发明名称 |
PROCESSOR EXTENSIONS FOR EXECUTION OF SECURE EMBEDDED CONTAINERS |
摘要 |
Methods and apparatus relating to processor extensions for execution of secure embedded containers are described. In an embodiment, a scalable solution for manageability function is provided, e.g., for UMPC environments or otherwise where utilizing a dedicated processor or microcontroller for manageability is inappropriate or impractical. For example, in an embodiment, an OS (Operating System) or VMM (Virtual Machine Manager) Independent (generally referred to herein as “OI”) architecture involves creating one or more containers on a processor by dynamically partitioning resources (such as processor cycles, memory, devices) between the HOST OS/VMM and the OI container. Other embodiments are also described and claimed. |
申请公布号 |
US2015293777(A1) |
申请公布日期 |
2015.10.15 |
申请号 |
US201514730224 |
申请日期 |
2015.06.03 |
申请人 |
Intel Corporation |
发明人 |
Shanbhogue Vedvyas;Kumar Arvind;Goel Purushottam |
分类号 |
G06F9/455;G06F9/48;H04L29/06;H04L9/32 |
主分类号 |
G06F9/455 |
代理机构 |
|
代理人 |
|
主权项 |
1. A processor comprising:
one or more processor cores; a cache storage accessible to said one or more processor cores at least in part by using an extended page table (EPT); an on-package memory to store a key page mapped to physical addresses from an Operating System (OS) independent memory partition; an embedded processor key accessible to an OS Independent (OI) Resource Manager (OIRM) for use in cryptographic operations, wherein an application running on the processor from outside the OI memory partition can invoke a blob service provided by the OIRM to create a key blob to access the key page inside the OI memory partition. |
地址 |
Santa Clara CA US |