Electrical computers and digital processing systems: memory – Storage accessing and control – Shared memory area
Reexamination Certificate
2000-11-27
2003-04-22
Portka, Gary J (Department: 2188)
Electrical computers and digital processing systems: memory
Storage accessing and control
Shared memory area
C711S163000, C707S793000
Reexamination Certificate
active
06553466
ABSTRACT:
FIELD OF THE INVENTION
The invention relates to the protection of data stored in a computer, and more particularly to data which has been imported from an outside source.
BACKGROUND OF THE INVENTION
Shared memory may be used to communicate between two or more concurrently running jobs or threads. One program creates a memory segment which other processes may access.
Shared memory may be exploited for leaking data. “Leaking data” as used herein means transferring data out of a system in which it is desired to have the data secured. A data leak may occur if a process writes information to a shared memory location and another process accesses the information from that location.
It is known to lock shared memory, usually to avoid processes accessing data out of sequence to ensure use of only updated shared data. Access to shared memory space is prohibited during use by a first process and thereafter unlocked to allow processes sharing the space access to updated data. Memory locking as known in the art is not a solution to data leakage. Accordingly, where data security is important, there is a need to limit data leakage from shared memory.
SUMMARY OF THE INVENTION
The invention discloses a shared memory blocking method particularly applicable to a system in which protected data is transmitted to a recipient computer. An illustrative embodiment of the invention comprises reserving a memory page for a requesting application, committing a memory page to the requesting application's address space, which call may be made by the process providing the page reserve call or by a subsequent process, and providing security checks to complete the requests. The security checks may include determining whether the process is secured by consulting a secured process list and determining whether the page is shared by consulting a shared memory list.
Further disclosed are a shared memory blocking system, secured data transmission system, computer readable-medium programmed to block shared memory and computer configured to block shared memory.
REFERENCES:
patent: 5455944 (1995-10-01), Haderle et al.
patent: 5657474 (1997-08-01), Paul Dubois Taine et al.
patent: 5918229 (1999-06-01), Davis et al.
patent: 5940869 (1999-08-01), Schwartz
patent: 5987506 (1999-11-01), Carter et al.
patent: 6026474 (2000-02-01), Carter et al.
patent: 6085296 (2000-07-01), Karkhanis et al.
Friedman George
Murdock Carlos A.
Starek Robert Phillip
Infraworks Corporation
Piper Rudnick LLP
Portka Gary J
LandOfFree
Shared memory blocking method and system does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Shared memory blocking method and system, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Shared memory blocking method and system will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3027245