This content is not included in
your SAE MOBILUS subscription, or you are not logged in.
Characterization of Hypervisors for Security-Enhanced Avionics Applications
Technical Paper
2011-01-2805
ISSN: 0148-7191, e-ISSN: 2688-3627
Annotation ability available
Sector:
Language:
English
Abstract
Traditionally, software in avionics has been totally separated from open-world software, in order to avoid any interaction that could corrupt critical on-board systems. However, new aircraft generations need more interaction with off-board systems to offer extended services, which makes these information flows potentially dangerous.
In a previous work, we have proposed the use of virtualization to ensure dependability of critical applications despite bidirectional communication between critical on-board systems and untrusted off-board systems. We have developed a test bed to assess the performance impact induced by the use of virtualization. In this work, various configurations have been experimented that range from a basic machine without an OS up to the complete architecture featuring a hypervisor and an OS running in a virtual machine. Several tests (computation, memory, network) are carried out, and timing measures are collected on different hypervisors.
Recommended Content
Authors
- Maxime Lastera - LAAS-CNRS, Université de Toulouse
- Eric Alata - LAAS-CNRS, Université de Toulouse
- Jean Arlat - LAAS-CNRS, Université de Toulouse
- Yves Deswarte - LAAS-CNRS, Université de Toulouse
- David Powell - LAAS-CNRS, Université de Toulouse
- Bertrand Leconte - Airbus
- Cristina Simache - Altran Sud Ouest
Citation
Lastera, M., Alata, E., Arlat, J., Deswarte, Y. et al., "Characterization of Hypervisors for Security-Enhanced Avionics Applications," SAE Technical Paper 2011-01-2805, 2011, https://doi.org/10.4271/2011-01-2805.Also In
References
- Laarouchi, Y. Deswarte, Y. Arlat, J. Powell, D. de Nadaï, E. “Connecting Commercial Computers to Avionics Systems,” Proc. 28th IEEE/AIAA, Digital Avionics Systems Conference (DASC 2009) Orlando, FL, USA 2009 6.D.1-1 6.D.1-9 10.1109/DASC.2009.5347440
- Laarouchi, Y. Security and Safety of Open Architectures with Multiple Levels of Criticality: Application in Avionics PhD Thesis, INSAT and University of Toulouse, LAAS Research Report 09898 Nov. 2009
- IBM “IBM: VM History and Heritage References,” 1972
- Smith, J. Nair, R. Virtual Machines: Versatile Platforms for Systems and Processes Morgan Kaufmann 2005
- Barham, P. Dragovic, B. Fraser, K. Hand, S. Harris, T. Ho, A. Neugebauer, R. Pratt, I. Warfield, A. “Xen and the Art of Virtualization,” Proc. 19th ACM Symposium on Operating Systems Principles (SOSP'03) Bolton Landing, NY, USA Oct. 2003 164 177 SIGOPS Operating Systems Review 37 5 Dec. 2003 10.1145/1165389.945462
- Xu, X. Feng Zhou, F. Wan, J. Jiang, Y. “Quantifying Performance Properties of Virtual Machine” International Symposium on Information Science and Engineering, ISISE'08 2008 1 24 28 10.1109/ISISE.2008.221
- “Ubench” http://phystech.com/download/ubench.html
- McDougall, R. Anderson, J. “Virtualization Performance: Perspectives and Challenges Ahead” ACM SIGOPS Operating Systems Review 44 40 56 Dec. 2010 10.1145/1899928.1899933
- Makhija, V. Herndon, B. Smith, P. Roderick, L. Zamost, E. Anderson, J. “VMmark: A Scalable Benchmark for Virtualized Systems” Tech. Rep. VMware-TR-2006-002 Sept. 2006
- Jin, H. Frumkin, M. Yan, J. “The OpenMP Implementation of NAS Parallel Benchmarks and its Performance” NASATechnical Report NAS-99-011 October 1999
- Bhukya, D. P. Ramachandram, S. Reeta Sony, A. L. “Evaluating Performance of Sequential Programs in Virtual Machine Environments Using Design of Experiment” IEEE International Conference on Computational Intelligence and Computing Research (ICCIC) 1 4 2010 10.1109/ICCIC.2010.5705753
- Walters, B. “VMware Virtual Platform” Linux Journal 1999 63 July 1999
- Umeno, H. Parayno, M. L. C. Teramoto, K. Kawano, M. Inamasu, H. Enoki, S. Kiyama, M. Aoyama, T. Fukunaga, T. “Performance Evaluation on Server Consolidation Using Virtual Machines” SICE-ICASE, International Joint Conference 2730 2734 Oct. 2006 10.1109/SICE.2006.315198
- Seungkwon, C. Youngil, K. “Linux BYTEmark Benchmarks: A Performance Comparison of Embedded Mobile Processors” Proc. 9th International Conference on Advanced Communication Technology 2007 1 125 127
- McVoy, L. Staelin, C. “lmbench: Portable Tools for Performance Analysis” Proc. of the 1996 USENIX Annual Technical Conference Berkeley, CA, USA 1996
- Norcott, W. Capps, D. “IOzone Flesystem Benchmark Program,” http://www.iozone.org 2002
- “Hadoop” http://hadoop.apache.org
- Kontagora, M. Gonzalez-Velez, H. “Benchmarking a MapReduce Environment on a Full Virtualisation Platform” International Conference on Complex, Intelligent and Software Intensive Systems (CISIS) 2010 433 438 10.1109/CISIS.2010.45
- Quigley, E. “ Linux shells by example ” Prentice Hall PTR 2000
- Rutkowska, J. “Qubes OS architecture, version 0.3” 2010
- “Linux 2.6.33” http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.33/ChangeLog-2.6.33.14
- “Linux 2.6.34” http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.34/ChangeLog-2.6.34.9
- Klein, G. Kevin Elphinstone, K. Heiser, G. Andronick, J. Cock, D. Derrin, P. Elkaduwe, D. Engelhardt, K. Kolanski, R. Norrish, M. Sewell, T. Tuch, H. Winwood, S. “seL4: Formal Verification of an OS Kernel,” Proc. 22nd ACM SIGOPS Symposium on Operating Systems Principles (SOSP'09) New York, NY, USA 2009 207 220 10.1145/1629575.1629596
- “PolyXene” http://www.polyxene.com/secure-operating-system.aspx