Invention Grant
- Patent Title: Computational system including mechanisms for tracking propagation of information with aging
- Patent Title (中): 计算系统包括跟踪老化信息传播的机制
-
Application No.: US11559788Application Date: 2006-11-14
-
Publication No.: US07958558B1Publication Date: 2011-06-07
- Inventor: Edward N. Leake , Geoffrey Pike
- Applicant: Edward N. Leake , Geoffrey Pike
- Applicant Address: US CA Palo Alto
- Assignee: VMware, Inc.
- Current Assignee: VMware, Inc.
- Current Assignee Address: US CA Palo Alto
- Main IPC: G06F12/14
- IPC: G06F12/14
Abstract:
Mechanisms have been developed for securing computational systems against certain forms of attack. In particular, it has been discovered that, by maintaining and selectively propagating taint status for storage locations in correspondence with information flows of instructions executed by a computing system, it is possible to provide a security (or other appropriate) response if and when a control transfer (or other restricted use) is attempted based on tainted data. By employing aging in decisions to propagate, it is possible limit overheads associated with such tracking. In some embodiments, a decay oriented metric is applied and further propagation of taints is interrupted once aging reaches a predetermined decay threshold. In some embodiments, more generalized labels may be maintained and selectively propagated based on an aging metric. For example, in some embodiments, labels may be employed to code source designation or classification, aging, popularity/frequency of access or taint.
Information query
