Method To Generate Declassified Dump File Using Source Code Annotations
Publication Date: 2014-Mar-28
The IP.com Prior Art Database
Disclosued is a method to generate declassified dump files using source code annotations. Kernel crash dumps typically contain sensitive data such as crypto keys, confidential data that customers would want to scrub before sending the dump to service personnel. Tools are available to compress and filter out predefined type of data pages from dump file, but not flexible enough to erase specific kernel data. We propose a technique which uses compiler directives to annotate data structures containg sensitive information in the source code. Compiler recognizes these annotations and generates suitable sections in the kernel image file, which is also loaded along with kernel image. During system crash this section is read from second kernel or panic path to identify and scrub sensitive information before generating the dump file, thus generating declassified dump files.