Methods and systems for preventing access to display graphics generated by a trusted virtual machine
First Claim
1. In a computing device executing a hypervisor hosting a trusted virtual machine and a non-trusted virtual machine, a method for preventing the non-trusted virtual machine from reading the graphical output of the trusted virtual machine, comprising:
- receiving, by a graphics manager executed by a processor of the computing device, a first request from the trusted virtual machine executed by the computing device to render graphical data using a graphics processing unit of the computing device;
assigning, by the graphics manager to the trusted virtual machine, a secure section of a memory of the graphics processing unit;
rendering, by the graphics manager, graphics from the trusted virtual machine graphical data to the secure section of the graphics processing unit memory;
receiving, by the graphics manager, a second request from the non-trusted virtual machine executed by the computing device to read graphics rendered from the trusted virtual machine graphical data and stored in the secure section of the graphics processing unit memory;
preventing, by the graphics manager responsive to receiving the second request, the non- trusted virtual machine from reading the trusted virtual machine rendered graphics stored in the secure section of the graphics processing unit memory;
receiving, by the graphics manager, a third request from an application executing on the non-trusted virtual machine to render a second set of graphical data using the graphics processing unit, the application generating the second set of graphical data; and
rendering, by the graphics manager, graphics from the second set of graphical data to a section of the graphics processing unit memory not comprising the secure section of the graphics processing unit memory.
7 Assignments
0 Petitions
Accused Products
Abstract
The methods and systems provide for preventing a non-trusted virtual machine from reading the graphical output of a trusted virtual machine. A graphics manager receives a request from a trusted virtual machine to render graphical data using a graphics processing unit. The graphics manager assigns, to the trusted virtual machine, a secure section of a memory of the graphics processing unit. The graphics manager renders graphics from the trusted virtual machine graphical data to the secure section of the graphics processing unit memory. The graphics manager receives a request from a non-trusted virtual machine to read graphics rendered from the trusted virtual machine graphical data and stored in the secure section of the graphics processing unit memory, and prevents the non-trusted virtual machine from reading the trusted virtual machine rendered graphics stored in the secure section of the graphics processing unit memory.
43 Citations
14 Claims
-
1. In a computing device executing a hypervisor hosting a trusted virtual machine and a non-trusted virtual machine, a method for preventing the non-trusted virtual machine from reading the graphical output of the trusted virtual machine, comprising:
-
receiving, by a graphics manager executed by a processor of the computing device, a first request from the trusted virtual machine executed by the computing device to render graphical data using a graphics processing unit of the computing device; assigning, by the graphics manager to the trusted virtual machine, a secure section of a memory of the graphics processing unit; rendering, by the graphics manager, graphics from the trusted virtual machine graphical data to the secure section of the graphics processing unit memory; receiving, by the graphics manager, a second request from the non-trusted virtual machine executed by the computing device to read graphics rendered from the trusted virtual machine graphical data and stored in the secure section of the graphics processing unit memory; preventing, by the graphics manager responsive to receiving the second request, the non- trusted virtual machine from reading the trusted virtual machine rendered graphics stored in the secure section of the graphics processing unit memory; receiving, by the graphics manager, a third request from an application executing on the non-trusted virtual machine to render a second set of graphical data using the graphics processing unit, the application generating the second set of graphical data; and rendering, by the graphics manager, graphics from the second set of graphical data to a section of the graphics processing unit memory not comprising the secure section of the graphics processing unit memory. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. In a computing device executing a hypervisor hosting a trusted virtual machine and a non-trusted virtual machine, a system for preventing the non-trusted virtual machine from reading the graphical output of the trusted virtual machine, comprising:
-
the computing device comprising; a processor executing a graphics manager and the hypervisor hosting the trusted virtual machine and the non-trusted virtual machine, and a graphics processing unit, comprising a memory; and wherein the graphics manager is configured to; receive a first request from the trusted virtual machine to render graphical data using the graphics processing unit, assign, to the trusted virtual machine, a secure section of the memory of the graphics processing unit, render graphics from the trusted virtual machine graphical data to the secure section of the graphics processing unit memory, receive a second request from the non-trusted virtual machine to read graphics rendered from the trusted virtual machine graphical data and stored in the secure section of the graphics processing unit memory, prevent the non-trusted virtual machine from reading the trusted virtual machine rendered graphics stored in the secure section of the graphics processing unit memory, responsive to receiving the second request, receive a third request from the application to render a second set of graphical data using the graphics processing unit, the application generating the second set of graphical data, and render graphics from the second set of graphical data to a section of the graphics processing unit memory not comprising the secure section of the graphics processing unit memory. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
Specification