Sorry, man. Really hard to understand. But I've read that white paper. Sound cool. I have to think what we can do.
Due to your remarks as to the IDT protection. It is impossible to protect IDT in general case. IDT MUST always be in memory otherwise the system will immediately crash. Therefore the only option I can think of is to protect int1/int3 vectors with DR-registers. But X-Prot takes them out... No. They THINK they take them out