Invention Grant
- Patent Title: Systems and methods for hypervisor-based protection of code
-
Application No.: US16980463Application Date: 2019-03-22
-
Publication No.: US11269992B2Publication Date: 2022-03-08
- Inventor: Michael Kiperberg , Raziel Ben Yehuda , Asaf Algawi , Roee Shimon Leon , Amit Resh , Nezer Jacob Zaidenberg
- Applicant: TRULYPROTECT OY
- Applicant Address: IL Yehud
- Assignee: TRULYPROTECT OY
- Current Assignee: TRULYPROTECT OY
- Current Assignee Address: IL Yehud
- Agency: Alphapatent Associates, Ltd
- Agent Daniel J. Swirsky
- International Application: PCT/IB2019/052343 WO 20190322
- International Announcement: WO2019/180675 WO 20190926
- Main IPC: G06F21/53
- IPC: G06F21/53 ; G06F12/1009 ; G06F12/1045 ; G06F12/14 ; G06F21/54 ; G06F21/57 ; G06F21/60
Abstract:
Systems and methods for protecting vulnerable code by obtaining an input file comprising code representing executable files; generating a protected executable file by replacing an unencrypted version of each vulnerable function of the input file with a VM-exit generating instruction; and generating a database file including an encrypted version of each vulnerable function deleted from the input file. The protected executable file, database file are stored on a target device. A UEFI application initializes a hypervisor which accesses the decryption key using a TPM device and loads an operating system. When the hypervisor detects an attempt to execute an encrypted version of a vulnerable function it decrypts the encrypted version of the vulnerable function.
Public/Granted literature
- US20210049263A1 SYSTEMS AND METHODS FOR HYPERVISOR-BASED PROTECTION OF CODE Public/Granted day:2021-02-18
Information query
