INPUT VERIFICATION
First Claim
1. A computing apparatus comprising:
- a trusted execution environment (TEE); and
one or more logic elements comprising an input verification engine (IVE) for operating within the TEE, and operable for;
receiving an input;
validating the input; and
exporting the input to an application outside of the TEE.
10 Assignments
0 Petitions
Accused Products
Abstract
In an example, a computing device may an input verification engine (IVE) that provides input verification services within a trusted execution environment (TEE), including a memory enclave. Taking a Java-based Android application as an example, the IVE securely verifies and validates user inputs for sensitive computing applications, without exposing the inputs to external applications. The IVE may be implemented in native C/C++ or similar, or may provide instructions to dynamically provision an enclave and import a minimal Java Virtual Machine (JVM) into the enclave so that the IVE can run in Java. The IVE may also contain binary analysis tools to analyze an input binary to identify and tag portions that receive user input, so that in a binary translation, those portions can be run within the enclave.
33 Citations
25 Claims
-
1. A computing apparatus comprising:
-
a trusted execution environment (TEE); and one or more logic elements comprising an input verification engine (IVE) for operating within the TEE, and operable for; receiving an input; validating the input; and exporting the input to an application outside of the TEE. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. One or more computer-readable storage mediums having stored thereon instructions that, when executed, instruct a processor to provide an input verification engine (IVE) within a trusted execution environment (TEE), the IVE operable for:
-
receiving an input; validating the input; and exporting the input to an application outside of the TEE. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23)
-
-
24. A method of providing an input verification engine (IVE) within a trusted execution environment (TEE), comprising:
-
receiving an input; validating the input; and exporting the input to an application outside of the TEE. - View Dependent Claims (25)
-
Specification