KERNEL INFORMATION INTEGRITY INSPECTION

Organization Name

HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor(s)

Nigel John Edwards of Bristol (GB)

Geoffrey Ndu of Bristol (GB)

Jason Christopher Cohen of Annapolis Junction MD (US)

Theofrastos Koulouris of Bristol (GB)

KERNEL INFORMATION INTEGRITY INSPECTION - A simplified explanation of the abstract

This abstract first appeared for US patent application 18170720 titled 'KERNEL INFORMATION INTEGRITY INSPECTION

The abstract of the patent application describes a bus device with a device controller that performs input/output virtualization to create a virtualized version of the bus device. This virtualized instance is connected to a guest operating system of a virtual machine through a channel established by the device controller. The device controller receives address information from the VM related to a memory segment containing data associated with the kernel of the guest OS. It then retrieves this kernel information from the memory for integrity inspection.

• The bus device includes a device controller for input/output virtualization.
• The device controller creates a virtualized instance of the bus device.
• A channel is established between the virtualized device and the guest OS of a VM.
• Address information related to the guest OS kernel is received from the VM.
• The device controller retrieves the kernel information from memory for integrity inspection.

Potential Applications: - Virtualization technology for improved device management in virtual machines. - Enhanced security measures for inspecting kernel information in guest operating systems.

Problems Solved: - Efficient input/output virtualization for bus devices. - Secure retrieval and inspection of kernel information in virtualized environments.

Benefits: - Improved performance and management of bus devices in virtual machines. - Enhanced security measures for ensuring the integrity of guest OS kernels.

Commercial Applications: Title: Virtualization Technology for Enhanced Device Management in Virtual Environments This technology can be utilized in cloud computing environments, data centers, and virtualization platforms to optimize device management and enhance security protocols.

Questions about Virtualization Technology for Bus Devices: 1. How does input/output virtualization benefit bus devices in virtual machines? Input/output virtualization improves device management and performance by creating virtualized instances of bus devices, enhancing compatibility and efficiency in virtual environments.

2. What are the security implications of inspecting kernel information in guest operating systems? Inspecting kernel information ensures the integrity and security of the guest OS, preventing unauthorized access and potential vulnerabilities in virtualized environments.

Original Abstract Submitted

In some examples, a bus device includes a device controller to perform input/output (I/O) virtualization to provide a virtualized instance of the bus device. The device controller establishes a channel between the virtualized instance of the bus device and a guest operating system (OS) of a virtual machine (VM). The device controller receives, from the VM, address information relating to a portion of a memory containing information associated with a kernel of the guest OS, and obtains, for integrity inspection, the information associated with the kernel from the memory based on the address information.