Virtual high privilege mode for a system management request
First Claim
Patent Images
1. A computing system comprising:
- a processor;
a physical basic input/output system (BIOS);
a virtual machine monitor (VMM) to manage a trusted virtual machine (VM); and
a virtual high-privilege mode in the trusted VM to handle a system management request,the VMM to trap requests to access functionalities of the physical BIOS from sources other than the trusted VM, the trapping of the requests preventing the requests from being communicated to the physical BIOS.
1 Assignment
0 Petitions
Accused Products
Abstract
A computing system and a method of handling a system management request. The computing system includes a virtual high-privilege mode in a trusted domain managed by the virtual machine monitor. The virtual high-privilege mode handles the system management request.
-
Citations
20 Claims
-
1. A computing system comprising:
-
a processor; a physical basic input/output system (BIOS); a virtual machine monitor (VMM) to manage a trusted virtual machine (VM); and a virtual high-privilege mode in the trusted VM to handle a system management request, the VMM to trap requests to access functionalities of the physical BIOS from sources other than the trusted VM, the trapping of the requests preventing the requests from being communicated to the physical BIOS. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of handling a system management request in a computing system, comprising:
-
managing, by a virtual machine monitor (VMM), a trusted virtual machine (VM) with a virtual high-privilege mode, the trusted VM with the virtual high-privilege mode to receive the system management request; preventing the system management request from initiating a system management mode at a processor of the computing system; handling the system management request by the trusted VM with the virtual high-privilege mode; and trapping, by the VMM, requests to a physical basic input/output system (BIOS) of the computing system from sources other than the trusted VM, the trapping of the requests preventing the requests from being communicated to the physical BIOS. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory computer readable medium storing instructions that upon execution cause a computing system to:
-
manage, by a virtual machine monitor (VMM), a trusted virtual machine (VM); receive a system management request by a virtual high-privilege mode environment in the trusted VM; prevent the system management request from initiating a system management mode; handle the system management request in the virtual high-privilege mode environment of the trusted VM; trap, by the VMM, requests to a physical basic input/output system (BIOS) of the computing system from sources other than the trusted VM, the trapping of the requests preventing the requests from being communicated to the physical BIOS. - View Dependent Claims (17, 18, 19, 20)
-
Specification