Virtualization Security Technology: LynxSecure Embedded Hypervisor and Separation KernelOperating-system virtualization and embedded virtual machines for real-time systems

For maximum virtualization security, nothing beats LynxSecure. Years after its first release, LynxSecure is still unrivaled. With support for 64-bit multicore (SMP) guest operating systems on Intel®-based hardware, only LynxSecure provides the extraordinary combination of:

A SKPP separation kernel for high security, plus
State-of-the-art virtualization technology via an embedded hypervisor

Secure virtualization
64-bit hypervisor	Can address greater than 4 Gigabytes
Supports 64-bit guest operating systems	Most current Intel hardware is 64-bit, becoming the norm for hardware and Windows®/Linux® operating systems
Multi-core hypervisor	Difficult to procure single-core blades, limited capabilities
Supports fully virtualized multi-core guest operating systems (ie SMP Linux, SMP Windows)	Most large applications require multi-core guest operating systems
Intel-specific hardware support
Native hardware hypervisor virtualization with VT-x capability (does not require QEMU or other software virtualization package)	QEMU and layered software virtualization implementations can be up to 50% slower
I/O MMU VT-d	Allows direct assignment of hardware device to guest operating systems for maximum performance, allows binary graphics device driver reuse. A must for 3D graphics. VT-d guarantees secure separation of directly assigned devices.
Extended Page Table support	Extreme performance benefits for full virtualization, within a few percentage points of native execution. Hypervisors without EPT impose significantly higher overhead
Block device emulation	Enables multiple guest OSes to securely share a single block device. The block device marshalling is accommodated via an external trusted subject.
Virtual KVM/device sharing	Enables multiple guest OSes to securely share single keyboard/video/mouse. The virtual device marshalling is accommodated via an external trusted subject.
Page attribute table	Important for full virtualization performance
Advanced vector extensions	Better support for floating-point intensive operations
Specific Guest Operating System support
Important for legacy applications	32-bit uni-processor Linux, 32-bit uni-processor Windows XP/7, 32-bit SMP Linux, 32-bit SMP Windows XP/7
Today's applications	64-bit Linux, 64-bit SMP Linux, 64-bit Windows XP/7, 64-bit SMP Windows XP/7
Secure applications	Solaris 10 with trusted extensions
Safety-critical avionics systems	Intel-based DO-178B certified kernel as guest operating system
Secure guest operating system support	Time- and space-partitioned POSIX® and ARINC 653 LynxOS-SE operating system
System Security
SABI certification pending on Intel multi-core separation kernel with built in hypervisor	LynxSecure Intel-based real-time multicore hypervisor is headed for SABI certification process for the Navy CDS program on 8-core hardware with SMP Linux guests. LynxSecure will undergo a follow-up TSABI certification also under the same program.

A LynuxWorks embedded OS is featured in this LynxSecure embedded system application:

U.S. Navy's Common Display System (CDS)

Who else uses a LynuxWorks embedded operating system?

Virtualization Technology Demos

features

Optimal security and safety—the only operating system designed to support both CC EAL-7 and DO-178B level A
Real time—time-space partitioned separation kernel for superior determinism and performance
Hypervisor and virtualization technology— supports multiple heterogeneous, both para-virtualized and fully virtualized, operating system environments on the same physical hardware including Intel® VT
Highly scalable—supports Symmetric MultiProcessing (SMP) and 64-bit addressing for high-end scalability
Support for open standards—100% binary compatibility for Linux- or POSIX-based software applications allows them to migrate to a highly robust, secure environment
Faster time to market—enables developers to begin early development for secure applications

Security white papers

Coming Together of Safety and (Cyber) Security Changes Demands in RTOS Market: Separation kernels and secure hypervisors will be evermore in demand as safety and certification will be required in more and more applications. Governments are already working on infrastructures deploying this type of technology. (October 2012)
Building in RTOS Support for Safety- & Security-Critical Systems: LynuxWorks explains the differences between safety-critical and security-critical applications and how to meet their demanding requirements with the LynxOS-178 RTOS and the LynxSecure hypervisor. (EE Times Design, August 2011)
Enhancing Application Performance on Multicore Systems: Tips on optimizing a multicore real-time system, including virtualization, avoiding synchronization and concurrency while maximizing application parallelism. (Military Embedded Systems, February 2011)
Hardware Virtualization puts a new spin on Secure Systems: Real-time determinism and military security don't have to be separate realities. A combination of a secure separation kernel and an embedded hypervisor enables whole new levels of system security. (COTS Journal, October 2010)
Using a Separation Kernel to add Military-Grade Security to Legacy Systems: A challenge for the software designer is how to integrate modern military-grade software programs into legacy software designed long before security standards were predominant in system requirements. (VME Critical Systems, Summer 2010)
Virtualization: Keeping Embedded Software safe and Secure in an Unsafe World: A new, secure methodology is needed to separate systems of different security levels which run on shared resources—without compromising the performance of legacy systems. (EE Times, June 2010)
Secure Virtualization Combines Traditional Desktop OSs and Embedded RTOSes in Military Embedded Systems: Advances in software and hardware technologies now make it feasible to use both embedded and desktop operating systems in a secure military system. (Military Embedded Systems, May 2010)
DO-178B Provides Certification Safety net: Developers of commercial avionics software must demonstrate compliance with DO-178 guidelines. The FAA has issued additional guidance for so-called DO-178B Reusable Software Components (RSCs as defined in AC20-148), which allow for reuse of certifications. (COTS Journal, November 2009)
Designing Safety-critical Avionics Software Using open Standards: Safety-critical avionics systems have continually grown more complex and software-intensive. Regulatory authorities and avionics manufacturers have responded with guidance such as DO-178B and RSC to ensure that software performs safely, with controlled development cost. (Boards and Solutions, September 2009)
Two Different Realms: RTOS Support for Safety-critical vs. Security-critical Systems: Safety- and security-critical system functions are evolving simultaneously, with different yet similar requirements. Modern RTOSes are stepping up to meet these needs. (VME and Critical Systems, June 2009)
Virtualization Makes Better use of Open-source OSes and apps: With the introduction of the embedded hypervisor, embedded systems can avoid certain performance or licensing issues inherent to open-source OSes and applications. (EE Times, March 23, 2009)
Secure Virtualization Technology can Extend the life of Legacy Systems: By combining the concept of virtualization and security, one can consolidate multiple legacy systems running on heterogeneous operating systems onto a single host system with high-assurance security. (Military Embedded Systems, January/February 2009)
Virtual Machines: Intel's CPU Extensions Transform Virtualization: Virtualization has traditionally presented its share of design challenges in information-assurance-based systems. But now, Intel's VT-x and VT-d CPU extensions are changing the game and showing potential to become the de facto path to virtualization. (Military Embedded Systems, January 2009)
Separation Kernel for a Secure Real-time Operating System: The technical foundation adopted for the so-called MILS architecture is a separation kernel like LynxSecure, which permits multiple functions to be realised on a common set of physical resources without unwanted mutual interference. (Boards and Solutions Magazine, February 2008)
Advances in Virtualization aid Information Assurance: Advances in the newest Intel® processors are making virtualization much easier to implement in security applications than ever before. (Embedded Computing Design, January 2008)
Protecting our most Vital Systems: Some significant defence programmes are already committed to a new approach to high-threat, high-asset-value systems. Rance DeLong explains MILS. (Components in Electronics, April 2007)
Perspectives: Security and the Separation Kernel: Today's avionics systems are designed to support more than one application, using a partitioned operating system and memory management units to ensure applications have adequate separation. (Avionics Magazine, April 2007)
MILS: An Architecture for Security, Safety, and Real Time: The unrelenting growth and integration of embedded controls, information processing, and communications has created a need for systems that provide robust protection for resources and services in the face of serious threats. (Embedded Technology Magazine, November 2006)
Partitioning Operating Systems Versus Process-based Operating Systems: Partitioning operating systems are the latest buzz, while processes, by contrast, have been around for over 30 years. Both provide memory protection, however, the intent behind them is very different.
DO-178B and the Common Criteria: Future Security Levels: Although there are similarities between the airborne safety-critical requirements in RTCA/DO-178B and the Common Criteria, ISO 14508, compliance with the higher levels of security in the Common Criteria demands meeting additional security requirements. (COTS Journal, April 2006)
Reusing Safety-Critical Software Components: Safety-critical systems often operate together as a single "system-of-systems," making it important that they meet the most stringent and rigorous requirements for safety-criticality. The failure of one module in a system could create other failures or vulnerabilities, or worse yet, failure of the system as a whole. (COTS Journal, August 2005)
Using the Microprocessor MMU for Software Protection in Real-Time Systems: With minimal impact to overall system performance, user tasks and the kernel can be protected from accidental corruption by using multiple protected address spaces.
Improving code Migration and Reuse: The unrelenting growth and integration of embedded controls, information processing, and communications has created a need for systems that provide robust protection for resources and services in the face of serious threats. (Embedded Computing Design, August 2006)
FCS Program Rolls Forward in Formation: A wireless data network, with advanced communications and technologies, links soldiers with 18 new, lightweight manned and unmanned ground vehicles, unmanned aircraft, sensors and weapons—and it's all in one program. (COTS Journal, June 2005)
Secure Operating Systems for Deeply Embedded Devices: As we add more intelligence to our embedded devices, we find that they are becoming increasingly integrated into our information technology infrastructure. Though system security is not a new concept, security-in-depth is a new paradigm developers are now starting to address. (RTC Magazine, September 2004)

Virtualization / RTOS News

EVENTS

Device-Driver and Real-Time Programming for the LynxOS RTOS Family, San José, CA, USA, Jun 10-14
LynxSecure Real-Time Applications and Device Driver Programming Workshop, San José, CA, USA, Jun 24-28

RTOS, secure virtualization technology for real-time systems, DO-178B and hypervisor for the most demanding embedded operating system applications...

Virtualization Security Technology: LynxSecure Embedded Hypervisor and Separation KernelOperating-system virtualization and embedded virtual machines for real-time systems

Virtualization Technology Demos

Security white papers

Virtualization / RTOS News

more

Industry Solutions

Migration

Industry Standards

Embedded Systems Technology

RTOS Training for Embedded Systems

Training at LynuxWorks

LynuxWorks Support

Embedded Systems

LynxOS RTOS Support

Embedded System Consulting

Contact Us

About LynuxWorks

Press Room

Newsletter and Announcements

Careers

Partners

Site Map

Board Support Packages (BSPs)

BSP Device Drivers

BSP Targets by Operating System

BSP Targets by Form Factor

Third-party I/O Devices and Hardware

SynergyWorks: LynuxWorks partners

What is SynergyWorks?

Third-party add-ons for LynuxWorks operating systems