发明名称 Cryptographically-enabled privileged mode execution
摘要 A method, computer program product, and data processing system are disclosed for protecting sensitive program code (and also data) from unauthorized access in a memory space not subject to protection fault detection. In a preferred embodiment, secure initialization hardware loads the sensitive code from a storage location accessible only to the secure initialization hardware itself and decrypts the sensitive code into a portion of the processor-accessible memory space, from which the code is executed. Once execution of the sensitive code has completed, all or at least a portion of the code is deleted before passing control to application software. If the application software needs to cause the sensitive code to be executed, the secure initialization hardware is activated to reload/decrypt a fresh copy of the sensitive code into the memory space and cause the code to be executed. Before control is returned to the application software, the sensitive code is again deleted to prevent unauthorized access.
申请公布号 US8433927(B2) 申请公布日期 2013.04.30
申请号 US20070754678 申请日期 2007.05.29
申请人 PLOUFFE, JR. WILFRED E.;SHIMIZU KANNA;INTERNATIONAL BUSINESS MACHINES CORPORATION 发明人 PLOUFFE, JR. WILFRED E.;SHIMIZU KANNA
分类号 G06F12/14;G06F7/04;G06F9/24;G08B29/00;H04K1/00;H04L9/28;H04L29/06 主分类号 G06F12/14
代理机构 代理人
主权项
地址