Patent · US Active

Method and apparatus for trust domain creation and destruction

US11829517B2 · kind B2 · utility

2Cited by

6References

20Claims

0Family size

Assignee

Intel Corporation · US

Inventors

Hormuzd M. Khosravi · Hillsboro, US
Dror Caspi · Kiryat Yam, IL
Arie Aharon · Haifa, IL

Key dates

Filing date	Dec 20, 2018
Grant date	Nov 28, 2023
Priority date	—
Expiry date	Oct 21, 2041

Classification

Technology area (CPC G)Physics
CPC primaryG06F2009/45587
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method of creating a trusted execution domain includes initializing, by a processing device executing a trust domain resource manager (TDRM), a trust domain control structure (TDCS) and a trust domain protected memory (TDPM) associated with a trust domain (TD). The method further includes generating a one-time cryptographic key, assigning the one-time cryptographic key to an available host key id (HKID) in a multi-key total memory encryption (MK-TME) engine, and storing the HKID in the TDCS. The method further includes associating a logical processor to the TD, adding a memory page from an address space of the logical processor to the TDPM, and transferring execution control to the logical processor to execute the TD.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.