Apparatus and method for managing processor configuration data
First Claim
1. A data processing apparatus, comprising:
- a processor configured in a plurality of modes and a plurality of domains, said plurality of domains comprising a secure domain and a non-secure domain, said plurality of modes including at least one non-secure mode being a mode in the non-secure domain, at least one secure mode being a mode in the secure domain, and a monitor mode, said processor being operable such that when executing a program in a secure mode said program has access to secure data which is not accessible when said processor is operating in a non-secure mode;
a storage unit configured to store processor configuration data comprising data controlling access to memory by the processor;
said processor being configured at least partially in said monitor mode to execute a monitor program to manage switching between said secure domain and said non-secure domain, said switching including switching the processor configuration data in the storage unit between secure processor configuration data and non-secure processor configuration data;
when in said monitor mode, said monitor program being configured to use monitor mode specific processor configuration data, thereby ensuring that operation of the processor in said monitor mode is unaffected by the switching of the processor configuration data so that the ability of the monitor program to perform the switching of processor configuration data is not comprised.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention provides a data processing apparatus and method for managing processor configuration data. The data processing apparatus comprises a processor operable in a plurality of modes and a plurality of domains, said plurality of domains comprising a secure domain and a non-secure domain, said plurality of modes including at least one non-secure mode being a mode in the non-secure domain, at least one secure mode being a mode in the secure domain, and a monitor mode. The processor is operable such that when executing a program in a secure mode the program has access to secure data which is not accessible when said processor is operating in a non-secure mode. A storage unit is used to store processor configuration data, and the processor is operable at least partially in the monitor mode to execute a monitor program to manage switching between the secure domain and the non-secure domain, the switching including switching the processor configuration data in the storage unit between secure processor configuration data and non-secure processor configuration data. When in the monitor mode, the monitor program is operable to use monitor mode specific processor configuration data, thereby ensuring that operation of the processor in the monitor mode is unaffected by the switching of the processor configuration data.
70 Citations
27 Claims
-
1. A data processing apparatus, comprising:
-
a processor configured in a plurality of modes and a plurality of domains, said plurality of domains comprising a secure domain and a non-secure domain, said plurality of modes including at least one non-secure mode being a mode in the non-secure domain, at least one secure mode being a mode in the secure domain, and a monitor mode, said processor being operable such that when executing a program in a secure mode said program has access to secure data which is not accessible when said processor is operating in a non-secure mode; a storage unit configured to store processor configuration data comprising data controlling access to memory by the processor; said processor being configured at least partially in said monitor mode to execute a monitor program to manage switching between said secure domain and said non-secure domain, said switching including switching the processor configuration data in the storage unit between secure processor configuration data and non-secure processor configuration data; when in said monitor mode, said monitor program being configured to use monitor mode specific processor configuration data, thereby ensuring that operation of the processor in said monitor mode is unaffected by the switching of the processor configuration data so that the ability of the monitor program to perform the switching of processor configuration data is not comprised. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method of managing processor configuration data in a data processing apparatus comprising a processor configured in a plurality of modes and a plurality of domains, said plurality of domains comprising a secure domain and a non-secure domain, said plurality of modes including at least one non-secure mode being a mode in the non-secure domain, at least one secure mode being a mode in the secure domain, and a monitor mode, said processor being operable such that when executing a program in a secure mode said program has access to secure data which is not accessible when said processor is operating in a non-secure mode, said method comprising the steps of:
-
executing on said processor at least partially in said monitor mode a monitor program to manage switching between said secure domain and said non-secure domain, including performing the step of switching the processor configuration data comprising data controlling access to memory by the processor between secure processor configuration data and non-secure processor configuration data; when in said monitor mode, said monitor program using monitor mode specific processor configuration data, thereby ensuring that operation of the processor in said monitor mode is unaffected by the switching of the processor configuration data so that the ability of the monitor program to perform the switching of processor configuration data is not compromised. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A computer program encoded in a computer-readable medium executable to configure a processor in a data processing apparatus to manage processor configuration data, the processor, when executing the computer program, being configured in a plurality of modes and a plurality of domains, said plurality of domains comprising a secure domain and a non-secure domain, said plurality of modes including at least one non-secure mode being a mode in the non-secure domain, at least one secure mode being a mode in the secure domain, and a monitor mode, said processor being configured such that when executing a program in a secure mode said program has access to secure data which is not accessible when said processor is operating in a non-secure mode, the processor, when executing said computer program being configured to perform the steps of:
-
while at least partially in said monitor mode, managing switching between said secure domain and said non-secure domain, including performing the step of switching the processor configuration data comprising data controlling access to memory by the processor between secure processor configuration data and non-secure processor configuration data; and when in said monitor mode, using monitor mode specific processor configuration data, thereby ensuring that operation of the processor in said monitor mode is unaffected by the switching of the processor configuration data so that the ability of the monitor program to perform the switching of processor configuration data is not compromised.
-
Specification