公开(公告)号：US07085935B1

公开(公告)日：2006-08-01

申请号：US09668408

申请日：2000-09-22

Applicant: Carl M. Ellison ,  Roger A. Golliver ,  Howard C. Herbert ,  Derrick C. Lin ,  Francis X. McKeen ,  Gilbert Neiger ,  Ken Reneris ,  James A. Sutton ,  Shreekant S. Thakkar ,  Millind Mittal

Inventor： Carl M. Ellison ,  Roger A. Golliver ,  Howard C. Herbert ,  Derrick C. Lin ,  Francis X. McKeen ,  Gilbert Neiger ,  Ken Reneris ,  James A. Sutton ,  Shreekant S. Thakkar ,  Millind Mittal

IPC: G08F13/14

CPC classification number: G06F12/1491

Abstract: A chipset is initialized in a secure environment for an isolated execution mode by an initialization storage. The secure environment has a plurality of executive entities and is associated with an isolated memory area accessible by at least one processor. The at least one processor has a plurality of threads and operates in one of a normal execution mode and the isolated execution mode. The executive entities include a processor executive (PE) handler. PE handler data corresponding to the PE handler are stored in a PE handler storage. The PE handler data include a PE handler image to be loaded into the isolated memory area after the chipset is initialized. The loaded PE handler image corresponds to the PE handler.

公开(公告)号：US07073042B2

公开(公告)日：2006-07-04

申请号：US10319900

申请日：2002-12-12

Applicant: Richard Uhlig ,  Gilbert Neiger ,  Erik Cota-Robles ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Michael Kozuch ,  Steven M Bennett

Inventor： Richard Uhlig ,  Gilbert Neiger ,  Erik Cota-Robles ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Michael Kozuch ,  Steven M Bennett

IPC: G06F12/10

CPC classification number: G06F12/145 ,  G06F12/1027 ,  G06F12/1036 ,  G06F12/109

Abstract: In one embodiment, when it is determined that a modification of content of an active address translation data structure is required, an entry in the active address translation data structure is modified to conform to a corresponding entry in a guest address translation data structure. During the modification, a bit field including one or more access control indicators in the entry of the active address translation data structure is not overwritten with corresponding data from the guest address translation data structure.

Abstract translation: 在一个实施例中，当确定需要修改活动地址转换数据结构的内容时，修改活动地址转换数据结构中的条目以符合访客地址转换数据结构中的对应条目。 在修改期间，包含活动地址转换数据结构条目中的一个或多个访问控制指示符的比特字段不会被来自访客地址转换数据结构的相应数据所覆盖。

公开(公告)号：US07020738B2

公开(公告)日：2006-03-28

申请号：US10676737

申请日：2003-09-30

Applicant: Gilbert Neiger ,  Stephen Chou ,  Erik Cota-Robles ,  Stalinselvaraj Jevasingh ,  Alain Kagi ,  Michael Kozuch ,  Richard Uhlig ,  Sebastian Schoenberg

Inventor： Gilbert Neiger ,  Stephen Chou ,  Erik Cota-Robles ,  Stalinselvaraj Jevasingh ,  Alain Kagi ,  Michael Kozuch ,  Richard Uhlig ,  Sebastian Schoenberg

IPC: G06F13/00

CPC classification number: G06F9/45558 ,  G06F12/0284 ,  G06F12/109 ,  G06F2009/45583

Abstract: One embodiment of the invention is method for resolving address space conflicts between a virtual machine monitor and a guest operating system. The method includes allocating an address space for the operating system and an address space for the monitor. The method also includes mapping a portion of the monitor into the address space allocated for the operating system and the address space allocated for the monitor, and locating another portion of the monitor in the address space allocated for the monitor. The method also includes detecting that the operating system attempts to access a region occupied by the portion of the monitor within the address space allocated for the operating system, and relocating that portion of the monitor within that address space to allow the operating system to access the region previously occupied by that portion of the monitor.

Abstract translation: 本发明的一个实施例是用于解决虚拟机监视器和客户操作系统之间的地址空间冲突的方法。 该方法包括为操作系统分配地址空间和用于监视器的地址空间。 该方法还包括将监视器的一部分映射到为操作系统分配的地址空间和为监视器分配的地址空间，以及将监视器的另一部分定位在为监视器分配的地址空间中。 该方法还包括检测操作系统尝试访问由分配给操作系统的地址空间内的监视器部分占据的区域，以及将该监视器的该部分重新定位在该地址空间内，以允许操作系统访问 以前由监视器的该部分占据的区域。

公开(公告)号：US06996748B2

公开(公告)日：2006-02-07

申请号：US10184798

申请日：2002-06-29

Applicant: Richard Uhlig ,  Andrew V. Anderson ,  Steve Bennett ,  Erik Cota-Robles ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Gilbert Neiger

Inventor： Richard Uhlig ,  Andrew V. Anderson ,  Steve Bennett ,  Erik Cota-Robles ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Gilbert Neiger

IPC: G06F11/00

CPC classification number: G06F11/0712 ,  G06F11/0751

Abstract: In one embodiment, fault information relating to a fault associated with the operation of guest software is received. Further, a determination is made as to whether the fault information satisfies one or more fault filtering criteria. If the determination is positive, the guest software is permitted to disregard the fault.

Abstract translation: 在一个实施例中，接收到与客户软件的操作相关联的故障的故障信息。 此外，确定故障信息是否满足一个或多个故障过滤标准。 如果确定是肯定的，则客户软件被允许忽略该故障。

公开(公告)号：US20050240819A1

公开(公告)日：2005-10-27

申请号：US10814569

申请日：2004-03-30

Applicant: Steven Bennett ,  Andrew Anderson ,  Erik Cota-Robles ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Gilbert Neiger ,  Richard Uhlig ,  Sanjoy Mondal ,  Jason Brandt

Inventor： Steven Bennett ,  Andrew Anderson ,  Erik Cota-Robles ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Gilbert Neiger ,  Richard Uhlig ,  Sanjoy Mondal ,  Jason Brandt

IPC: G06F9/44 ,  G06F9/455 ,  G06F11/00 ,  G06F11/36

CPC classification number: G06F11/3664 ,  G06F9/45558 ,  G06F2009/45579 ,  G06F2009/45591

Abstract: In one embodiment, a method includes receiving a request to transition control to a virtual machine (VM) from a virtual machine monitor (VMM), determining that a single-stepping indicator is set to a single stepping value, and transitioning control to the VM. Further, if an execution of a first instruction in the VM completes successfully, control is transitioned to the VMM following the successful completion of the execution of the first instruction.

Abstract translation: 在一个实施例中，一种方法包括从虚拟机监视器（VMM）接收向虚拟机（VM）转换控制的请求，确定单步指标被设置为单个步进值，以及将控制转换到VM 。 此外，如果VM中的第一指令的执行成功完成，则在成功完成第一指令的执行之后，将控制转换到VMM。

公开(公告)号：US20050240700A1

公开(公告)日：2005-10-27

申请号：US10816233

申请日：2004-03-31

Applicant: Steven Bennett ,  Andrew Anderson ,  Erik Cota-Robles ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Gilbert Neiger ,  Richard Uhlig

Inventor： Steven Bennett ,  Andrew Anderson ,  Erik Cota-Robles ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Gilbert Neiger ,  Richard Uhlig

IPC: G06F9/455 ,  G06F9/48 ,  G06F13/28

CPC classification number: G06F9/45558 ,  G06F2009/45591

Abstract: In one embodiment, a method includes transitioning control to a virtual machine (VM) upon receiving a request from a virtual machine monitor (VMM), determining that the request to transition control is associated with a request to be informed of an open event window, performing an event window check to determine whether an even window of the VM is open, and transitioning control to the VMM if the event window check indicates that the event window of the VM is open.

Abstract translation: 在一个实施例中，一种方法包括：在接收到来自虚拟机监视器（VMM）的请求时，将控制转换到虚拟机（VM），确定转换控制请求与被通知打开事件窗口的请求相关联， 执行事件窗口检查以确定VM的偶数窗口是否打开，以及如果事件窗口检查指示VM的事件窗口打开，则将控制转换到VMM。

公开(公告)号：US20050071840A1

公开(公告)日：2005-03-31

申请号：US10663206

申请日：2003-09-15

Applicant: Gilbert Neiger ,  Steven Bennett ,  Alain Kagi ,  Stalinselvaraj Jeyasingh ,  Andrew Anderson ,  Richard Uhlig ,  Erik Cota-Robles ,  Scott Rodgers ,  Lawrence Smith

Inventor： Gilbert Neiger ,  Steven Bennett ,  Alain Kagi ,  Stalinselvaraj Jeyasingh ,  Andrew Anderson ,  Richard Uhlig ,  Erik Cota-Robles ,  Scott Rodgers ,  Lawrence Smith

IPC: G06F9/455

CPC classification number: G06F9/45533

Abstract: In one embodiment, a method for handling privileged events in a virtual machine environment includes detecting an occurrence of a privileged event, determining which one of multiple virtual machine monitors (VMMs) is to handle the privileged event, and transitioning control to this VMM.

Abstract translation: 在一个实施例中，用于处理虚拟机环境中的特权事件的方法包括检测特权事件的发生，确定多个虚拟机监视器（VMM）中的哪一个来处理特权事件，以及将控制转换到该VMM。

公开(公告)号：US20050060703A1

公开(公告)日：2005-03-17

申请号：US10663205

申请日：2003-09-15

Applicant: Steven Bennett ,  Andrew Anderson ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Gilbert Neiger ,  Richard Uhlig ,  Michael Kozuch ,  Lawrence Smith ,  Scott Rodgers

Inventor： Steven Bennett ,  Andrew Anderson ,  Stalinselvaraj Jeyasingh ,  Alain Kagi ,  Gilbert Neiger ,  Richard Uhlig ,  Michael Kozuch ,  Lawrence Smith ,  Scott Rodgers

IPC: G06F9/455

CPC classification number: G06F9/45533

Abstract: In one embodiment, a request to transition control to a virtual machine (VM) is received from a virtual machine monitor (VMM) and a determination is made as to whether the VMM has requested a delivery of a fault to the VM. If the determination is positive, the fault is delivered to the VM when control is transitioned to the VM.

Abstract translation: 在一个实施例中，从虚拟机监视器（VMM）接收到转换到虚拟机（VM）的控制的请求，并且确定VMM是否已请求向VM发送故障。 如果确定为肯定，则当控制转换到VM时，将故障传递给VM。

公开(公告)号：US06795905B1

公开(公告)日：2004-09-21

申请号：US09672603

申请日：2000-09-29

Applicant: Carl M. Ellison ,  Roger A. Golliver ,  Howard C. Herbert ,  Derrick C. Lin ,  Francis X. McKeen ,  Gilbert Neiger ,  Ken Reneris ,  James A. Sutton ,  Shreekant S. Thakkar ,  Millind Mittal

Inventor： Carl M. Ellison ,  Roger A. Golliver ,  Howard C. Herbert ,  Derrick C. Lin ,  Francis X. McKeen ,  Gilbert Neiger ,  Ken Reneris ,  James A. Sutton ,  Shreekant S. Thakkar ,  Millind Mittal

IPC: G06F1200

CPC classification number: G06F21/53 ,  G06F9/30189 ,  G06F12/1491 ,  G06F21/567 ,  G06F21/71 ,  G06F21/74 ,  G06F21/85 ,  G06F2221/2105 ,  G06F2221/2141 ,  G06F2221/2145

Abstract: An access transaction generated by a processor is configured using a configuration storage containing a configuration setting. The processor has a normal execution mode and an isolated execution mode. The access transaction has access information. Access to the configuration storage is controlled. An access grant signal is generated using the configuration setting and the access information. The access grant signal indicates if the access transaction is valid.

Abstract translation: 使用包含配置设置的配置存储来配置由处理器生成的访问事务。 处理器具有正常执行模式和隔离执行模式。 访问事务具有访问信息。 控制对配置存储的访问。 使用配置设置和访问信息生成访问许可信号。 访问许可信号指示访问事务是否有效。

公开(公告)号：US06760441B1

公开(公告)日：2004-07-06

申请号：US09539348

申请日：2000-03-31

Applicant: Carl M. Ellison ,  Roger A. Golliver ,  Howard C. Herbert ,  Derrick C. Lin ,  Francis X. McKeen ,  Gilbert Neiger ,  Ken Reneris ,  James A. Sutton ,  Shreekant S. Thakkar ,  Millind Mittal

Inventor： Carl M. Ellison ,  Roger A. Golliver ,  Howard C. Herbert ,  Derrick C. Lin ,  Francis X. McKeen ,  Gilbert Neiger ,  Ken Reneris ,  James A. Sutton ,  Shreekant S. Thakkar ,  Millind Mittal

IPC: H04L900

CPC classification number: G06F21/53 ,  G06F21/57 ,  G06F2221/2101 ,  G06F2221/2105

Abstract: The present invention is a method, apparatus, and system to generate a key hierarchy for use in an isolated execution environment of a protected platform. In order to bind secrets to particular code operating in isolated execution, a key hierarchy comprising a series of symmetric keys for a standard symmetric cipher is utilized. The protected platform includes a processor that is configured in one of a normal execution mode and an isolated execution mode. A key storage stores an initial key that is unique for the platform. A cipher key creator located in the protected platform creates the hierarchy of keys based upon the initial key. The cipher key creator creates a series of symmetric cipher keys to protect the secrets of loaded software code.

Abstract translation: 本发明是一种用于生成在受保护平台的隔离执行环境中使用的密钥层级的方法，装置和系统。 为了将秘密绑定到在隔离执行中操作的特定代码，使用包括用于标准对称密码的一系列对称密钥的密钥层次。 受保护平台包括被配置为正常执行模式和隔离执行模式之一的处理器。 密钥存储存储该平台独有的初始密钥。 位于受保护平台中的加密密钥创建者基于初始密钥创建密钥的层次结构。 密码密钥创建者创建一系列对称密钥，以保护加载的软件代码的秘密。