Ensuring the privacy and integrity of a hypervisor
US10140139B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Jun 16, 2015 |
| Grant date | Nov 27, 2018 |
| Priority date | — |
| Expiry date | May 11, 2036 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2009/45587
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Approaches for ensuring the privacy and integrity of a hypervisor. A host operating system manages a set of resources. The host operating system is prevented from accessing a portion of the resources belonging to or allocated by the hypervisor. The host operating system may be prevented from accessing resources belonging to or allocated by the hypervisor by transferring execution of the host operating system into a virtual machine container that does not have sufficient privilege to access any portion of the memory pages in which the hypervisor is executing. After the host operating system provides a requested resource to the hypervisor, the hypervisor may use a hardware component that establishes and enforces constraints on what portions of memory the host operating system is allowed to access to protect the requested resource from the host operating system.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.