Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Secure virtualization system suitable for use in trusted execution environment (TEE)

A virtualization system and execution environment technology, applied in the field of security virtualization, can solve problems such as small operating space, inability to ensure isolation, and potential safety hazards, and achieve the effect of improving security

Active Publication Date: 2018-09-07
沈阳微可信科技有限公司
View PDF8 Cites 12 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The disadvantage of this method is that the operation space for running the operating system on the process is very small. If the TEE is used as a software layer parallel to the TA, the memory area will be shared between the TA and the TEE, and it is impossible to guarantee the operation of multiple TAs. the isolation between; create a safety hazard

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Secure virtualization system suitable for use in trusted execution environment (TEE)
  • Secure virtualization system suitable for use in trusted execution environment (TEE)
  • Secure virtualization system suitable for use in trusted execution environment (TEE)

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. All other embodiments obtained by persons of ordinary skill in the art based on the embodiments of the present invention belong to the protection scope of the present invention.

[0028] Such as figure 1 As shown, a secure virtualization system applicable to a trusted execution environment according to an embodiment of the present invention includes at least one virtual machine, at least one trusted application program, and at least one trusted execution environment,

[0029] The virtual machine is established by a Micro Hypervisor, and a trusted execution environment TEE is run on the virtual machine;

[0030] The trusted application program TA runs in the executable...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a secure virtualization system suitable for use in a trusted execution environment (TEE). The system includes at least one virtual machine, at least one trusted application (TA) and the at least one trusted execution environment. The virtual machine is built through Micro Hypervisor. The trusted execution environment is run on the virtual machine. The trusted application isrun in the trusted execution environment of the virtual machine. The trusted execution environment is configured to access the virtual machine in a first mode to realize calling of resources. Under the first mode, the virtual machine allows accessing of the trusted execution environment to the resources after it is determined that the trusted execution environment has access authority. The systemhas the advantages of: on the basis of trusted virtualization technology, building the virtual machine through the Micro Hypervisor, and running the GP (Global Platform) TEE and the corresponding TAon the virtual machine. Both the TEE and the TA are run on the respective virtual machine, thus complete isolation is realized, and security is greatly improved.

Description

technical field [0001] The invention relates to a security virtualization technology of a mobile device, in particular to a security virtualization system suitable for a trusted execution environment. Background technique [0002] TEE is the abbreviation of Trusted Execution Environment. The current trusted execution environment is mainly based on the trusted execution environment built on the security area of ​​the processor in the smart terminal (such as a smart phone). TEE is an independent execution area, which provides many security properties, such as isolation, TA integrity, etc. At the same time, TEE also ensures the security of code and data loaded into TEE. The traditional TEE technology includes ARM's TrustZone and so on. The GP organization (GlobalPlatform, Global Platform International Standards Organization) has announced the basic protection scope of TEE, related APIs and security attributes, and TEEs that meet this standard are called GPTEE. At the same ti...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F9/455G06F21/53G06F21/74
CPCG06F9/45558G06F21/53G06F21/74G06F2009/45583
Inventor 韩泽锋孟令智高峰
Owner 沈阳微可信科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products