logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8181176 B1

PDFFull Text
Date of Patent:
May. 15, 2012

Filed:

Jun. 21, 2010

Uniform storage device access using partial virtual machine executing within a secure enclave session

Applicants:

Hua Zhou, Shanghai, CN;

Vincent J. Zimmer, Federal Way, WA (US);

Michael A. Rothman, Puyallup, WA (US);

Yi Qian, Shanghai, CN;

Junwei Stanley Chen, Shanghai, CN;

Fujin Huang, Shanghai, CN;

Inventors:

Hua Zhou, Shanghai, CN;

Vincent J. Zimmer, Federal Way, WA (US);

Michael A. Rothman, Puyallup, WA (US);

Yi Qian, Shanghai, CN;

Junwei Stanley Chen, Shanghai, CN;

Fujin Huang, Shanghai, CN;

Assignee:

Intel Corporation, Santa Clara, CA (US);

Attorney:

Steven Skabrat

Primary Examiner:

Meng An

Assistant Examiner:

Benjamin Wu

Int. Cl.
CPC ...
G06F 9/455 (2006.01); G06F 3/00 (2006.01); G06F 13/00 (2006.01);
U.S. Cl.
CPC ...
Abstract

In a computing system having a processor package, an operating system, and a physical I/O device, a partial virtual machine is provided to instantiate a virtual I/O device corresponding to the physical I/O device, the virtual I/O device having a virtual I/O controller. The partial virtual machine includes an I/O port trap to capture an I/O request to the virtual I/O device by the operating system; an I/O controller emulator coupled to the I/O port trap to handle an I/O control request to the virtual I/O controller, when the I/O request comprises an I/O control request; an I/O device emulator coupled to the I/O port trap component to handle an I/O access request to communicate with the virtual I/O device, when the I/O request comprises an I/O access request; and a device driver coupled to the I/O controller emulator and the I/O device emulator to communicate with the physical I/O device based at least in part on the I/O control request and the I/O access request. The partial virtual machine executes within a secure enclave session within the processor package, improving security of I/O transactions by preventing access to the partial virtual machine by the operating system.

Find Patent Forward Citations

Loading…