Certains contenus de cette application ne sont pas disponibles pour le moment.
Si cette situation persiste, veuillez nous contacter àObservations et contact
1. (WO2018226927) SYSTÈMES DE DÉTECTION D'INTRUSION
Note: Texte fondé sur des processus automatiques de reconnaissance optique de caractères. Seule la version PDF a une valeur juridique

CLAIMS

1. An intrusion detection system, comprising:

a monitor to receive messages from a target over a low-latency communication link comprising a controlled access memory structure logically positioned between the target and the monitor using point-to-point

interconnects, the controlled access memory structure to receive a message from the target indicating that the target has entered a controlled mode of operation.

2. An intrusion detection system as claimed in claim 1 , wherein the memory structure comprises a linear or circular array in which messages are processed in the order in which they are received.

3. An intrusion detection system as claimed in claim 1 , wherein a physical address of the target is mapped to the monitor.

4. An intrusion detection system as claimed in claim 1 , wherein the communication link between the target and the monitor is a single-threaded access link to the monitor.

5. An intrusion detection system as claimed in claim 1 , wherein the monitor is a virtual machine instantiated over physical hardware allocated in a virtualised system using a hypervisor forming the target.

8. An intrusion detection system as claimed in claim 1 , wherein the memory structure is provided as part of the target or the monitor or as a standalone component.

7. A communication link between a target and a monitor in an intrusion detection system, the communication link comprising a controlled access memory structure logically positioned between the target and the monitor using point-to-point interconnects, the controlled access memory structure to receive a message from the target indicating that the target has entered a controlled mode of operation.

8. A communication link as claimed in claim 6, wherein the link comprises a mapping from a physical address of the target to the monitor.

9. A communication link as claimed in claim 6, wherein the communication link between the target and the monitor is a single-threaded access link to the monitor.

10. A monitor in an intrusion detection system, the monitor to:

receive messages from a monitored component over a low-latency communication link comprising a controlled access memory structure logically positioned between the monitored component and the monitor using point-to-point interconnects, the controlled access memory structure to receive a message from the target indicating that the target has entered a controlled mode of operation.

1 1 . A monitor as claimed in claim 9, wherein the memory structure comprises a linear or circular array in which messages received from the monitored component are processed in the order in which they are received.

12. A monitor as claimed in claim 9, wherein the memory structure comprises a mapping to a physical address of the monitored component.

13. A monitor as claimed in claim 9, wherein the monitor is a virtual machine instantiated over physical hardware allocated in a virtualised system using a hypervisor forming the monitored component.

14. A monitor as claimed in claim 13, wherein the virtual machine comprises a secure execution environment inaccessible to other components of the virtualised system.

15. A non-transitory machine-readable storage medium encoded with instructions executable by a processor of a monitor apparatus, the machine-readable storage medium comprising:

instructions to receive messages from a monitored component over a low-latency communication link comprising a controlled access memory

structure logically positioned between the monitored component and the monitor using point-to-point interconnects; and

instructions to receive a message from the target indicating that the target has entered a controlled mode of operation.