You are here: Home / RTLWS 1999-2017 / RTLWS Submitted Papers / 
2024-06-15 - 00:51

Dates and Events:

OSADL Articles:

2023-11-12 12:00

Open Source License Obligations Checklists even better now

Import the checklists to other tools, create context diffs and merged lists

2023-03-01 12:00

Embedded Linux distributions

Results of the online "wish list"

2022-01-13 12:00

Phase #3 of OSADL project on OPC UA PubSub over TSN successfully completed

Another important milestone on the way to interoperable Open Source real-time Ethernet has been reached

2021-02-09 12:00

Open Source OPC UA PubSub over TSN project phase #3 launched

Letter of Intent with call for participation is now available

Real Time Linux Workshops

1999 - 2000 - 2001 - 2002 - 2003 - 2004 - 2005 - 2006 - 2007 - 2008 - 2009 - 2010 - 2011 - 2012 - 2013 - 2014 - 2015

Twelfth Real-Time Linux Workshop on October 25 to 27, in Nairobi, Kenya

Towards Modular Security-Conscious Virtual Machines

Steffen Liebergeld, Michael Peter and Adam Lackorzynski, TUD - Operating Systems, Technische Universität Dresden, Germany

By their very nature, virtual machines are an unit of isolation which, together with their versatility, makes them interesting as a component in security-sensitive systems as well as in the combination with timing critical subsystems. While CPU virtualization has been simplified with the introduction of instruction set extensions, virtualizing the other parts of a system remains, due to its complexity, a challenge.

In this paper, we argue that the requirements are too diverse to be met by a single virtual machine monitor (VMM). We opted for a two-pronged, incremental approach. Our first stage is a small, simple, well performing VMM that achieves these traits by giving up on backward compatibility. With this first stage VMM at hand, we can run standard OSes like Linux with small modifications, which, in turn, can host more complex, fully backward compatible VMMs.

For systems with hardware virtualization support, our small VMM has the potential to supplant rehosted operating systems on top of microkernels as it takes less development effort, consumes less resources at run-time, and yields better performance.