会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 7. 发明授权
    • Controlling access to multiple isolated memories in an isolated execution environment
    • 在独立的执行环境中控制对多个隔离存储器的访问
    • US06678825B1
    • 2004-01-13
    • US09618738
    • 2000-07-18
    • Carl M. EllisonRoger A. GolliverHoward C. HerbertDerrick C. LinFrancis X. McKeenGilbert NeigerKen RenerisJames A. SuttonShreekant S. ThakkarMillind Mittal
    • Carl M. EllisonRoger A. GolliverHoward C. HerbertDerrick C. LinFrancis X. McKeenGilbert NeigerKen RenerisJames A. SuttonShreekant S. ThakkarMillind Mittal
    • G06F1760
    • G06F12/145G06F12/0831G06F12/1009G06F12/1491G06F21/74G06F2212/1016G06F2212/1041G06F2212/1052
    • The present invention provides a method, apparatus, and system for controlling memory accesses to multiple isolated memory areas in an isolated execution environment. A page manager is used to distribute a plurality of pages to a plurality of different areas of a memory, respectively. The memory is divided into non-isolated areas and isolated areas. The page manager is located in an isolated area of memory. Further, a memory ownership page table describes each page of memory and is also located in an isolated area of memory. The page manager assigns an isolated attribute to a page if the page is distributed to an isolated area of memory. On the other hand, the page manager assigns a non-isolated attribute to a page if the page is distributed to a non-isolated area of memory. The memory ownership page table records the attribute for each page. In one embodiment, a processor having a normal execution mode and an isolated execution mode generates an access transaction. The access transaction is configured using a configuration storage that contains configuration settings related to a page and access information. An access checking circuit coupled to the configuration storage checks the access transaction using at least one of the configuration settings and the access information and generates an access grant signal if the access transaction is valid.
    • 本发明提供一种用于控制对隔离执行环境中的多个隔离存储器区域的存储器访问的方法,装置和系统。 页面管理器用于分别将多个页面分发到存储器的多个不同区域。 记忆分为非隔离区和隔离区。 页面管理器位于隔离区内。 此外,存储器所有权页表描述了存储器的每一页,并且还位于存储器的隔离区域中。 页面管理器将一个隔离的属性分配给页面,如果该页面被分发到一个隔离的内存区域。 另一方面,如果页面被分发到存储器的非隔离区域,则页面管理器将非隔离属性分配给页面。 内存所有权页表记录每个页面的属性。 在一个实施例中,具有正常执行模式和隔离执行模式的处理器生成访问事务。 访问事务使用包含与页面和访问信息相关的配置设置的配置存储进行配置。 耦合到配置存储器的访问检查电路使用配置设置和访问信息中的至少一个来检查访问事务,并且如果访问事务有效则生成访问许可信号。