公开(公告)号：US20150127955A1

公开(公告)日：2015-05-07

申请号：US14597761

申请日：2015-01-15

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Min-sung JANG ,  Seong-yeol PARK ,  Jae-Min PARK ,  Sang-bum SUH ,  Sung-kwan HEO ,  Byung-woan KIM

IPC: G06F12/10 ,  G06F12/14 ,  G06F13/28

CPC classification number: G06F12/1081 ,  G06F9/45533 ,  G06F9/45537 ,  G06F12/1408 ,  G06F13/28 ,  G06F13/385

Abstract: A method and apparatus for inputting and outputting data by using a virtualization technique are provided. The method includes generating a virtual operating system (OS) for the external device, which is connected to a host, based on OS information stored in the external device, setting a partial area of a storage of the host as virtual storage for the external device, and storing the data in the virtual storage or a memory of the external device in response to a request for inputting and outputting the data from the virtual OS.

Abstract translation: 提供了一种通过使用虚拟化技术来输入和输出数据的方法和装置。 该方法包括基于存储在外部设备中的OS信息，生成连接到主机的外部设备的虚拟操作系统（OS），将主机的存储部分区域设置为外部设备的虚拟存储 并且响应于从虚拟OS输入和输出数据的请求，将数据存储在外部设备的虚拟存储器或存储器中。

公开(公告)号：US20130305028A1

公开(公告)日：2013-11-14

申请号：US13914310

申请日：2013-06-10

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Sang-dok MO ,  Sang-bum SUH ,  Sung-min LEE ,  Bok-deuk JEONG ,  Yong-ho HWANG

IPC: G06F12/14 ,  G06F21/57

CPC classification number: G06F12/1408 ,  G06F12/1466 ,  G06F21/572

Abstract: A method and apparatus for authorizing a host to access a portable storage device and a method and apparatus of providing information for authorizing a host to access a portable storage device. The method includes: verifying integrity of host software requesting to transmit data; determining whether the host is authorized to access the portable storage device; and determining whether the host software is authorized to access the portable storage device. Accordingly, user information may be stored on the portable storage device and moved with security.

公开(公告)号：US20130132695A1

公开(公告)日：2013-05-23

申请号：US13736531

申请日：2013-01-08

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Sung-kwan HEO ,  Chan-ju PARK ,  Sang-bum SUH ,  Joo-young HWANG ,  Jae-min RYU

IPC: G06F12/14

CPC classification number: G06F12/1491 ,  G06F12/145

Abstract: Provided is a method of controlling memory access. In a system including a first layer element executed in a privileged mode having a first priority of permission to access the entire region of a memory and second and third layer elements executed in an unprivileged mode having a second priority of permission to access a partial region of the memory, the method of controlling memory access determines whether the memory is accessible for each page that is an address space unit, based on which mode a layer element currently accessing the memory is executed in between the privileged mode and the unprivileged mode; and determines whether the memory is accessible based on which one of the first, second and third layer elements corresponds to a domain currently being attempted to be accessed from among a plurality of domains of the memory. Accordingly, a memory domain allocated to a guest operating system kernel is effectively protected from an application executed in the unprivileged mode in which the guest operating system kernel is executed.

Abstract translation: 提供了一种控制存储器访问的方法。 在包括以具有访问存储器的整个区域的权限的第一优先权的特权模式执行的第一层元素的系统中，以非权限模式执行的第二和第三层元素，其具有访问第 存储器，控制存储器访问的方法确定对于作为地址空间单元的每个页面，存储器是否可访问，基于哪种模式，当前访问存储器的层元素在特权模式和非特权模式之间执行; 并且基于所述第一，第二和第三层元素中的哪个元素对应于当前正在尝试从所述存储器的多个域中被访问的域来确定所述存储器是否可访问。 因此，分配给客户操作系统内核的存储器域被有效地保护在执行客户操作系统内核的非特权模式下执行的应用程序。

公开(公告)号：US20140189869A1

公开(公告)日：2014-07-03

申请号：US14199020

申请日：2014-03-06

Applicant: Samsung Electronics Co., Ltd.

Inventor： Sung-Min LEE ,  Bok-Deuk JEONG ,  Sang-bum SUH

IPC: G06F21/56

CPC classification number: G06F21/56 ,  G06F21/552

Abstract: A method of intrusion detection in a terminal device that supports driving of a plurality of operating systems, is provided. The method includes collecting at a first operating system of the plurality of operating systems intrusion detection data for analyzing whether there is an intrusion in at least a second operating system of the plurality of operating systems; and performing at the first operating system an intrusion detection with respect to the at least a second operating system using the collected intrusion detection data.

Abstract translation: 提供一种支持多个操作系统的驱动的终端装置中的入侵检测方法。 该方法包括在多个操作系统的第一操作系统处收集用于分析在多个操作系统的至少第二操作系统中是否存在入侵的入侵检测数据; 以及使用所收集的入侵检测数据在所述第一操作系统处执行关于所述至少第二操作系统的入侵检测。