54 results about "Memory safety" patented technology

A lithium ion secondary battery has a shape memory safety vent adapted to discharge internal compressed gas by temporarily being opened when the temperature reaches a predetermined level to avoid a swelling phenomenon of the battery and improve safety. The lithium ion secondary battery includes an electrode assembly having first and second electrode plates wound a number of times with a separator interposed between them; a can having an opening formed on a side thereof to contain the electrode assembly; and a cap plate adapted to cover the can and provided with a vent hole on a side thereof, to which a safety vent adapted to deform at a predetermined temperature and discharge gas from inside the can to the exterior is coupled.

A counter integrity tree for memory security includes at least one split-counter node specifying at least two counters each defined as a combination of a major count value shared between the at least two counters and a respective minor count value specified separately for each of the at least two counters. This increases the number of child nodes which can be provided per parent node of the tree, and hence reduces the number of tree levels that have to be traversed in a tree covering a given size of memory region. The minor counter size can be varied dynamically by allocating nodes in a mirror counter integrity tree for accommodating larger minor counters which do not fit in the corresponding node of the main counter integrity tree.

The present invention discloses a kernel fixing method and apparatus. One specific embodiment of the method comprises loading a patch for fixing a to-be-fixed objective function in a kernel, wherein the patch is compiled by memory security language or memory security language subset of non-memory security language; executing the patch by using a memory security language engine; receiving and executing a call request for calling a fixing interface to fix the objective function during the patching process, wherein the fixing interface is provided by the memory security language engine and used for fixing the function; and executing the requested fixing interface to fix the objective function. Hot fixing and security of the kernel are achieved.

An “Automated, Static Safety Verifier” uses typed assembly language (TAL) and Hoare logic to achieve highly automated, static verification of type and memory safety of an operating system (OS). Various techniques and tools mechanically verify the safety of every assembly language instruction in the OS, run-time system, drivers, and applications, except the boot loader (which can be separately verified). The OS includes a “Nucleus” for accessing hardware and memory, a kernel that builds services running on the Nucleus, and applications that run on top of the kernel. The Nucleus, written in verified assembly language, implements allocation, garbage collection, multiple stacks, interrupt handling, and device access. The kernel, written in C# and compiled to TAL, builds higher-level services, such as preemptive threads, on top of the Nucleus. A Hoare-style verifier with automated theorem prover verifies safety and correctness of the Nucleus. A TAL checker verifies safety of the kernel and applications.

A semiconductor integrated circuit includes a processor for executing application code from a memory and a verifier processor arranged to receive the application code via the same internal bus as the processor. The verifier processor performs a verification function to check that the application code is authentic. The verifier processor runs autonomously and cannot be spoofed as it receives the application code via the same internal bus as the main processor. An additional instruction monitor checks the code instructions from the CPU and also impairs the operation of the circuit unless the address of code requested is in a given range. The code is in the form of a linked list and the range is derived as a linked list table during a first check.

A vehicle electronic module receives vehicle bus messages from a vehicle communication bus interface. The vehicle bus messages may include vehicle status data. The electronic module may determine whether a memory safety condition has been met based on the vehicle status data. The electronic module may delay reading or writing data, such as diagnostic data, into a non-volatile memory until the memory safety condition is reached. The data is read from or stored in the non-volatile memory with reduce risk of corrupted data.

A lithium ion secondary battery has a shape memory safety vent adapted to discharge internal compressed gas by temporarily being opened when the temperature reaches a predetermined level to avoid a swelling phenomenon of the battery and improve safety. The lithium ion secondary battery includes an electrode assembly having first and second electrode plates wound a number of times with a separator interposed between them; a can having an opening formed on a side thereof to contain the electrode assembly; and a cap plate adapted to cover the can and provided with a vent hole on a side thereof, to which a safety vent adapted to deform at a predetermined temperature and discharge gas from inside the can to the exterior is coupled.

The invention discloses an XEN cloud platform virtual machine isolation method based on memory isolation, and belongs to the field of information safety. The XEN cloud platform virtual machine isolation method based on memory isolation comprises the following steps of S1, carrying out interception on an authorization list operation, S2, extending the ACM mechanism, achieving validity verification of the authorization list operation, letting the authorization list operation pass when the validity verification of the authorization list operation gets through, and S3, carrying out control execution on the passed authorization list operation. The XEN cloud platform virtual machine isolation method based on memory isolation has the advantages that the authorization list operation of an XEN memory is intercepted to carry out analysis on the memory mapping relation between virtual machines, the validity verification of the authorization list operation is accomplished through an extended ACM, the authorization list operation is let pass after the validity verification of the authorization list operation gets through, memory safety isolation between the virtual machines is accomplished through control over an authorization list, and the XEN cloud platform virtual machine isolation method based on memory isolation belongs to the field of Hypervisor safety research, can achieve safe isolation of a memory resource, and improves safety of the XEN cloud environment.