INPUT VERIFICATION
In an example, a computing device may have an input verification engine (IVE) that provides input verification services within a trusted execution environment (TEE), including a memory enclave. Taking a Java-based Android application as an example, the IVE securely verifies and validates user inputs...
Gespeichert in:
| Hauptverfasser: | , |
|---|---|
| Format: | Patent |
| Sprache: | chi ; eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| Zusammenfassung: | In an example, a computing device may have an input verification engine (IVE) that provides input verification services within a trusted execution environment (TEE), including a memory enclave. Taking a Java-based Android application as an example, the IVE securely verifies and validates user inputs for sensitive computing applications, without exposing the inputs to external applications. The IVE may be implemented in native C/C++ or similar, or may provide instructions to dynamically provision an enclave and import a minimal Java Virtual Machine (JVM) into the enclave so that the IVE can run in Java. The IVE may also contain binary analysis tools to analyze an input binary to identify and tag portions that receive user input, so that in a binary translation, those portions can be run within the enclave.
在示例中,计算装置可具有输入验证引擎,其在包含存储器飞地的可信的运行环境(TEE)内提供输入验证服务。以基于Java的Android 应用为例,IVE 安全验证和确认用于敏感计算应用的用户输入,而没有将输入暴露于外部应用。IVE可以以本机C++或类似来实现,或者可提供指令以便动态供给飞地并且将最小的Java虚拟机(JVM)导入到飞地中,使得IVE能够以Java运行。IVE 也可以包含二进制分析工具以便分析输入二 |
|---|