Patent · US Active

Method and system for providing secure system execution on hardware supporting secure application execution

US9983894B2 · kind B2 · utility

7Cited by

72References

16Claims

0Family size

Assignee

FACEBOOK, INC. · US

Inventors

Oded Horovitz · Palo Alto, US
Stephen A. Weis · San Francisco, US
Sahil Rihan · Menlo Park, US
Carl A. Waldspurger · Palo Alto, US

Key dates

Filing date	Sep 25, 2014
Grant date	May 29, 2018
Priority date	—
Expiry date	Feb 4, 2035

Classification

Technology area (CPC G)Physics
CPC primaryG06F2009/45587
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

An application such as a virtual machine are executed securely using a software-based, full-system emulator within a hardware-protected enclave, such as an SGX enclave. The emulator may thereby be secure even against a malicious underlying host operating system. In some cases, paging is used to allow even a large application may run within a small enclave using paging. Where the application itself uses enclaves, these guest enclaves may themselves be emulated within an emulator enclave such that the guest enclave(s) are nested as sibling enclaves by the emulator.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.