FIELD: data processing; security means.
SUBSTANCE: invention relates to network security. Device is configured to receive unreliable input data in an enclave in an electronic device, to isolate unreliable data from at least an enclave portion, to transfer at least a portion of unreliable data to an integrity check module by using a validation channel and to receive a data integrity check for unreliable data from the integrity check module. Integrity check module can perform data integrity validation functions to verify unreliable data, and the data integrity validation functions include a data validation policy and a whitelist.
EFFECT: technical result consists in expanding the arsenal of means for the same purpose.
25 cl, 9 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| SEALING DATA WITH SEALING ENCLAVE | 2017 |
|
RU2759329C2 |
| SECURE KEY MANAGEMENT | 2017 |
|
RU2750095C2 |
| ABSTRACT ENCLAVE IDENTIFICATION | 2017 |
|
RU2762141C2 |
| CROSS-PLATFORM ENCLAVE IDENTIFICATION INFORMATION | 2018 |
|
RU2759302C2 |
| UNSEALING DATA WITH SEALING ENCLAVE | 2017 |
|
RU2759331C2 |
| PROTECTING BINARY FILES OF TYPICAL COMMERCIAL PROGRAMS FROM PIRACY USING HARDWARE ENCLAVES | 2020 |
|
RU2812867C1 |
| DETECTION AND MITIGATION OF HARM FROM THE MALICIOUS CALL OF SENSITIVE CODE | 2015 |
|
RU2665897C2 |
| POLICY-CONTROLLED DELEGATION OF ACCOUNT DATA FOR SINGLE REGISTRATION IN NETWORK AND SECURED ACCESS TO NETWORK RESOURCES | 2007 |
|
RU2439692C2 |
| USE OF AUTHENTICATED MANIFESTS TO ENSURE EXTERNAL CERTIFICATION OF MULTIPROCESSOR PLATFORMS | 2014 |
|
RU2599340C2 |
| USE OF HARDWARE-SUPPORTED SECURED ISOLATED AREA FOR PREVENTING PIRACY AND FRAUD IN ELECTRONIC DEVICES | 2017 |
|
RU2744849C2 |
