发明名称 |
Processor extensions for execution of secure embedded containers |
摘要 |
Methods and apparatus relating to processor extensions for execution of secure embedded containers are described. In an embodiment, a scalable solution for manageability function is provided, e.g., for UMPC environments or otherwise where utilizing a dedicated processor or microcontroller for manageability is inappropriate or impractical. For example, in an embodiment, an OS (Operating System) or VMM (Virtual Machine Manager) Independent (generally referred to herein as “OI”) architecture involves creating one or more containers on a processor by dynamically partitioning resources (such as processor cycles, memory, devices) between the HOST OS/VMM and the OI container. Other embodiments are also described and claimed. |
申请公布号 |
US9442865(B2) |
申请公布日期 |
2016.09.13 |
申请号 |
US201615000081 |
申请日期 |
2016.01.19 |
申请人 |
Intel Corporation |
发明人 |
Shanbhogue Vedvyas;Kumar Arvind;Goel Purushottam |
分类号 |
G06F1/04;G06F12/14;H04L9/14 |
主分类号 |
G06F1/04 |
代理机构 |
Nicholson De Vos Webster & Elliott LLP |
代理人 |
Nicholson De Vos Webster & Elliott LLP |
主权项 |
1. A processor system comprising:
one or more processor cores; a secure memory to store a key page mapped to physical addresses from an Operating System (OS) independent memory partition, having an execution environment that is managed independent of an operating system and a virtual machine manager; and a cryptographic processor key configured to be accessed by an OS Independent (OI) Resource Manager (OIRM) to perform cryptographic operations, wherein an application running on the processor from outside the OI memory partition can invoke a blob service provided by the OIRM to create a key blob to access the key page inside the OI memory partition. |
地址 |
Santa Clara CA US |