DYNAMIC GENERATION OF INTEGRITY MANIFEST FOR RUN-TIME VERIFICATION OF SOFTWARE PROGRAM

US 20090172814A1
Filed: 12/31/2007
Published: 07/02/2009
Est. Priority Date: 12/31/2007
Status: Active Grant

First Claim

Patent Images

1. An apparatus comprising:

a memory protection module to create a protected partition in a memory to store an image of a software agent; and

a manifest generation feature to generate an integrity manifest for the software agent from the image of the software agent, the integrity manifest including a relocation fix-up to indicate an offset value to redirect an operation within the software agent to a particular physical memory location, and an expected integrity check value based on the image of the software agent.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A measurement engine generates an integrity manifest for a software program and uses it to perform active platform observation. The integrity manifest indicates an integrity check value for a section of the program'"'"'s code. The measurement engine computes a comparison value on the program'"'"'s image in memory and determines if the comparison value matches the expected integrity check value. If the values do not match, the program'"'"'s image is determined to be modified, and appropriate remedial action may be triggered.

105 Citations

View as Search Results

20 Claims

1. An apparatus comprising:
- a memory protection module to create a protected partition in a memory to store an image of a software agent; and
  
  a manifest generation feature to generate an integrity manifest for the software agent from the image of the software agent, the integrity manifest including a relocation fix-up to indicate an offset value to redirect an operation within the software agent to a particular physical memory location, and an expected integrity check value based on the image of the software agent.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. An apparatus according to claim 1, wherein the manifest generation feature is also to verify a digital signature of the software agent prior to generating the integrity manifest.
  - 3. An apparatus according to claim 1, further comprising a processor to execute the software agent.
  - 4. An apparatus according to claim 3, further comprising an integrity check value determination feature to compute a measured integrity check value during execution of the software agent.
  - 5. An apparatus according to claim 4, further comprising a fix-up application feature to offset the physical memory address of the operation with the offset value prior to the integrity check value determination feature generating the measured integrity check value.
  - 6. An apparatus according to claim 4, further comprising an integrity check feature to compare the measured integrity check value to the expected integrity check value to determine whether the software agent has been modified.

7. A method comprising:
- loading a section of a software program into a protected partition of memory in a system;
  
  generating, on the system, an integrity manifest for the software program, the integrity manifest including a relocation fix-up value and an expected integrity check value;
  
  storing, on the system, the integrity manifest;
  
  computing, during execution of the software program on the system, a measured integrity check value on the section of the software program; and
  
  comparing the measured integrity check value to the expected integrity check value; and
  
  determining that the section of the software program has been modified if the generated integrity check value and the expected value do not match.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
- - 8. A method according to claim 7, further comprising verifying a digital signature of the portion of the software program prior to generating the integrity manifest.
  - 9. A method according to claim 7, further comprising determining whether the section of the software program has been modified based on comparing the measured integrity check value to the expected integrity check value.
  - 10. A method according to claim 7, further comprising recording, during loading the section of the software program, the location and value of relocation fix-ups.
  - 11. A method according to claim 10, wherein generating the integrity manifest includes reversing a relocation fix-up to generate the relocation fix-up value.
  - 12. A method according to claim 7, wherein generating the integrity manifest includes computing the expected integrity check value.
  - 13. A method according to claim 7, wherein the section of the software program includes an update to the software program.
  - 14. A method according to claim 7, wherein the section of the software program includes a patch to the software program.

15. A system comprising:
- a memory;
  
  a memory protection module to create a protected partition in the memory to store an image of a software agent; and
  
  a manifest generation feature to generate an integrity manifest for the software agent from the image of the software agent, the integrity manifest including a relocation fix-up to indicate an offset value to redirect an operation within the software agent to a particular physical memory location, and an expected integrity check value based on the image of the software agent.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. A system according to claim 15, wherein the manifest generation feature is also to verify a digital signature of the software agent prior to generating the integrity manifest.
  - 17. A system according to claim 15, further comprising a processor to execute the software agent.
  - 18. A system according to claim 17, further comprising an integrity check value determination feature to compute a measured integrity check value during execution of the software agent.
  - 19. A system according to claim 18, further comprising a fix-up application feature to offset the physical memory address of the operation with the offset value prior to the integrity check value determination feature generating the measured integrity check value.
  - 20. A system according to claim 18, further comprising an integrity check feature to compare the measured integrity check value to the expected integrity check value to determine whether the software agent has been modified.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Dewan, Prashant, Khosravi, Hormuzd, Savagaonkar, Uday R., Sahita, Ravi, Long, Men, Durham, David

Granted Patent

US 8,364,973 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/23
CPC Class Codes

G06F 21/51   at application loading time...

G06F 21/54   by adding security routines...

G06F 21/64   Protecting data integrity, ...

DYNAMIC GENERATION OF INTEGRITY MANIFEST FOR RUN-TIME VERIFICATION OF SOFTWARE PROGRAM

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

105 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

DYNAMIC GENERATION OF INTEGRITY MANIFEST FOR RUN-TIME VERIFICATION OF SOFTWARE PROGRAM

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

105 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links