Enhancing Security of Embedded Linux on a Multi-core Processor

Ning Li; Yuki Kinebuchi; Tatsuo Nakajima

doi:10.1109/RTCSA.2011.36

2011 IEEE 17th International Conference on Embedded and Real-Time Computing Systems and Applications

Enhancing Security of Embedded Linux on a Multi-core Processor

Year: 2011, Volume: 2, Pages: 117-121

DOI Bookmark: 10.1109/RTCSA.2011.36

Authors

Ning Li
Yuki Kinebuchi
Tatsuo Nakajima

Abstract

While recent embedded systems start to own more and more functionalities, security requirements become more and more important. In this paper we propose an approach to enhance the security of embedded systems. In this approach SPUMONE, a thin virtualization layer, is selected to build a multi-OS environment for its low overhead. Xv6 runs as trusted OS for executing the monitoring service that detects the violation of the integrity of the Linux kernel while Linux as a general purpose OS. The monitoring service checks whether Linux is compromised or not. A secure pager that offers the spatial isolation based on the core-local memory is proposed to protect the integrity of the xv6 kernel located in the main memory, which can make Linux and xv6 run in high security level.

Like what you’re reading?

Already a member?

Get this article FREE with a new membership!

Mint: Booting Multiple Linux Kernels on a Multicore Processor
2011 International Conference on Broadband and Wireless Computing, Communication and Applications
A Light-Weighted Virtualization Layer for Multicore Processor-Based Rich Functional Embedded Systems
2012 IEEE 15th International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing
The Secure Boot of Embedded System Based on Mobile Trusted Module
2012 Second International Conference on Intelligent System Design and Engineering Application
Composition Kernel: A Multi-core Processor Virtualization Layer for Highly Functional Embedded Systems
Pacific Rim International Symposium on Dependable Computing, IEEE
Securing Boot of an Embedded Linux on FPGA
2011 IEEE International Symposium on Parallel and Distributed Processing Workshops and Phd Forum
Design of Virtualization Framework to Detect Cyber Threats in Linux Environment
2017 IEEE 4th International Conference on Cyber Security and Cloud Computing (CSCloud)
Using Virtual CPU Migration to Solve the Lock Holder Preemption Problem in a Multicore Processor-Based Virtualization Layer for Embedded Systems
2012 IEEE International Conference on Embedded and Real-Time Computing Systems and Applications
A Lightweight Monitoring Service for Multi-core Embedded Systems
2010 13th IEEE International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing
Research Reform on Embedded Linux?s Hard Real-Time Capability in Application
Embedded Software and Systems, International Conference on
SPLinux: An Information Flow Secure Linux
2021 IEEE Intl Conf on Parallel & Distributed Processing with Applications, Big Data & Cloud Computing, Sustainable Computing & Communications, Social Computing & Networking (ISPA/BDCloud/SocialCom/SustainCom)

Enhancing Security of Embedded Linux on a Multi-core Processor

Authors

Abstract

Related Articles