Systems and methods for processor virtualization

Systems and methods for processor virtualization

A system for secure processor virtualization including a secure initialization memory and one or more processors coupled to the secure initialization memory is disclosed. The secure initialization memory includes initialization instructions for launching a security runtime environment before operati...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: SMITH, Michael Lane, HINNERSHITZ, Scott Edwin, KAUL, Jason Todd, LOPEZ, David Jose
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A system for secure processor virtualization including a secure initialization memory and one or more processors coupled to the secure initialization memory is disclosed. The secure initialization memory includes initialization instructions for launching a security runtime environment before operating systems and cryptographic keying for security handoffs. The processors are configured to retrieve the initialization instructions from the secure initialization memory at startup, execute the initialization instructions to launch the security runtime environment and retrieve at least a portion of the cryptographic keying, and generate specific keying for chip-level resources the processors by combining instruction sets of the chip-level resources and the cryptographic keying. The processors are further configured to initialize a plurality of isolated enclaves on the security runtime environment and pin chip-level resources to the plurality of enclaves according to the specific keying and by establishing exclusive cryptographic links between the chip-level resources and the plurality of enclaves.