System and method for supporting secure objects using a memory access control monitor

Assignee

• International Business Machines Corporation · US

Inventors

• Richard H. Boivie · Hawthorne, US
• Kattamuri Ekanadham · Potsdam, US
• Kenneth A. Goldman · Norwalk, US
• William E. Hall · Clinton, US
• Guerney Douglass Holloway Hunt · Yorktown Heights, US
• Bhushan P. Jain · Jalgaon, IN
• Mohit Kapur · Mount Kisco, US
• Dimitrios Pendarakis · Westport, US
• David R. Safford · Brewster, US
• Peter A. Sandon · South Burlington, US
• Enriquillo Valdez · Queens, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/6209
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A processor in a computer system, the processor including a mechanism supporting a Secure Object that comprises information that is protected so that other software on said computer system cannot access or undetectably tamper with said information, thereby protecting both a confidentiality and an integrity of the Secure Object information while making the Secure Object information available to the Secure Object itself during execution of the Secure Object. The mechanism includes a crypto mechanism that decrypts and integrity-checks Secure Object information as said Secure Object information moves into the computer system from an external storage system, and encrypts and updates an integrity value for Secure Object information as said Secure Object information moves out of the computer system to the external storage system, and a memory protection mechanism that protects the confidentiality and integrity of Secure Object information when that information is in the memory of the computer system.