Manifest-based trusted agent management in a trusted operating system environment
First Claim
Patent Images
1. A method implemented at least in part by a computing device, the method comprising:
- obtaining a manifest that describes what types of binaries can be loaded into a process space for a trusted application, the manifest comprising;
a first portion including data representing a unique identifier of the trusted application;
a second portion including data indicating whether a particular one or more binaries can be loaded into the process space for the trusted application;
a third portion derived from the data in both the first portion and the second portion by generating a digital signature over the first and second portions; and
a fourth portion that includes data representing a list of one or more export statements that allow a secret associated with the trusted application to be exported to another trusted application;
wherein each of the one or more export statements comprises;
an identifier of the manifest;
an identifier of another manifest that corresponds to the trusted application to which the secret is to be exported; and
a digital signature over both the identifier of the manifest and the identifier of the other manifest; and
using the manifest to control loading of binaries into the process space for the trusted application.
2 Assignments
0 Petitions
Accused Products
Abstract
Manifest-based trusted agent management in a trusted operating system environment includes receiving a request to execute a process is received and setting up a virtual memory space for the process. Additionally, a manifest corresponding to the process is accessed, and which of a plurality of binaries can be executed in the virtual memory space is limited based on indicators, of the binaries, that are included in the manifest.
187 Citations
14 Claims
-
1. A method implemented at least in part by a computing device, the method comprising:
-
obtaining a manifest that describes what types of binaries can be loaded into a process space for a trusted application, the manifest comprising; a first portion including data representing a unique identifier of the trusted application; a second portion including data indicating whether a particular one or more binaries can be loaded into the process space for the trusted application; a third portion derived from the data in both the first portion and the second portion by generating a digital signature over the first and second portions; and a fourth portion that includes data representing a list of one or more export statements that allow a secret associated with the trusted application to be exported to another trusted application; wherein each of the one or more export statements comprises; an identifier of the manifest; an identifier of another manifest that corresponds to the trusted application to which the secret is to be exported; and a digital signature over both the identifier of the manifest and the identifier of the other manifest; and using the manifest to control loading of binaries into the process space for the trusted application. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
Specification