Security domain in virtual environment
First Claim
Patent Images
1. A computer-implemented method of generating a security domain, the method comprising:
- defining the security domain representing a bounded area of a Virtual Machine for storing protected objects of the Virtual Machine to provide conditional access to a Trusted Platform Module (TMP) register,the security domain including kernel-space and user-space objects, and having a flag indicating the validity of the security domain;
allocating a memory space to a security domain, defining a root of trust area and associating computer resources with the security domain, such that the root of trust is guaranteed to be secure upon initialization of the security domain;
initializing the security domain using the root of trust, the security domain utilizing the memory space;
loading executable code into the security domain and the memory space;
allowing the executable code in the security domain access to the physical resources;
giving the executable code in the security domain permission to access the memory space; and
upon an attempt of illegal access to the memory space, setting the validity flag to indicate invalidity and invalidating the security domain;
wherein the domain invalidation is detectable by a user, andwherein, as long as the validity flag does not indicate invalidity, data stored in the memory space is known to be uncompromised.
6 Assignments
0 Petitions
Accused Products
Abstract
A system, method and computer program product for an isolated security domain which is a bounded area of the VM for protected objects. The objects are software units (including executable code data), hardware units (e.g., ports) or a combination thereof. The secure units in this area are accessible using secure rules used to ensure that objects are not malware. Authentication for connections to security domain is required and certain areas of the domain are made to be read only.
-
Citations
31 Claims
-
1. A computer-implemented method of generating a security domain, the method comprising:
-
defining the security domain representing a bounded area of a Virtual Machine for storing protected objects of the Virtual Machine to provide conditional access to a Trusted Platform Module (TMP) register, the security domain including kernel-space and user-space objects, and having a flag indicating the validity of the security domain; allocating a memory space to a security domain, defining a root of trust area and associating computer resources with the security domain, such that the root of trust is guaranteed to be secure upon initialization of the security domain; initializing the security domain using the root of trust, the security domain utilizing the memory space; loading executable code into the security domain and the memory space; allowing the executable code in the security domain access to the physical resources; giving the executable code in the security domain permission to access the memory space; and upon an attempt of illegal access to the memory space, setting the validity flag to indicate invalidity and invalidating the security domain; wherein the domain invalidation is detectable by a user, and wherein, as long as the validity flag does not indicate invalidity, data stored in the memory space is known to be uncompromised. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A system for generating a security domain on a computer having a processor and a memory, the system comprising:
-
a security domain representing a bounded area of a Virtual Machine for storing protected objects of the Virtual Machine to provide conditional access to a Trusted Platform Module (TMP) register, the security domain including kernel-space and user space-objects, and having a flag indicating the validity of the security domain a memory space in the memory allocated allocate to the security domain, a root of trust area having computer resources associated with the security domain, such that the root of trust is guaranteed to be secure upon initialization of the security domain; executable code loaded into the security domain and the memory space, such that the executable code in the security domain is permitted access to the physical resources to the memory space; and the security domain being invalidated upon an attempt of illegal access to the memory space, and the validity flag being set to indicate invalidity and the domain invalidation being detectable by a user and wherein, as long as the validity flag does not indicate invalidity, data stored in the memory space is known to be uncompromised.
-
Specification