Invention Grant
US08997225B2 Dynamic code insertion and removal for static analysis based sandboxes
有权
基于静态分析的沙盒的动态代码插入和删除
- Patent Title: Dynamic code insertion and removal for static analysis based sandboxes
- Patent Title (中): 基于静态分析的沙盒的动态代码插入和删除
-
Application No.: US13967626Application Date: 2013-08-15
-
Publication No.: US08997225B2Publication Date: 2015-03-31
- Inventor: Bennet S. Yee , David C. Sehr , Cliff L. Biffle
- Applicant: Google Inc.
- Applicant Address: US CA Mountain View
- Assignee: Google Inc.
- Current Assignee: Google Inc.
- Current Assignee Address: US CA Mountain View
- Agency: Fish & Richardson P.C.
- Main IPC: G06F21/00
- IPC: G06F21/00 ; G06F21/53 ; G06F9/445
Abstract:
Methods and apparatus for dynamically adding and deleting new code to previously validated application executing in a secured runtime. New code is written to a portion of secured memory not executable by application. New code is validated to ensure it cannot directly call operating system, address memory outside of secured memory, or modify secured memory state. Indirect branch instructions may only target addresses aligned on fixed size boundaries within the secured memory. Validated code is copied to portion of secured memory executable by application in two stage process that ensures partially copied segments cannot be executed. Validated new code can be deleted once all threads reach safe execution point, provided code was previously inserted as unit or contains no internal targets that can be called by code not also being deleted.
Public/Granted literature
- US20130333031A1 DYNAMIC CODE INSERTION AND REMOVAL FOR STATIC ANALYSIS BASED SANDBOXES Public/Granted day:2013-12-12
Information query
