The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Oct. 17, 2017
Filed:
Oct. 23, 2015
Amazon Technologies, Inc., Reno, NV (US);
Nachiketh Rao Potlapally, Arlington, VA (US);
Derek Del Miller, Austin, TX (US);
Mark Bradley Davis, Austin, TX (US);
Matthew Shawn Wilson, Bainbridge Island, WA (US);
Eric Jason Brandwine, Haymarket, VA (US);
Anthony Nicholas Liguori, Bainbridge Island, WA (US);
Rahul Gautam Patel, Austin, TX (US);
AMAZON TECHNOLOGIES, INC., Seattle, WA (US);
Abstract
The performing of virtual machine (VM)-based secure operations is enabled using a trusted co-processor that is able to operate in a secure mode to perform operations in a multi-tenant environment that are protected from other VMs and DOM-0, among other domains and components. A customer VM can contact a VM manager (VMM) to perform an operation with respect to sensitive data. The VMM can trigger secure mode operation, whereby memory pages are marked and access blocked to entities outside a trusted enclave. The trusted co-processer can measure the VMM and compare the result against an earlier result to ensure that the VMM has not been compromised. Once the operations are performed, the trusted co-processor can return the results, and the VMM can exit the secure mode such that access to the marked pages and customer data is restored.