公开(公告)号：WO2008091452A1

公开(公告)日：2008-07-31

申请号：PCT/US2007/087225

申请日：2007-12-12

Applicant: MICROSOFT CORPORATION

Inventor： TRAUT, Eric ,  FOLTZ, Forrest ,  THORNTON, Andrew ,  SINHA, Suyash

IPC: G06F9/06

CPC classification number: G06F12/1491 ,  G06F9/45533 ,  G06F21/554

Abstract: This document describes tools capable of making a portion of operating-system memory associated with a protection agent unalterable or inaccessible from an operating-system privilege mode. In some embodiments, these tools are capable of creating a protection-agent privilege mode by requesting that a virtual machine monitor protect this portion of operating-system memory. In other embodiments, these tools are capable of creating the protection-agent privilege mode by virtualizing a physical processor into multiple virtual processors, at least one of which is a protection-agent virtual processor designed to run the protection agent. By making this portion of operating-system memory unalterable or inaccessible from the operating-system privilege mode, the protection agent may be less vulnerable to attacks by entities operating within the operating-system privilege mode.

Abstract translation: 本文档描述了能够使与操作系统特权模式不可更改或不可访问的保护代理相关联的操作系统内存的一部分的工具。 在一些实施例中，这些工具能够通过请求虚拟机监视器保护操作系统存储器的这一部分来创建保护代理特权模式。 在其他实施例中，这些工具能够通过将物理处理器虚拟化为多个虚拟处理器来创建保护代理特权模式，其中至少一个虚拟处理器是被设计为运行保护代理的保护代理虚拟处理器。 通过使操作系统内存的这一部分从操作系统特权模式变得不可改变或不可访问，保护代理可能不太容易受到在操作系统特权模式下操作的实体的攻击。

公开(公告)号：WO2012148448A1

公开(公告)日：2012-11-01

申请号：PCT/US2011/055591

申请日：2011-10-10

Applicant: MICROSOFT CORPORATION

Inventor： STARKS, John A. ,  GREEN, Dustin L. ,  HARRIS, Todd William ,  JOHN, Mathew ,  RAJARAM, Senthil ,  TRAUT, Eric

IPC: G06F12/08 ,  G06F12/00 ,  G06F9/06

CPC classification number: G06F9/45558 ,  G06F3/061 ,  G06F3/0619 ,  G06F3/0643 ,  G06F3/0644 ,  G06F3/0659 ,  G06F3/0664 ,  G06F3/0673 ,  G06F3/0683 ,  G06F3/0689 ,  G06F3/121 ,  G06F9/455 ,  G06F9/45545 ,  G06F2009/45583

Abstract: In an exemplary embodiment, a virtual disk file can be assigned an identifier and a virtual disk files that is dependent on the virtual disk file can include a copy of the identifier. In the instance that the virtual disk file is opened and data is modified that causes the contents of a virtual disk extent to change the identifier can be changed. If the virtual disk file and the dependent virtual disk file are used to instantiate a virtual disk the difference between identifiers can be detected, which is indicative of the fact that the virtual disk may be corrupted. Other techniques are described in the detailed description, claims, and figures that form a part of this document.

Abstract translation: 在示例性实施例中，可以为虚拟磁盘文件分配标识符，并且依赖于虚拟磁盘文件的虚拟磁盘文件可以包括标识符的副本。 在虚拟磁盘文件被打开并且数据被修改的情况下，可以改变导致虚拟磁盘盘区的内容改变标识符的情况。 如果虚拟磁盘文件和从属虚拟磁盘文件用于实例化虚拟磁盘，则可以检测到标识符之间的差异，这表示虚拟磁盘可能已损坏。 在作为本文档的一部分的详细描述，权利要求和附图中描述了其它技术。

公开(公告)号：WO2008091462A1

公开(公告)日：2008-07-31

申请号：PCT/US2007/088219

申请日：2007-12-19

Applicant: MICROSOFT CORPORATION

Inventor： BAKER, Brandon ,  FIELD, Scott, A. ,  TRAUT, Eric ,  SINHA, Suyash ,  GANGULY, Joy ,  FOLTZ, Forrest ,  CUTLER, David

IPC: G06F9/06 ,  G06F11/30

CPC classification number: G06F21/552 ,  G06F9/468 ,  G06F21/51 ,  G06F21/53 ,  G06F2221/2105 ,  G06F2221/2141 ,  G06F2221/2149

Abstract: This document describes tools capable of enabling a protection agent to determine, from memory inaccessible from an operating-system privilege mode, whether one or more resources of an operating system have been modified. In some instances, these tools may enable the protection agent to reside within a virtual machine monitor. In other instances, the tools may enable the protection agent to reside within a distinct virtual partition provided by the virtual machine monitor. By operating outside of the operating-system privilege mode, the protection agent may be less vulnerable to attacks by entities operating within the operating-system privilege mode.

Abstract translation: 本文档描述了能够使保护代理能够从不能从操作系统特权模式访问的存储器确定操作系统的一个或多个资源是否已被修改的工具。 在某些情况下，这些工具可能使保护代理能够驻留在虚拟机监视器中。 在其他情况下，这些工具可以使保护代理能够驻留在由虚拟机监视器提供的不同的虚拟分区中。 通过在操作系统特权模式之外操作，保护代理可能不太容易受到在操作系统特权模式下操作的实体的攻击。

公开(公告)号：WO2008010877A2

公开(公告)日：2008-01-24

申请号：PCT/US2007/013336

申请日：2007-06-05

Applicant: MICROSOFT CORPORATION

Inventor： HOWELL, Jonathan R. ,  TRAUT, Eric ,  LORCH, Jacob R. ,  DOUCEUR, John R.

IPC: G06F15/16 ,  G06F12/08

CPC classification number: G06F9/45558 ,  G06F11/1484 ,  G06F2009/45566 ,  G06F2201/815

Abstract: A virtual machine monitor (VMM) is configured to enforce deterministic execution of virtual machines in a multiprocessor machine. The VMM is configured to ensure that any communication by physical processors via shared memory is deterministic. When such VMMs are implemented in a distributed environment of multiprocessor machines coupled via a logical communication link, non-deterministic server applications running on virtual machines using the VMM may be replicated.

Abstract translation: 虚拟机监视器（VMM）被配置为强制执行多处理器机器中的虚拟机的确定性执行。 VMM配置为确保物理处理器通过共享内存的任何通信是确定性的。 当这种VMM在通过逻辑通信链路耦合的多处理器机器的分布式环境中实现时，可以复制在使用VMM的虚拟机上运行的非确定性服务器应用程序。

公开(公告)号：EP2106583A1

公开(公告)日：2009-10-07

申请号：EP07869567.3

申请日：2007-12-19

Applicant: Microsoft Corporation

Inventor： BAKER, Brandon ,  FIELD, Scott, A. ,  TRAUT, Eric ,  SINHA, Suyash ,  GANGULY, Joy ,  FOLTZ, Forrest ,  CUTLER, David

IPC: G06F9/06 ,  G06F11/30

CPC classification number: G06F21/552 ,  G06F9/468 ,  G06F21/51 ,  G06F21/53 ,  G06F2221/2105 ,  G06F2221/2141 ,  G06F2221/2149

Abstract: This document describes tools capable of enabling a protection agent to determine, from memory inaccessible from an operating-system privilege mode, whether one or more resources of an operating system have been modified. In some instances, these tools may enable the protection agent to reside within a virtual machine monitor. In other instances, the tools may enable the protection agent to reside within a distinct virtual partition provided by the virtual machine monitor. By operating outside of the operating-system privilege mode, the protection agent may be less vulnerable to attacks by entities operating within the operating-system privilege mode.

公开(公告)号：EP2702493A1

公开(公告)日：2014-03-05

申请号：EP11864454.1

申请日：2011-10-10

Applicant: Microsoft Corporation

Inventor： STARKS, John A. ,  GREEN, Dustin L. ,  HARRIS, Todd William ,  JOHN, Mathew ,  RAJARAM, Senthil ,  TRAUT, Eric

IPC: G06F12/08 ,  G06F12/00 ,  G06F9/06

CPC classification number: G06F9/45558 ,  G06F3/061 ,  G06F3/0619 ,  G06F3/0643 ,  G06F3/0644 ,  G06F3/0659 ,  G06F3/0664 ,  G06F3/0673 ,  G06F3/0683 ,  G06F3/0689 ,  G06F3/121 ,  G06F9/455 ,  G06F9/45545 ,  G06F2009/45583

Abstract: In an exemplary embodiment, a virtual disk file can be assigned an identifier and a virtual disk files that is dependent on the virtual disk file can include a copy of the identifier. In the instance that the virtual disk file is opened and data is modified that causes the contents of a virtual disk extent to change the identifier can be changed. If the virtual disk file and the dependent virtual disk file are used to instantiate a virtual disk the difference between identifiers can be detected, which is indicative of the fact that the virtual disk may be corrupted. Other techniques are described in the detailed description, claims, and figures that form a part of this document.

公开(公告)号：EP2115570A1

公开(公告)日：2009-11-11

申请号：EP07869154.0

申请日：2007-12-12

Applicant: Microsoft Corporation

Inventor： TRAUT, Eric ,  FOLTZ, Forrest ,  THORNTON, Andrew ,  SINHA, Suyash

IPC: G06F9/06

CPC classification number: G06F12/1491 ,  G06F9/45533 ,  G06F21/554

Abstract: This document describes tools capable of making a portion of operating-system memory associated with a protection agent unalterable or inaccessible from an operating-system privilege mode. In some embodiments, these tools are capable of creating a protection-agent privilege mode by requesting that a virtual machine monitor protect this portion of operating-system memory. In other embodiments, these tools are capable of creating the protection-agent privilege mode by virtualizing a physical processor into multiple virtual processors, at least one of which is a protection-agent virtual processor designed to run the protection agent. By making this portion of operating-system memory unalterable or inaccessible from the operating-system privilege mode, the protection agent may be less vulnerable to attacks by entities operating within the operating-system privilege mode.