kth.sePublications
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
A High Assurance Virtualization Platform for ARMv8
KTH, School of Computer Science and Communication (CSC), Theoretical Computer Science, TCS.ORCID iD: 0000-0003-4889-8326
Ericsson Research.
SICS Swedish ICT.ORCID iD: 0000-0001-8003-200X
SICS Swedish ICT.ORCID iD: 0000-0003-3434-5640
Show others and affiliations
2016 (English)In: Networks and Communications (EuCNC), 2016 European Conference on, IEEE conference proceedings, 2016Conference paper, Published paper (Refereed)
Abstract [en]

This paper presents the first results from the ongoing research project HASPOC, developing a high assurance virtualization platform for the ARMv8 CPU architecture. Formal verification at machine code level guarantees information isolation between different guest systems (e.g. OSs) running on the platform. To use the platform in networking scenarios, we allow guest systems to securely communicate with each other via platform-provided communication channels and to take exclusive control of peripherals for communication with the outside world.

The isolation is shown to be formally equivalent to that of guests executing on physically separate platforms with dedicated communication channels crossing the air-gap. Common Criteria (CC) assurance methodology is applied by preparing the CC documentation required for an EAL6 evaluation of products using the platform. Besides the hypervisor, a secure boot component is included and verified to ensure system integrity.
Place, publisher, year, edition, pages
IEEE conference proceedings, 2016.
Keywords [en]
hypervisor, isolation, assurance, formal verification, Common Criteria, ARMv8
National Category
Computer Sciences
Research subject
Computer Science
Identifiers
URN: urn:nbn:se:kth:diva-192598DOI: 10.1109/EuCNC.2016.7561034ISI: 000387091300042Scopus ID: 2-s2.0-84988950416ISBN: 978-1-5090-2893-1 (print)ISBN: 978-1-5090-2894-8 (print)OAI: oai:DiVA.org:kth-192598DiVA, id: diva2:971284
Conference
European Conference on Networks and Communications (EuCNC), 27-30 June 2016
Projects
HASPOC
Funder
VINNOVA
Note

QC 20160920

Available from: 2016-09-15 Created: 2016-09-15 Last updated: 2024-03-18Bibliographically approved

Open Access in DiVA

author version(313 kB)600 downloads
File information
File name FULLTEXT01.pdfFile size 313 kBChecksum SHA-512
66f4cf1eca923bfa10ec6b50fe044e3a155918f2ea65329dc2df2391bcb39f6350d2d4b41e76a81a31a3125e28aaf889b3dfd161e835895b38c366e7fff75d77
Type fulltextMimetype application/pdf

Other links

Publisher's full textScopusEntry in publisher's database

Authority records

Baumann, ChristophNäslund, MatsGehrmann, ChristianSchwarz, Oliver

Search in DiVA

By author/editor
Baumann, ChristophNäslund, MatsGehrmann, ChristianSchwarz, Oliver
By organisation
Theoretical Computer Science, TCS
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 600 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 1618 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG
|
KTH Library
|
DiVA support
|
Register in DiVA
|
Posting your thesis
|
SwePub