Patent · US Active

Isolating guest code and data using multiple nested page tables

US9870324B2 · kind B2 · utility

8Cited by

0References

20Claims

0Family size

Assignee

VMware LLC · US

Inventors

James S. Mattson, Jr. · Campbell, US
Rakesh Agarwal · Palo Alto, US
Alok Nemchand Kataria · Sunnyvale, US
Wei Xu · Tangxia, CN
Frederick Joseph Jacobs · Los Gatos, US

Key dates

Filing date	Jul 14, 2015
Grant date	Jan 16, 2018
Priority date	—
Expiry date	Jul 14, 2035

Classification

Technology area (CPC G)Physics
CPC primaryG06F2212/151
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A hypervisor provides a guest operating system with a plurality of protection domains, including a root protection domain and one or more secure protection domains, and mechanisms for controlling the transitions between the protection domains. The guest physical memory region of a secure protection domain, which is mapped to host physical memory by secure nested page tables, stores secure guest code and data, and guest page tables for the secure guest code. When executing secure guest code, the guest page tables stored in the secure protection domain region are used for guest virtual to guest physical address translations, and the secure nested page tables are used for guest physical to host physical address translations.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.