in a sequestered memory region. A first processor executing an application invokes a second processor to create a shadow page table used for address translation for the application in a sequestered memory region non-alterable by processes controlled by an operating system executed by the first processor. The shadow page table references at least one page in an operating system memory region accessible to processes controlled by the operating system.

    摘要翻译: 提供了一种用于在隔离存储器区域中保持阴影页表的方法,系统,程序和设备。 执行应用的第一处理器调用第二处理器来创建用于经由由第一处理器执行的操作系统控制的进程不可修改的存储存储器区域中的应用的地址转换的影子页表。 影子页面表引用由操作系统控制的进程可访问的操作系统存储器区域中的至少一个页面。

    Operating system agnostic sharing of proteced memory using memory identifiers
    10.
    发明授权
    Operating system agnostic sharing of proteced memory using memory identifiers 有权
    使用存储器标识符的操作系统不可知共享保护存储器

    公开(公告)号:US07624242B2

    公开(公告)日:2009-11-24

    申请号:US11394844

    申请日:2006-03-31

    IPC分类号: G06F12/14

    摘要: An embodiment of the present invention is a technique to protect memory. A memory identifiers storage stores memory identifiers associated with protected components. The memory identifiers include exclusive memory identifiers and shared memory identifiers. The memory identifier storage is protected from access by a host operating system. A memory identifier management service (MMS) manages the memory identifiers. The MMS resides in a protected environment. An access control enforcer (ACE) enforces an access control policy with the memory identifiers.

    摘要翻译: 本发明的一个实施例是一种保护存储器的技术。 存储器标识符存储存储与受保护组件相关联的存储器标识符。 存储器标识符包括排他存储器标识符和共享存储器标识符。 存储器标识符存储器受到主机操作系统的访问保护。 存储器标识符管理服务(MMS)管理存储器标识符。 MMS驻留在受保护的环境中。 访问控制执行器(ACE)使用存储器标识符强制执行访问控制策略。