Apr 10, 2012 • real-time operating system

Improving Embedded Operating System Security Part 4: Partition Systems to Protect Essential Components

By Bill Graham

An effective security technique is to separate different major components of a system into partitions. In some cases these partitions are physical, i.e., separate devices with physical separation. With modern virtualization technologies these partitions can be virtual, in software, on the same device or processor. An example of this would be combining a general purpose OS (GPOS) such as Microsoft Windows or Linux and an RTOS such as VxWorks on the same device but each runs in its own virtual environment. In this way security attacks and vulnerabilities on the GPOS do not affect the mission critical control done in the RTOS. Similarly, the GUI and remote access for a device can be in one partition and the control systems in another. Remote attacks that deny service or crash the GUI partition do not affect the control systems.

real-time operating system RTOS Security Virtualization VxWorks Wind River

Previous Wind River Showcases Yocto and GENIVI in IVI

Next Wind River and Android – 5 great years, with many more to come

Guest Blog: Qt Commercial 4.8.3 Released with Official Support for VxWorks

By Tuukka Turunen, Digia This week, together with the Qt Project, Digia released version 4.8.3 of Qt Commercial. Developed together with Wind River, it now includes official support for VxWorks, Wind...

11 years ago • 1 min read

First Line of Defense

By Ka Kay Achacoso Designing security into a device requires an understanding of the nature of the attacker. The cost of security implementation, including acquiring the technology carrying out the...

11 years ago • 1 min read

MSL: How Big Is It?

By Mike Deliman I’ve been asked here and there “Just how big is this MSL thing?” It’s a question I can give several answers to, depending on what the asker means. In physical terms, you could ride on...

11 years ago • 1 min read

All Your Mars are Belong to US!

By Mike Deliman It's time to celebrate. We have returned to Mars with the most complex roving robotic laboratory ever sent to another planet. We have demonstrated and proved the Sky Crane concept, whi...

11 years ago • 1 min read

Complexity

By Mike Deliman This afternoon I watched the press conferences for Mars Science Laboratory “Curiosity” that were hosted by NASA/JPL from Pasadena, Ca. These conferences were broadcast over NASA-TV, b...

11 years ago • 1 min read

Seven Minutes

By Mike Deliman This week, NASA hosted the Jet Propulsion Laboratory (JPL) scientists in charge of the Mars Science Laboratory rover, Curiosity, for a pre-landing press conference. The landing sequen...

11 years ago • 1 min read

Improving Embedded Operating System Security Part 3: Secure Your Network Communication

By Bill Graham Many security issues with embedded systems stem from their connection via a network with access open to a large population (enterprise network) or even directly to the Internet. Also,...

11 years ago • 1 min read

Improving Embedded Operating System Security Part 2: Enable a More Secure Configuration

By Bill Graham Despite the hype surrounding the state of embedded security, many of the runtime platforms that these systems are based on can be made more secure through proper configuration. Moreover...

11 years ago • 1 min read