Invention Grant
US08694738B2 System and method for critical address space protection in a hypervisor environment
有权
管理程序环境中关键地址空间保护的系统和方法
- Patent Title: System and method for critical address space protection in a hypervisor environment
- Patent Title (中): 管理程序环境中关键地址空间保护的系统和方法
-
Application No.: US13271102Application Date: 2011-10-11
-
Publication No.: US08694738B2Publication Date: 2014-04-08
- Inventor: Rajbir Bhattacharjee , Nitin Munjal , Balbir Singh , Pankaj Singh
- Applicant: Rajbir Bhattacharjee , Nitin Munjal , Balbir Singh , Pankaj Singh
- Applicant Address: US CA Santa Clara
- Assignee: McAfee, Inc.
- Current Assignee: McAfee, Inc.
- Current Assignee Address: US CA Santa Clara
- Agency: Patent Capital Group
- Main IPC: G06F13/00
- IPC: G06F13/00
Abstract:
A system and method in one embodiment includes modules for detecting an access attempt to a critical address space (CAS) of a guest operating system (OS) that has implemented address space layout randomization in a hypervisor environment, identifying a process attempting the access, and taking an action if the process is not permitted to access the CAS. The action can be selected from: reporting the access to a management console of the hypervisor, providing a recommendation to the guest OS, and automatically taking an action within the guest OS. Other embodiments include identifying a machine address corresponding to the CAS by forcing a page fault in the guest OS, resolving a guest physical address from a guest virtual address corresponding to the CAS, and mapping the machine address to the guest physical address.
Public/Granted literature
- US20130091318A1 SYSTEM AND METHOD FOR CRITICAL ADDRESS SPACE PROTECTION IN A HYPERVISOR ENVIRONMENT Public/Granted day:2013-04-11
Information query
