Method and system for preventing unauthorized processor mode switches
First Claim
Patent Images
1. A system, comprising:
- a processor adapted to activate multiple security levels for the system; and
a monitoring device coupled to the processor and employing security rules pertaining to said multiple security levels;
wherein the monitoring device restricts usage of the system if the processor activates said security levels in a sequence contrary to the security rules.
1 Assignment
0 Petitions
Accused Products
Abstract
A system comprising a processor adapted to activate multiple security levels for the system and a monitoring device coupled to the processor and employing security rules pertaining to the multiple security levels. The monitoring device restricts usage of the system if the processor activates the security levels in a sequence contrary to the security rules.
-
Citations
19 Claims
-
1. A system, comprising:
-
a processor adapted to activate multiple security levels for the system; and
a monitoring device coupled to the processor and employing security rules pertaining to said multiple security levels;
wherein the monitoring device restricts usage of the system if the processor activates said security levels in a sequence contrary to the security rules. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A device, comprising:
-
a security bus port adapted to couple to a processing unit comprising bits which determine a security level of the processing unit;
a security violation bus port coupled to the security bus port; and
logic coupled to the security and security violation bus ports and adapted to monitor said bits via the security bus port;
wherein, if the logic determines that the processing unit adjusted the bits in a sequence contrary to said security rules, the logic outputs an alert signal via the security violation bus. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A method, comprising:
-
monitoring bits in a processing unit, said bits indicative of a security level of the processing unit; and
determining whether said bits indicate a switch between security levels in a sequence contrary to a predetermined sequence stored on the processing unit. - View Dependent Claims (16, 17, 18, 19)
-
Specification