HYPERVISOR-BASED SECURE CONTAINER

A "Hypervisor Secure Container" (HSC) is a block of memory space that resides inside of a regular process, but is secured from the operating system of the computer it runs on. The HSC is a software container that runs on a hypervisor directly. Data and code within one HSC can only be acces...

Full description

Saved in:
Bibliographic Details
Main Authors Kou, Lei, Leet, Simon, Chitnis, Pushkar V
Format Patent
LanguageEnglish
Published 29.11.2018
Subjects
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online AccessGet full text

Cover

More Information
Summary:A "Hypervisor Secure Container" (HSC) is a block of memory space that resides inside of a regular process, but is secured from the operating system of the computer it runs on. The HSC is a software container that runs on a hypervisor directly. Data and code within one HSC can only be accessed by the hypervisor itself and the code that belongs to the same HSC. The HSC can run in user mode or kernel mode. Advantageously, even if the operating system or user of the computer the HSC runs on is malicious, the data inside the HSC is still secure. The HSC allows software based isolation of code/data and can be used in various security contexts including securely storing certificates and passwords, performing Digital Rights Management (DRM) for media and games, and confidential computing in a computing cloud.
Bibliography:Application Number: US201715606376