发明名称 |
Method and system for providing user space address protection from writable memory area in a virtual environment |
摘要 |
A method in one example implementation includes identifying an address space in a memory element of a system configured to operate in a virtual environment. The address space includes at least one system address, and the address space is provided to a virtual machine monitor. The method also includes generating a page table entry for the system address in a shadow page table stored in the virtual machine monitor in response to a guest operating system initiating a process. The page table entry is marked as a page not being present in order to trigger a page fault for a system address access from the guest operating system. In more specific embodiments, the method may include evaluating a page fault to determine access to the address space, where access to a writeable area of the memory element is denied.
|
申请公布号 |
US8341627(B2) |
申请公布日期 |
2012.12.25 |
申请号 |
US20090545745 |
申请日期 |
2009.08.21 |
申请人 |
MOHINDER PREET;MCAFEE, INC. |
发明人 |
MOHINDER PREET |
分类号 |
G06F9/455;G06F7/04;G06F9/46;G06F11/00 |
主分类号 |
G06F9/455 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|