CPU security mechanisms employing thread-specific protection domains

Assignee

• Mill Computing, Inc. · US

Inventors

• Roger Rawson Godard · East Palo Alto, US
• Arthur David Kahlich · Sunnyvale, US
• Jan Schukat · Berlin, DE

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2212/60
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A computer processor includes an instruction processing pipeline that interfaces to a hierarchical memory system employing an address space. The instruction processing pipeline includes execution logic that executes at least one thread in different protection domains over time, wherein the different protection domains are defined by region descriptors each including first data specifying a memory region of the address space employed by the hierarchical memory system and second data specifying permissions for accessing the associated memory region. The address space can be a virtual address space or a physical address space. The protection domains can be associated with different turfs each representing a collection of region descriptors. A given thread can execute in a particular turf, one turf at a time. The particular turf can be selectively configured to change over time.