Secure kernel hypervisor moves into ARM
LynxOS 7.0 is being migrated initially to the ARM Cortex-A series of processor cores, including processors from Xilinx, TI and Freescale. LynxSecure is being migrated to Cortex-A family members that offer hardware virtualization support.
The LynxOS 7.0 RTOS uses features such as access control lists, audit, quotas, local trusted path, account management, and OpenPAM. These capabilities mean that security can be designed into a connected embedded device rather than being added as an afterthought, and hence IoT edge and gateway devices can be deemed ‘secure by design’.
The LynxSecure separation kernel hypervisor provides strict isolation on a single hardware platform, efficiently separates memory, CPU and devices without the need of a “helper” operating system that is commonly found in hypervisors.
The virtualization technology in LynxSecure sits above the separation kernel, and by using hardware virtualization features found in many of the newest ARM cores, can provide performance very close to the native speeds for guest operating systems running in the isolated domains. LynxSecure can be used to securely separate different networks, for example IT and OT networks commonly found in IoT gateways, and it can securely partition persistent storage to isolate critical information from malicious threats.
Visit Lynx Software Technologies at www.lynx.com