US Patent No: 5,764,969

Method and system for enhanced management operation utilizing intermixed user level and supervisory level instructions with partial concept synchronization

Stats

Jun 9, 1998
Issued date
Feb 10, 1995
filing date
08/387,149
serial no
Expired
status

Importance

Loading Importance Indicators... loading....

Abstract

A method and system for enhanced system management operations in a superscalar data processing system. Those supervisory level instructions which execute selected privileged operations within protected memory space are first identified as not requiring a full context synchronization. Each time execution of such an instruction is initiated an enable special access (ESA) instruction is executed as an entry point to that instruction or group of instructions. A portion of the machine state register for the data processing system is stored and the machine state register is then modified as follows: a problem bit is set, changing the execution privilege state to "supervisor;" external interrupts are disabled; and access privilege state bit is set; and, a special access mode bit is set, allowing execution of special instructions. The instructions which execute the selected privileged operations within the protected memory space are then executed. A disable special access (DSA) instruction is then executed which restores the bits within the machine state register which were modified during the ESA instruction. The ESA and DSA instructions are implemented without modifying the instruction stream by utilizing user level procedure calls, thereby reducing the overhead of the branch table necessary to determine the desired execution path.

Loading the Abstract Image... loading....

First Claim

loading....

Related Publications

Loading Related Publications... loading....

Patent Owner(s)

Patent Owner	Address	Total Patents
INTERNATIONAL BUSINESS MACHINES CORPORATION	ARMONK, NY	68180

International Classification(s)

G06F:ELECTRIC DIGITAL DATA PROCESSING

[Classification Symbol]

[Patents Count]

Inventor(s)

Inventor Name	Address	# of filed Patents	Total Citations
Kahle, James Allan	Austin, TX	114	889
Loper, Albert J	Austin, TX	16	151
Mallick, Soummya	Austin, TX	48	812
Ogden, Aubrey Deene	Round Rock, TX	10	239
Sell, John Victor	Los Altos, CA	5	149

Cited Art

Patent Info	# Cites	Year
DIGITAL EQUIPMENT CORPORATION (1)
4,787,031 Computer with virtual machine mode and multiple protection rings	65	1985
HEWLETT-PACKARD COMPANY (1)
4,809,160 Privilege level checking instruction for implementing a secure hierarchical computer system	132	1985
INTERNATIONAL BUSINESS MACHINES CORPORATION (1)
4,500,952 Mechanism for control of address translation by a program using a plurality of translation tables	30	1980
MICROSOFT CORPORATION (1)
5,063,499 Method for a correlating virtual memory systems by redirecting access for used stock instead of supervisor stock during normal supervisor mode processing	48	1989

Patent Citation Ranking

Forward Cites

Patent Info	# Cites	Year
INTEL CORPORATION (86)
7,356,817 Real-time scheduling of virtual machines	9	2000
7,111,176 Generating isolated bus cycles for isolated execution	4	2000
7,089,418 Managing accesses in a processor for isolated execution	3	2000
7,073,071 Platform and method for generating and utilizing a protected audit log	3	2000
7,013,481 Attestation key memory device and bus	13	2000
7,013,484 Managing a secure environment using a chipset in isolated execution mode	13	2000
6,996,710 Platform and method for issuing and certifying a hardware-protected attestation key	9	2000
6,990,579 Platform and method for remote attestation of a platform	11	2000
6,957,332 Managing a secure platform using a hierarchical executive architecture in isolated execution mode	6	2000
6,760,441 Generating a key hieararchy for use in an isolated execution environment	27	2000
6,507,904 Executing isolated mode instructions in a secure system running in privilege rings	115	2000
6,754,815 Method and system for scrubbing an isolated area of memory after reset of a processor operating in isolated execution mode if a cleanup flag is set	16	2000
6,678,825 Controlling access to multiple isolated memories in an isolated execution environment	86	2000
6,633,963 Controlling access to multiple memory zones in an isolated execution environment	128	2000
7,085,935 Managing a secure environment using a chipset in isolated execution mode	2	2000
7,082,615 Protecting software environment in isolated execution	19	2000
6,941,458 Managing a secure platform using a hierarchical executive architecture in isolated execution mode	5	2000
7,793,111 Mechanism to handle events in a machine with isolated execution	0	2000
7,389,427 Mechanism to secure computer output from software attack using isolated execution	3	2000
6,795,905 Controlling accesses to isolated memory using a memory controller for isolated execution	16	2000
7,215,781 Creation and distribution of a secret value between two devices	1	2000
7,818,808 Processor mode for limiting the operation of guest software running on a virtual machine supported by a virtual machine monitor	8	2000
7,117,376 Platform and method of creating a secure boot that enforces proper user authentication and enforces hardware configurations	17	2000
7,035,963 Method for resolving address space conflicts between a virtual machine monitor and a guest operating system	19	2000
6,769,058 Resetting a processor in an isolated execution environment	4	2000
7,194,634 Attestation key memory device and bus	7	2001
7,272,831 Method and apparatus for constructing host processor soft devices independent of the host processor operating system	18	2001
7,096,497 File checking using remote signing authority via a network	9	2001
7,191,440 Tracking operating system process and thread execution and virtual machine execution in hardware or in a virtual machine monitor	32	2001
7,024,555 Apparatus and method for unilaterally loading a secure operating system within a multiprocessor environment	18	2001
7,103,771 Connecting a virtual token to a physical token	26	2001
7,308,576 Authenticated code module	2	2001
7,480,806 Multi-token seal and unseal	5	2002
7,631,196 Method and apparatus for loading a trustable operating system	1	2002
7,069,442 System and method for execution of a secured environment initialization instruction	16	2002
7,028,149 System and method for resetting a platform configuration register	33	2002
7,076,669 Method and apparatus for communicating securely with a token	2	2002
7,058,807 Validation of inclusion of a platform within a data center	11	2002
7,127,548 Control register access virtualization performance improvement in the virtual-machine architecture	7	2002
6,820,177 Protected configuration space in a protected environment	6	2002
7,142,674 Method of confirming a secure key exchange	6	2002
7,392,415 Sleep protection	0	2002
7,124,327 Control over faults occurring during the operation of guest software in the virtual-machine architecture	14	2002
6,996,748 Handling faults associated with operation of guest software in the virtual-machine architecture	10	2002
7,296,267 System and method for binding virtual machines to hardware contexts	40	2002
7,165,181 System and method for establishing trust without revealing identity	19	2002
7,073,042 Reclaiming existing fields in address translation data structures to extend control over memory accesses	15	2002
7,318,235 Attestation using both fixed token and portable token	12	2002
7,318,141 Methods and systems to control virtual machines	1	2002
7,900,017 Mechanism for remapping post virtual machine memory pages	1	2002
7,415,708 Virtual machine management using processor state information	14	2003
7,424,709 Use of multiple virtual machine monitors to handle privileged events	9	2003
7,287,197 Vectoring an interrupt or exception upon resuming operation of a virtual machine	2	2003
7,739,521 Method of obscuring cryptographic computations	0	2003
7,610,611 Prioritized address decoder	0	2003
7,366,305 Platform and method for establishing trust without revealing identity	2	2003
7,237,051 Mechanism to control hardware interrupt acknowledgement in a virtual machine system	7	2003
7,177,967 Chipset support for managing hardware interrupts in a virtual machine system	12	2003
7,020,738 Method for resolving address space conflicts between a virtual machine monitor and a guest operating system	8	2003
6,934,817 Controlling access to multiple memory zones in an isolated execution environment	12	2003
7,636,844 Method and system to provide a trusted channel within a computer system for a SIM device	3	2003
8,156,343 Accessing private data about the state of a data processing machine from storage that is publicly accessible	0	2003
8,037,314 Replacing blinded authentication authority	1	2003
7,802,085 Apparatus and method for distributing private keys to an entity with minimal secret, unique information	0	2004
7,356,735 Providing support for single stepping a virtual machine in a virtual machine environment	3	2004
7,620,949 Method and apparatus for facilitating recognition of an open event window during operation of guest software in a virtual machine environment	1	2004
7,490,070 Apparatus and method for proving the denial of a direct proof signature	5	2004
7,366,849 Protected configuration space in a protected environment	4	2004
7,305,592 Support for nested fault in a virtual machine environment	13	2004
7,840,962 System and method for controlling switching between VMM and VM using enabling value of VMM timer indicator and VMM timer value having a specified time	1	2004
8,146,078 Timer offsetting mechanism in a virtual machine environment	0	2004
7,395,405 Method and apparatus for supporting address translation in a virtual machine environment	2	2005
7,313,669 Virtual translation lookaside buffer	1	2005
7,546,457 System and method for execution of a secured environment initialization instruction	3	2005
7,809,957 Trusted platform module for generating sealed data	4	2005
7,302,511 Chipset support for managing hardware interrupts in a virtual machine system	4	2005
7,516,330 Platform and method for establishing provable identities while maintaining privacy	2	2005
7,921,293 Apparatus and method for unilaterally loading a secure operating system within a multiprocessor environment	0	2006
8,014,530 Method and apparatus for authenticated, recoverable key distribution with no database secrets	0	2006
7,454,611 System and method for establishing trust without revealing identity	1	2007
7,836,275 Method and apparatus for supporting address translation in a virtual machine environment	2	2008
8,296,762 Virtual machine management using processor state information	0	2008
8,185,734 System and method for execution of a secured environment initialization instruction	0	2009
7,861,245 Method and apparatus for facilitating recognition of an open event window during operation of guest software in a virtual machine environment	0	2009
8,386,788 Method and apparatus for loading a trustable operating system	0	2009
8,195,914 Mechanism for remapping post virtual machine memory pages	0	2011
MIPS TECHNOLOGIES, INC. (3)
7,185,183 Atomic update of CPO state	18	2001
7,634,638 Instruction encoding for system register bit set and clear	1	2002
7,600,100 Instruction encoding for system register bit set and clear	0	2006
INTERNATIONAL BUSINESS MACHINES CORPORATION (2)
5,996,085 Concurrent execution of machine context synchronization operations and non-interruptible instructions	24	1997
7,669,050 Method to enable user mode process to operate in a privileged execution mode	2	2004
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. (1)
7,478,394 Context-corrupting context switching	14	2001

Maintenance Fees

Fee	Large entity fee	small entity fee	micro entity fee	due date

Fee	Large entity fee	small entity fee	micro entity fee
Surcharge after expiration - Late payment is unavoidable	$700.00	$350.00	$175.00
Surcharge after expiration - Late payment is unintentional	$1,640.00	$820.00	$410.00

US Family Size	International Coverage
Patent Longevity Expired	Forward Citations