logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8424082 B1

PDFFull Text
Date of Patent:
Apr. 16, 2013

Filed:

May. 08, 2008

Safely executing an untrusted native code module on a computing device

Applicants:

J. Bradley Chen, Los Gatos, CA (US);

Matthew T. Harren, Fremont, CA (US);

Matthew Papakipos, Palo Alto, CA (US);

David C. Sehr, Cupertino, CA (US);

Bennet S. Yee, Mountain View, CA (US);

Gregory Dardyk, Menlo Park, CA (US);

Inventors:

J. Bradley Chen, Los Gatos, CA (US);

Matthew T. Harren, Fremont, CA (US);

Matthew Papakipos, Palo Alto, CA (US);

David C. Sehr, Cupertino, CA (US);

Bennet S. Yee, Mountain View, CA (US);

Gregory Dardyk, Menlo Park, CA (US);

Assignee:

Google Inc., Mountain View, CA (US);

Attorney:

Fish & Richardson P.C.

Primary Examiner:

Jung Kim

Assistant Examiner:

Thomas Ho

Int. Cl.
CPC ...
G06F 21/00 (2006.01);
U.S. Cl.
CPC ...
Abstract

A system that safely executes a native code module on a computing device. During operation, the system receives the native code module, which is comprised of untrusted native program code expressed using native instructions in the instruction set architecture associated with the computing device. The system then loads the native code module into a secure runtime environment, and proceeds to execute a set of instructions from the native code module in the secure runtime environment. The secure runtime environment enforces code integrity, control-flow integrity, and data integrity for the native code module. Furthermore, the secure runtime environment moderates which resources can be accessed by the native code module on the computing device and/or how these resources can be accessed. By executing the native code module in the secure runtime environment, the system facilitates achieving native code performance for untrusted program code without a significant risk of unwanted side effects.

Find Patent Forward Citations

Loading…