HOST-CONVERTIBLE SECURE ENCLAVES IN MEMORY THAT LEVERAGE MULTI-KEY TOTAL MEMORY ENCRYPTION WITH INTEGRITY

HOST-CONVERTIBLE SECURE ENCLAVES IN MEMORY THAT LEVERAGE MULTI-KEY TOTAL MEMORY ENCRYPTION WITH INTEGRITY

A processor includes a cryptographic engine to control access, using an secure region key identifier (ID), to one or more memory range of memory allocable for flexible conversion to secure pages of architecturally-protected memory regions, and a processor core. The processor core is to, responsive t...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: MAKARAM, Raghunandan, ALEXANDROVICH, Ilya, CHHABRA, Siddartha, ROZAS, Carlos V, OZSOY, Meltem, ZMUDZINSKI, Krystof C, McKEEN, Francis X, JOHNSON, Simon P
Format: Patent
Sprache:eng ; fre ; ger
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A processor includes a cryptographic engine to control access, using an secure region key identifier (ID), to one or more memory range of memory allocable for flexible conversion to secure pages of architecturally-protected memory regions, and a processor core. The processor core is to, responsive to receipt of a request to access the memory, perform a walk of page tables and extended page tables to translate a linear address of the request to a physical address of the memory. The processor core is further to determine that the physical address corresponds to an secure page within the one or more memory range of the memory, that a first key ID located within the physical address does not match the secure region key ID, and issue a page fault and deny access to the secure page in the memory.