发明名称 |
CONTROLLING ACCESS TO MULTIPLE ISOLATED MEMORIES IN AN ISOLATED EXECUTION ENVIRONMENT |
摘要 |
The present invention provides a method, apparatus, and system for controlling memory accesses to multiple isolated memory areas in an isolated execution environment. A page manager is used to distribute a plurality of pages to a plurality of different areas of a memory, respectively. The memory is divided into non-isolated areas and isolated areas. The page manager is located in an isolated area of memory. Further, a memory ownership page table describes each page of memory and is also located in an isolated area of memory. The page manager assigns an isolated attribute to a page if the page is distributed to an isolated are of memory. On the other hand, the page manager assigns a non-isolated attribute to a page if the page is distributed to a non-isolated area of memory. The memory ownership page table records the attribute for each page. In one embodiment, a processor having a normal execution mode and an isolated execution mode generates an access transaction. The access transaction is configured using a configuration storage that contains configuration settings related to a page and access information. An access checking circuit coupled to the configuration settings and the access information and generates an access grant signal if the access transaction is valid. |
申请公布号 |
WO0206929(A2) |
申请公布日期 |
2002.01.24 |
申请号 |
WO2001US22027 |
申请日期 |
2001.07.13 |
申请人 |
INTEL CORPORATION |
发明人 |
GOLLIVER, ROGER;SUTTON, JAMES, II;LIN, DERRICK;THAKKAR, SHREEKANT;NEIGER, GILBERT;MCKEEN, FRANCIS;HERBERT, HOWARD;RENERIS, KENNETH;ELLISON, CARL |
分类号 |
G06F12/14 |
主分类号 |
G06F12/14 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|