SMAP (Supervisor Mode Access Prevention)
E968046
UNEXPLORED
SMAP (Supervisor Mode Access Prevention) is a CPU security feature that blocks kernel-mode code from unintentionally accessing user-space memory, helping to mitigate exploitation of memory corruption vulnerabilities.
All labels observed (1)
| Label | Occurrences |
|---|---|
| SMAP (Supervisor Mode Access Prevention) canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T12081183 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
NED1
Entity disambiguation (via context triple)
gpt-5-mini-2025-08-07
Target entity: SMAP (Supervisor Mode Access Prevention) Context triple: [Linux kernel hardening, usesMechanism, SMAP (Supervisor Mode Access Prevention)]
-
A.
Trusted Platform Module 2.0
Trusted Platform Module 2.0 is a hardware-based security chip standard that provides cryptographic functions and secure key storage to enhance system integrity and protection against tampering.
-
B.
XD bit (Execute Disable Bit)
XD bit (Execute Disable Bit) is a hardware-based security feature in modern processors that helps prevent certain types of malicious code execution by marking specific areas of memory as non-executable.
-
C.
TOMOYO Linux
TOMOYO Linux is a security-focused enhancement for the Linux kernel that provides mandatory access control through fine-grained, policy-based restrictions on system behavior.
-
D.
Intel MPX
Intel MPX is a hardware-based memory protection extension for Intel processors designed to help prevent buffer overflows by enforcing bounds checking on pointer references.
-
E.
Credential Guard
Credential Guard is a Windows security feature that uses virtualization-based isolation to protect credentials from theft by malware and other attacks.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
NED2
Entity disambiguation (via description)
gpt-5-mini-2025-08-07
Target entity: SMAP (Supervisor Mode Access Prevention) Target entity description: SMAP (Supervisor Mode Access Prevention) is a CPU security feature that blocks kernel-mode code from unintentionally accessing user-space memory, helping to mitigate exploitation of memory corruption vulnerabilities.
-
A.
Trusted Platform Module 2.0
Trusted Platform Module 2.0 is a hardware-based security chip standard that provides cryptographic functions and secure key storage to enhance system integrity and protection against tampering.
-
B.
XD bit (Execute Disable Bit)
XD bit (Execute Disable Bit) is a hardware-based security feature in modern processors that helps prevent certain types of malicious code execution by marking specific areas of memory as non-executable.
-
C.
TOMOYO Linux
TOMOYO Linux is a security-focused enhancement for the Linux kernel that provides mandatory access control through fine-grained, policy-based restrictions on system behavior.
-
D.
Intel MPX
Intel MPX is a hardware-based memory protection extension for Intel processors designed to help prevent buffer overflows by enforcing bounds checking on pointer references.
-
E.
Credential Guard
Credential Guard is a Windows security feature that uses virtualization-based isolation to protect credentials from theft by malware and other attacks.
- F. None of above. chosen
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.