Policy-managed secure code execution and messaging for computing devices and computing device security
US10462185B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 4, 2015 |
| Grant date | Oct 29, 2019 |
| Priority date | — |
| Expiry date | Nov 13, 2035 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/034
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A system for policy-managed secure code execution and messaging for computing devices where each trusted application is managed independently of others and is not visible to unauthorized inspection or execution. If a file bundle received by the system contains metadata concerning the context of the file or its execution, the metadata is decrypted if necessary. If the file bundle containing the executable code is encrypted, its key is stored in a policy server to await adjudication of the request to execute. If the policy server allows execution of the executable code, the key stored in the policy server is used to decrypt the file bundle and the resulting executable code is stored as a trusted application in secure memory. Future requests to execute the trusted application are adjudicated by the policy server and enforced by the exclusive policy execution point associated with that trusted application in secure memory.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.