High-Assurance Separation Kernels: A Survey on Formal Methods

Zhao, Yongwang; Sanán, David; Zhang, Fuyuan; Liu, Yang

doi:10.48550/arxiv.1701.01535

Cited by 2 publications

(6 citation statements)

References 93 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Due to this fact, these kinds of operating systems are often called partitions kernels. Partitioning mechanisms should provide spatial and temporal separation [2]. Moreover, the partition kernel is in charge of resources management such as I/O devices to permit access to only assigned parts of the system.…”

Section: A Safety-criticalmentioning

confidence: 99%

“…The foundation of MILS is a Separation Kernel (SK), which is responsible for adherence of data isolation, damage limitation and resource partitioning. SK extends partitioning kernels of sets of specific functionalities to enforce security separation, and information flow [2]. The security requirements are known as Common Criteria (CC) [3] establishing seven Evaluation Assurance Levels (EAL) from 1 to 7, which is the most rigorous.…”

Section: B Security-criticalmentioning

confidence: 99%

“…The typical approach to realizing separation kernel is based on embedded hypervisor and software virtualization mechanisms. The hypervisor layer manages the system resources and virtual partitions, which are capable of running guest operating systems with different levels of critically [2].…”

Section: B Security-criticalmentioning

confidence: 99%

“…The flag product of SYSGO company is a PikeOS compliant with DO-178C DAL B and ARINC 653 [2]. Although the system provides safety and security-critical mechanism, it is not compliant with SKPP.…”

Section: Sysgomentioning

confidence: 99%

“…According to a survey presented by researchers in [2], the majority of open-source projects are academic implementations. Special consideration should be given to POK and XtratuM operating systems due to compliance with ARINC 653.…”

Section: E Open Source Systemsmentioning

confidence: 99%

See 4 more Smart Citations

Resource Partitioning in Phoenix-RTOS for Critical and Noncritical Software for UAV systems

Buczyński¹,

Pisarczyk²,

Cabaj³

2022

Annals of Computer Science and Information Systems

View full text Add to dashboard Cite

Modern embedded systems' increasing complexity and varied safety levels make it hard to coordinate all functionalities within a single run-time environment. Access to more advanced and capacious hardware changes the trend from utilising many separated platforms into one managing the whole compounded airborne system. Providing an appropriate isolation and synchronisation level is achievable only by adapting an operating system with separation mechanisms into UAV systems. This paper introduces Phoenix-RTOS, the microkernel structured real-time operating system designed to be consistent with aerospace standards DO-178C and ARINC 653. The current market offers many counterparts like VxWorks, Integrity 178, PikeOS and many others. These products are well known and used in leading-edge avionics and space projects. However, it is not possible to use them in many low-budget projects due to the high price. The Phoenix-RTOS differs from others and is an open-source project becoming a standard solution for energy, gas meters and UAV systems. In this paper, we focus on the currently designed mechanisms of microkernel architecture for providing a mixed-criticality system, particularly for compliance with ARINC 653. Engineers have been identifying time and space partitioning issues to cope with tight worst-case execution bounds of critical tasks.

show abstract

Section: A Safety-criticalmentioning

confidence: 99%

Section: B Security-criticalmentioning

confidence: 99%

Section: B Security-criticalmentioning

confidence: 99%

Section: Sysgomentioning

confidence: 99%

Section: E Open Source Systemsmentioning

confidence: 99%

See 3 more Smart Citations

Resource Partitioning in Phoenix-RTOS for Critical and Noncritical Software for UAV systems

Buczyński¹,

Pisarczyk²,

Cabaj³

2022

Annals of Computer Science and Information Systems

View full text Add to dashboard Cite

show abstract

Lessons from Formally Verified Deployed Software Systems

Li¹,

Kogtenkov²,

Naumchev³

et al. 2023

Preprint

View full text Add to dashboard Cite

e technology of formal so ware veri cation has made spectacular advances, but how much does it actually bene t the development of practical so ware? Considerable disagreement remains about the practicality of building systems with mechanically-checked proofs of correctness. Is this prospect con ned to a few expensive, life-critical projects, or can the idea be applied to a wide segment of the so ware industry? To help answer this question, the present survey examines a range of projects, in various application areas, that have produced formally veri ed systems and deployed them for actual use. It considers the technologies used, the form of veri cation applied, the results obtained, and the lessons that can be drawn for the so ware industry at large and its ability to bene t from formal veri cation techniques and tools.

show abstract

High-Assurance Separation Kernels: A Survey on Formal Methods

Cited by 2 publications

References 93 publications

Resource Partitioning in Phoenix-RTOS for Critical and Noncritical Software for UAV systems

Resource Partitioning in Phoenix-RTOS for Critical and Noncritical Software for UAV systems

Lessons from Formally Verified Deployed Software Systems

Contact Info

Product

Resources

About