Execution environment and gatekeeper arrangement

Assignee

• MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

• David Thomas CHISNALL · Cambridge, GB
• Cedric Fournet · Cambridge, GB
• Manuel Costa · Cambridge, GB
• Samuel Alexander WEBSTER · Cambridge, GB
• Sylvan Clebsch · Cambridge, GB
• Kapil Vaswani · Survanagiri, IN

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/033
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A computer system has a separation mechanism which enforces separation between at least two execution environments such that one execution environment is a gatekeeper which interposes on all communications of the other execution environment. The computer system has an attestation mechanism which enables the gatekeeper to attest to properties of the at least two execution environments. A first one of the execution environments runs application specific code which may contain security vulnerabilities. The gatekeeper is configured to enforce an input output policy on the first execution environment by interposing on all communication to and from the first execution environment by forwarding, modifying or dropping individual ones of the communications according to the policy. The gatekeeper provides evidence of attestation both for the application specific code and the policy.