Constrained credentialed impersonation
US-9225744-B1 · Dec 29, 2015 · US
Programmable direct memory access channels
US9824242B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9824242-B2 |
| Application number | US-201514809683-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jul 27, 2015 |
| Priority date | Mar 7, 2013 |
| Publication date | Nov 21, 2017 |
| Grant date | Nov 21, 2017 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A storage location of a device that can be configured to act as a master in a particular security mode, such as a Direct Memory Access (DMA) having one or more channels, can be programmed to indicate a security indicator to be provided when configured to operate as a master device.
First claim
Opening claim text (preview).
What is claimed is: 1. A method comprising: programming, by a processor, a non-processor bus master to perform accesses to a slave device via a bus; accessing, by the non-processor bus master, the slave device, wherein the accesses are limited based on access rights, wherein the non-processor bus master performs the accessing according to processor access rights of the processor provided to the non-processor bus master during the programming, and the accessing is performed by the non-processor bus master masquerading as the processor in a specified security mode. 2. The method of claim 1 wherein the non-processor bus master is a direct memory access (DMA) controller. 3. The method of claim 2 wherein the programming comprises: programming a plurality of DMA channels according to particular processor access rights selected from the processor access rights. 4. The method of claim 1 wherein the non-processor bus master is an input/output memory management unit (IO MMU). 5. The method of claim 1 wherein the slave device is a memory device and the accesses are performed according to memory access requests. 6. The method of claim 1 wherein the programming comprises: programming a plurality of channels according to particular processor access rights selected from the processor access rights, wherein the accessing occurs via the plurality of channels according to the particular processor access rights. 7. The method of claim 1 wherein the accessing comprises: communicating from the non-processor bus master to the slave device a security indicator for the slave device to validate the access, wherein the security indicator corresponds to one of the processor access rights. 8. The method of claim 1 wherein the accessing does not return a requested result to the non-processor bus master when the accessing is prevented in response to a state of the security indicator being below a minimum required state. 9. An apparatus comprising: a bus; a slave device coupled to the bus, wherein accesses to the slave device via the bus are limited based on access rights; a processor coupled to the bus, the processor having processor access rights to access the slave device via the bus; and a non-processor bus master coupled to the bus, the non-processor bus master configured to be programmed by the processor, the non-processor bus master configured, once programmed, to perform accesses to the slave device via the bus according to processor access rights of the processor provided to the non-processor bus master during programming of the non-processor bus master by the processor, and the non-processor bus master is further configured to masquerade as the processor in a specified security mode corresponding to the processor access rights when performing the accesses. 10. The apparatus of claim 9 wherein the non-processor bus master is a direct memory access (DMA) controller. 11. The apparatus of claim 10 wherein the non-processor bus master is configured to perform the accesses via a plurality of DMA channels according to particular processor access rights selected from the processor access rights. 12. The apparatus of claim 9 wherein the non-processor bus master is an input/output memory management unit (JO MMU). 13. The apparatus of claim 9 wherein the slave device is a memory device and the accesses are performed according to memory access requests. 14. The apparatus of claim 9 wherein the non-processor bus master is configured to perform the accesses via a plurality of channels according to particular processor access rights selected from the processor access rights. 15. The apparatus of claim 9 wherein the non-processor bus master communicates a security indicator to the slave device for the slave device to validate the access, wherein the security indicator corresponds to one of the processor access rights. 16. The apparatus of claim 9 wherein the non-processor bus master does not receive a requested result from the slave device when an access of the accesses is prevented in response to a state of the security indicator being below a minimum required state. 17. A system comprising: a bus; a slave device coupled to the bus, wherein accesses to the slave device via the bus are limited based on access rights; a processor coupled to the bus, the processor having processor access rights to access the slave device via the bus; and a direct memory access (DMA) controller coupled to the bus, the DMA controller configured to be programmed by the processor, the DMA controller configured, once programmed, to perform accesses to the slave device via the bus using DMA channels according to processor access rights of the processor provided to the DMA controller during programming of the DMA controller by the processor, and the DMA controller is further configured to masquerade as the processor in a specified security mode corresponding to the processor access rights when performing the accesses. 18. The system of claim 17 wherein the DMA controller receives a first requested result from the slave device when a first access of the accesses is accompanied by a first state of a security indicator being at least a minimum required state, and wherein the DMA controller does not receive a second requested result from the slave device when a second access of the accesses is prevented in response to a second state of the security indicator being below a minimum required state.
Assignees
Inventors
Classifications
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9824242B2 cover?
- A storage location of a device that can be configured to act as a master in a particular security mode, such as a Direct Memory Access (DMA) having one or more channels, can be programmed to indicate a security indicator to be provided when configured to operate as a master device.
- Who is the assignee on this patent?
- Freescale Semiconductor Inc, Nxp Usa Inc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/74. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Nov 21 2017 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).