While security has become important in embedded systems, commodity operating systems often fail in effectively separating processes, mainly due to a too large trusted computing base. System virtualization can establish isolation already with a small code base, but many existing embedded CPU architectures have very limited virtualization hardware support, so that the performance impact is often non-negligible. Targeting both security and performance, we investigate an approach in which a few minor hardware additions together with virtualization offer protected execution in embedded systems while still allowing non-virtualized execution when secure services are not needed. Benchmarks of a prototype implementation on an emulated ARM Cortex A8 platform confirm that switching between those two execution forms can be done efficiently. © 2014 Springer International Publishing.
CITATION STYLE
Schwarz, O., Gehrmann, C., & Do, V. (2014). Affordable separation on embedded platforms: Soft reboot enabled virtualization on a dual mode system. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 8564 LNCS, pp. 37–54). Springer Verlag. https://doi.org/10.1007/978-3-319-08593-7_3
Mendeley helps you to discover research relevant for your work.