Invention Grant
US09436619B2 Multi-level, hardware-enforced domain separation using a separation kernel on a multicore processor with a shared cache
有权
在多核处理器上使用分层内核与共享高速缓存进行多级硬件强制域分离
- Patent Title: Multi-level, hardware-enforced domain separation using a separation kernel on a multicore processor with a shared cache
- Patent Title (中): 在多核处理器上使用分层内核与共享高速缓存进行多级硬件强制域分离
-
Application No.: US14480456Application Date: 2014-09-08
-
Publication No.: US09436619B2Publication Date: 2016-09-06
- Inventor: Brandon Woolley
- Applicant: Raytheon Company
- Applicant Address: US MA Waltham
- Assignee: Raytheon Company
- Current Assignee: Raytheon Company
- Current Assignee Address: US MA Waltham
- Main IPC: G06F12/08
- IPC: G06F12/08 ; G06F12/14 ; G06F3/06 ; G06F12/10 ; G06F9/455 ; G06F9/46 ; G06F9/54
Abstract:
A separation kernel isolating memory domains within a shared system memory is executed on the cores of a multicore processor having hardware security enforcement for static virtual address mappings, to implement an efficient embedded multi-level security system. Shared caches are either disabled or constrained by the same static virtual address mappings using the hardware security enforcement available, to isolate domains accessible to select cores and reduce security risks from data co-mingling.
Public/Granted literature
Information query
