-
公开(公告)号:GB2596024A
公开(公告)日:2021-12-15
申请号:GB202113906
申请日:2020-03-06
Applicant: IBM
Inventor: UTZ BACHER , REINHARD BUENDGEN , JONATHAN BRADBURY , LISA HELLER , FADI BUSABA
IPC: G06F9/455
Abstract: A computer implemented method is disclosed, which includes receiving a query for an amount of storage in memory of a computer system to be donated to a secure interface control of the computer system (1505). The secure interface control can determine the amount of storage to be donated based on a plurality of secure entities supported by the secure interface control as a plurality of predetermined values (1510). The secure interface control can return a response to the query indicative of the amount of storage as a response to the query (1515). A donation of storage to secure for use by the secure interface control can be received based on the response to the query (1520).
-
Patent Agency Ranking
公开(公告)号:GB2596012B
公开(公告)日:2023-01-11
申请号:GB202113069
申请日:2020-03-06
Applicant: IBM
Inventor: JONATHAN BRADBURY , MARTIN SCHWIDEFSKY , CHRISTIAN BORNTRAEGER , LISA CRANTON HELLER , HEIKO CARSTENS , FADI BUSABA
Abstract: An example computer-implemented method includes presenting, by a hardware control of a computing system, an exception to an untrusted entity when the untrusted entity accesses a secure page stored in a memory of the computing system, the exception preventing the untrusted entity from accessing the secure page. The method further includes, in response to the exception, issuing, by the untrusted entity, an export call routine. The method further includes executing, by a secure interface control of the computing system, the export call routine.
-
公开(公告)号:GB2596012A
公开(公告)日:2021-12-15
申请号:GB202113069
申请日:2020-03-06
Applicant: IBM
Inventor: JONATHAN BRADBURY , MARTIN SCHWIDEFSKY , CHRISTIAN BORNTRAEGER , LISA CRANTON HELLER , HEIKO CARSTENS , FADI BUSABA
IPC: G06F21/57
Abstract: An example computer-implemented method includes presenting, by a hardware control of a computing system, an exception to an untrusted entity when the untrusted entity access a secure page stored in a memory of the computing system, the exception preventing the untrusted entity from accessing the secure page. The method further includes, in response to the exception, issuing, by the untrusted entity, an export call routine. The method further includes executing, by a secure interface control of the computing system, the export call routine.
-
公开(公告)号:GB2596024B
公开(公告)日:2022-04-27
申请号:GB202113906
申请日:2020-03-06
Applicant: IBM
Inventor: UTZ BACHER , REINHARD BUENDGEN , JONATHAN BRADBURY , LISA HELLER , FADI BUSABA
IPC: G06F9/455
Abstract: According to one or more embodiments of the present invention, a computer implemented method includes receiving a query for an amount of storage in memory of a computer system to be donated to a secure interface control of the computer system. The secure interface control can determine the amount of storage to be donated based on a plurality of secure entities supported by the secure interface control as a plurality of predetermined values. The secure interface control can return a response to the query indicative of the amount of storage as a response to the query. A donation of storage to secure for use by the secure interface control can be received based on the response to the query.
-
公开(公告)号:GB2595428B
公开(公告)日:2022-04-13
申请号:GB202113915
申请日:2020-02-27
Applicant: IBM
Inventor: FADI BUSABA , LISA HELLER , JONATHAN BRADBURY , CHRISTIAN BORNTRAEGER , CLAUDIO IMBRENDA
Abstract: According to one or more embodiments of the present invention, a computer implemented method includes executing, by a virtual machine that is executing on a host server, a stream of instructions, wherein an instruction from the stream of instructions is to be intercepted to a hypervisor. The method further includes, based on a determination that the virtual machine is a secure virtual machine, preventing the hypervisor from directly accessing any data of the secure virtual machine. The method further includes performing by a secure interface control of the host server, based on a determination that the instruction is not interpretable by the secure interface control itself, extracting one or more parameter data associated with the instruction from the secure virtual machine, and storing the parameter data into a buffer that is accessible by the hypervisor. The instruction is subsequently intercepted into the hypervisor.
-
公开(公告)号:GB2595428A
公开(公告)日:2021-11-24
申请号:GB202113915
申请日:2020-02-27
Applicant: IBM
Inventor: FADI BUSABA , LISA HELLER , JONATHAN BRADBURY , CHRISTIAN BORNTRAEGER , CLAUDIO IMBRENDA
Abstract: A computer implemented method is disclosed. The method includes executing, by a virtual machine that is executing on a host server, a stream of instructions, wherein an instruction from the stream of instructions is to be intercepted to a hypervisor. The method further includes, based on a determination that the virtual machine is a secure virtual machine, preventing the hypervisor from directly accessing any data of the secure virtual machine. The method further includes performing by a secure interface control of the host server, based on a determination that the instruction is not interpretable by the secure interface control itself, extracting one or more parameter data associated with the instruction from the secure virtual machine, and storing the parameter data into a buffer that is accessible by the hypervisor. The instruction is subsequently intercepted into the hypervisor.
-
-
-
-
-
Search Results
6
records
(took 0.016 seconds)
