US 12,277,226 B2
Patching enclaves with shared resources
Samira Briongos, Heidelberg (DE); and Felix Klaedtke, Heidelberg (DE)
Assigned to NEC CORPORATION, Tokyo (JP)
Filed by NEC Laboratories Europe GmbH, Heidelberg (DE)
Filed on Oct. 17, 2022, as Appl. No. 17/966,918.
Claims priority of provisional application 63/398,905, filed on Aug. 18, 2022.
Prior Publication US 2024/0061938 A1, Feb. 22, 2024
Int. Cl. G06F 21/57 (2013.01); G06F 8/61 (2018.01); G06F 8/65 (2018.01)
CPC G06F 21/572 (2013.01) [G06F 8/61 (2013.01); G06F 8/65 (2013.01); G06F 2221/033 (2013.01)] 19 Claims
OG exemplary drawing
 
1. A method for implementing a software update for a selected enclave of a computing system, the method comprising:
obtaining, by a security monitor (SM) of the computing system, the software update for the selected enclave;
installing, by the SM, the software update for the selected enclave to provide updated enclave software code;
measuring, by the SM, the updated enclave software code to provide a software update measurement, wherein the updated enclave software code is stored in a memory region isolated from a memory region in which data for the selected enclave is stored; and
transmitting, by the SM, the software update measurement to one or more respective other enclaves that share a memory region with the selected enclave.