The Innovation

Dover’s flagship product, CoreGuard, integrates with a processor to safeguard a system from cyber attacks. Using hybrid hardware/software technology, CoreGuard checks every instruction that the processor executes for compliance with software-defined security and safety micropolicies. When an instruction violates any policy, CoreGuard blocks it in real time from executing.



How CoreGuard Works

Two proprietary technologies power CoreGuard:

Micro-policies: CoreGuard’s software-defined rules and regulations that specify what a host processor should and should not do. Using metadata, CoreGuard tags each piece of data and every instruction that is handled by the processor. These tags are pointers that the micro-policies use to distinguish good instructions from bad. Micro-policies and metadata are stored in a separate area of memory inaccessible to host processor applications.

Policy Enforcer: CoreGuard’s mechanism for controlling a processor. To enforce micro-policies in real time, the components of the policy enforcer are physically implemented as part of the processor’s silicon design and are unassailable by network-based attacks. Policy enforcer hardware enables CoreGuard to check every instruction for compliance with micro-policies and to block the execution of any violating instruction.

The result is a solution that protects your processor-powered systems against network-based attacks. It’s security that really works, for today and for tomorrow.