Patent · US Active

Method and system for co-privileged security domains

US10747686B2 · kind B2 · utility

0Cited by

0References

20Claims

0Family size

Assignee

NARF INDUSTRIES, LLC · US

Inventors

Paul E. Makowski · San Diego, US
Benjamin Schmidt · Munich, DE
Maxwell J. Koo · Tampa, US

Key dates

Filing date	Dec 28, 2017
Grant date	Aug 18, 2020
Priority date	—
Expiry date	Dec 28, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F2212/1052
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A system and method is provided for secure establishment of a trusted enclave among co-privileged executable code. The system comprises one or more processors; execute only memory; and one or more programs stored in the memory. The one or more programs comprise instructions to establish a trusted enclave and an untrusted enclave in kernel space code, wherein the trusted enclave and the untrusted enclave are co-privileged from the perspective of the processor. The trusted code has the ability to modify page tables and the untrusted code does not have the ability to modify page tables. Any changes to memory mappings involve the trusted code. Page tables are mapped as read-only during execution of the untrusted code and mapped as writeable only during execution of the trusted code.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.