SPUMONE: Lightweight CPU Virtualization Layer for Embedded Systems

Kanda, Wataru; Yumura, Y.; Kinebuchi, Yuki; Makijima, Kazuo; Nakajima, Tatsuo

doi:10.1109/euc.2008.157

Cited by 21 publications

(9 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There is an argument that D-Visor is such relatively small software that it can be made secure and trusted by code inspection and testing. This argument can be true for thin and simple implementations of D-Visor, such as SPUMONE [3]. Thorough code inspection and testing, however, become difficult as the size of software increases and the interactions between D-Visor and its guest OS become more complex.…”

Section: Introductionmentioning

confidence: 93%

Enforcing dependable operations by model checking a visualization layer

Oikawa

2011

2011 IEEE/IFIP 41st International Conference on Dependable Systems and Networks Workshops (DSN-W)

View full text Add to dashboard Cite

This paper describes the verification technique for enforcing and verifying correct operations of a virtualization software layer by applying model checking. Software model checking is a method of reading software programs, exploring all execution paths and checking whether developer-specified properties (conditions) are satisfied or not. Software model checking is first applied for enforcing the correct operations especially to ensure the isolation of the virtualization layer itself. It is also applied to a device driver so that the device handler of the virtualization layer enforces a guest OS operates in correct orders in order to avoid putting the device in error states. We are currently working on widening the areas where model checking can be applied in our virtualization software layer.

show abstract

Section: Introductionmentioning

confidence: 93%

Enforcing dependable operations by model checking a visualization layer

Oikawa

2011

2011 IEEE/IFIP 41st International Conference on Dependable Systems and Networks Workshops (DSN-W)

View full text Add to dashboard Cite

show abstract

“…SPUMONE. A virtualization layer that works with paravirtualized systems but claims to have small engineering cost in terms of needed modifications in the guest OS [18]. The solution provides the VCPU and the idea that multiple virtual processors can be associated with a single application domain.…”

Section: A Related Work Concernsmentioning

confidence: 99%

Hardware-assisted virtualization targeting MIPS-based SoCs

Aguiar

Moratelli

Sartori

et al. 2012

2012 23rd IEEE International Symposium on Rapid System Prototyping (RSP)

View full text Add to dashboard Cite

Virtualization has become a hot topic in embedded systems for both academia and industry development. Among its main advantages, we can highlight (i) software design quality; (ii) security levels of the system; (iii) software reuse, and; (iv) hardware utilization. However, it still presents constraints that have lessened the excitement towards itself, since the greater concerns are its implicit overhead and whether it is worthy or not. Thus, we detail how to adapt an existing MIPS-based architecture aiming to support the virtualization principles. In this paper we present detailed information about the architecture implementation and results demonstrating its correctness and efficiency.

show abstract

“…Figure 2 describes the prototype architecture. As said previously, our prototype system is based on a system lightweight virtualization layer named SPUMONE [6]. SPUMONE is a virtual machine monitor that targets embedded systems and has the particularity to let guest OSes run in kernel mode, in order to minimize its performance impact and ease the design of multi-system applications.…”

Section: Monitoring Servicementioning

confidence: 99%

A Lightweight Monitoring Service for Multi-core Embedded Systems

Shimada

Courbot

Kinebuchi

et al. 2010

2010 13th IEEE International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing

Self Cite

View full text Add to dashboard Cite

The recent increase in complexity and functionality in embedded systems makes them more vulnerable to rootkit-type attacks, raising the need for integrity management systems. However, as of today there is no such system that can guarantee the system's safety while matching the low-resource, real-time and multi-core requirements of embedded systems. In this paper, we present a Virtual Machine Monitor (VMM) based monitoring service for embedded systems that checks the actual kernel data against a safe data specification. However, due to the VMM and multi-core nature of the system, the guest OS can be preempted at any time, leading to the checking of potentially inconsistent states. We evaluated two approaches to solve this problem: detecting such invalid states by checking specific kernel data, and detecting system calls using the VMM.

show abstract

SPUMONE: Lightweight CPU Virtualization Layer for Embedded Systems

Cited by 21 publications

References 5 publications

Enforcing dependable operations by model checking a visualization layer

Enforcing dependable operations by model checking a visualization layer

Hardware-assisted virtualization targeting MIPS-based SoCs

A Lightweight Monitoring Service for Multi-core Embedded Systems

Contact Info

Product

Resources

About