发明名称 |
METHOD FOR SAFELY EXECUTING AN UNTRUSTED NATIVE CODE MODULE ON A COMPUTING DEVICE |
摘要 |
A system that safely executes a native code module on a computing device. The system receives the native code module, which is comprised of untrusted native program code expressed using native instructions in the instruction set architecture associated with the computing device. The system then loads the native code module into a secure runtime environment, and proceeds to execute a set of instructions from the native code module in the secure runtime environment. The secure runtime environment enforces code integrity, control flow integrity, and data integrity for the native code module. Furthermore, the secure runtime environment moderates which resources can be accessed by the native code module on the computing device and/or how these resources can be accessed. By executing the native code module in the secure runtime environment, the system facilitates achieving native code performance for untrusted program code without a significant risk of unwanted side effects. |
申请公布号 |
EP2281258(A1) |
申请公布日期 |
2011.02.09 |
申请号 |
EP20090743553 |
申请日期 |
2009.05.06 |
申请人 |
GOOGLE INC. |
发明人 |
CHEN, J., BRADLEY;HARREN, MATTHEW, T.;PAPAKIPOS, MATTHEW;SEHR, DAVID, C.;YEE, BENNET, S.;DARDYK, GREGORY |
分类号 |
G06F21/53;G06F9/30;G06F9/445;H04L29/06 |
主分类号 |
G06F21/53 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|