MiCART : Mixed Criticality Real-time Hypervisor



Similar documents
XEBHRA: A Virtualized Platform for Cross Domain Information Sharing

ISOLATING UNTRUSTED SOFTWARE ON SECURE SYSTEMS HYPERVISOR CASE STUDY

Frontiers in Cyber Security: Beyond the OS

Applying Multi-core and Virtualization to Industrial and Safety-Related Applications

HIPEAC Segregation of Subsystems with Different Criticalities on Networked Multi-Core Chips in the DREAMS Architecture

Rapid Modular Software Integration (RMSI)

ARINC 653. An Avionics Standard for Safe, Partitioned Systems

OpenSplice DDS. Angelo CORSARO, Ph.D. Chief Technology Officer OMG DDS Sig Co-Chair PrismTech.

Chapter 2 Addendum (More on Virtualization)

Virtual Computing and VMWare. Module 4

Introduction to the NI Real-Time Hypervisor

Real-time Operating Systems. VO Embedded Systems Engineering Armin Wasicek

Design Specifications of an UAV for Environmental Monitoring, Safety, Video Surveillance, and Urban Security

A Data Centric Approach for Modular Assurance. Workshop on Real-time, Embedded and Enterprise-Scale Time-Critical Systems 23 March 2011

Industrial Application of MultiPARTES

Open Source Implementation of Hierarchical Scheduling for Integrated Modular Avionics

Flight Processor Virtualization

JPEO JTRS initiates the development of a new Software Communications Architecture (SCA) Release

Boeing B Introduction Background. Michael J. Morgan

Technical Data Sheet SCADE R17 Solutions for ARINC 661 Compliant Systems Design Environment for Aircraft Manufacturers, CDS and UA Suppliers

Building Resilient Systems: The Secure Software Development Lifecycle

Experience with the integration of distribution middleware into partitioned systems

A Standards-Based Integration Platform for Reconfigurable Unmanned Aircraft Systems

Virtualization Technologies (ENCS 691K Chapter 3)

SECURITY: THE KEY TO AFFORDABLE UNMANNED AIRCRAFT SYSTEMS. By Alex Wilson, Director of Business Development, Aerospace and Defense

evm Virtualization Platform for Windows

Moving Target Reference Implementation

Simplified Private Cloud Management

SecureView: Government/Industry Collaboration Delivers Improved Levels of Security, Performance, and Cost Savings for Mission-Critical Applications

NCR NETKEY Deliver and manage an interactive kiosk and digital signage experience

Dependable (Safe/Reliable) Systems. ARO Reliability Workshop Software Intensive Systems

NASA s Intelligent Synthesis Environment Program Revolutionizing the Agency s Engineering and Science Practice

Embedded Virtualization & Cyber Security for Industrial Automation HyperSecured PC-based Control and Operation

Network Access Control in Virtual Environments. Technical Note

ENEA: THE PROVEN LEADER IN SAFETY CRITICAL AVIONICS SYSTEMS

Mixed-Criticality: Integration of Different Models of Computation. University of Siegen, Roman Obermaisser

Mixed-Criticality Systems Based on Time- Triggered Ethernet with Multiple Ring Topologies. University of Siegen Mohammed Abuteir, Roman Obermaisser

Parameters for Efficient Software Certification

Potential Thesis Topics in Networking

Hypervisors. Introduction. Introduction. Introduction. Introduction. Introduction. Credits:

THE INTERNET OF THINGS IN COMMERCIAL AVIATION

Lecture 2 Cloud Computing & Virtualization. Cloud Application Development (SE808, School of Software, Sun Yat-Sen University) Yabo (Arber) Xu

Lecture 3 - Model-based Control Engineering

Date: December 2009 Version: 1.0. How Does Xen Work?

Tomorrow s IP-Based Access Control System on Today s Network Infrastructure using PCN IP-485 Technology

Condor Supercomputer

Safety Management Challenges for Aviation Cyber Physical Systems

ARINC-653 Inter-partition Communications and the Ravenscar Profile

Sourcefire Solutions Overview Security for the Real World. SEE everything in your environment. LEARN by applying security intelligence to data

Taking Virtualization to the Next Level: Private Cloud and Bring Your Own Device (BYOD)

How To Get A Client Side Virtualization Solution For Your Financial Services Business

SUSE Manager. A Comprehensive Linux Server Management the Linux Way. Name. Title

A hypervisor approach with real-time support to the MIPS M5150 processor

I/O Virtualization Using Mellanox InfiniBand And Channel I/O Virtualization (CIOV) Technology

Linux A multi-purpose executive support for civil avionics applications?

Control Tower for Virtualized Data Center Network

Evolution in Regional Aircraft Avionics

Virtualization for Hard Real-Time Applications Partition where you can Virtualize where you have to

UNCLASSIFIED. R-1 Program Element (Number/Name) PE D8Z / Historically Black Colleges and Universities and Minority Institutions

Desktop Virtualization for the Banking Industry. Resilient Desktop Virtualization for Bank Branches. A Briefing Paper

NASA s Software Architecture Review Board s (SARB) Findings from the Review of GSFC s core Flight Executive/Core Flight Software (cfe/cfs)

Study on Real-Time Test Script in Automated Test Equipment

AFDX/ARINC 664 Concept, Design, Implementation and Beyond

Aircraft & Defense Vehicle Simulation Lab

Software Engineering/Courses Description Introduction to Software Engineering Credit Hours: 3 Prerequisite: (Computer Programming 2).

THE DANIEL GUGGENHEIM SCHOOL OF AEROSPACE ENGINEERING

CIO and Cyber Security Overview Argonne National Laboratory. Michael A. Skwarek CIO Matthew A. Kwiatkowski CISO Oct. 12, 2011

Citrix Training. Course: Citrix Training. Duration: 40 hours. Mode of Training: Classroom (Instructor-Led)

CyberNEXS Global Services

Engineering and R&D Services (ERS) EVP & Global Head Sales and Practice

Cyber Security at NSU

Aircraft Hacking Practical Aero Series

Matthew O. Anderson Scott G. Bauer James R. Hanneman. October 2005 INL/EXT

Propulsion Gas Path Health Management Task Overview. Donald L. Simon NASA Glenn Research Center

A Modern Process Automation System Offers More than Process Control. Dick Hill Vice President ARC Advisory Group

Product Development Flow Including Model- Based Design and System-Level Functional Verification

Applied Research Laboratory: Visualization, Information and Imaging Programs

National Cyber Security Framework and Protocol. for securing digital information in networked critical infrastructures and communications

Managed Hosting is a managed service provided by MN.IT. It is structured to help customers meet:

Intel Embedded Virtualization Manager

Introduction What is the cloud

VMware Virtual Infrastucture From the Virtualized to the Automated Data Center

CyberSecurity: Trends, Careers, & the Next Generation

Application-Centric WLAN. Rob Mellencamp

GeoLogics Points of Contact

Transcription:

2013 DHS S&T/DoD ASD (R&E) CYBER SECURITY SBIR WORKSHOP MiCART : Mixed Criticality Real-time Hypervisor Adventium Labs Todd Carpenter, Chief Scientist July 23, 2013

Company Profile Scientist-owned small business, founded 2002 Commercial and government contract research Technical Staff: Ph.D.: 50%, MS: 30%, BS: 20% Fields: Computer Science, Mathematics, Electrical Engineering, Psychology Career patents: 25 issued (3 AL), 33 pending (5 AL) Publications: 300+ 2012 DoD commercialization score: 95 (up from 90 in 2011) Cyber Security Trusted Systems Cyber Physical Systems Real-World Applications Automated Reasoning Systems Engineering Selected Transition Successes: SAFEbus for Boeing 777 and C5-AMP Integrated Modular Avionics Guidant LATITUDE wireless medical devices 3Com Embedded Firewall DTOS (Distributed Trusted Operating System) foundation of SE Linux DEOS Real-Time Operating System (RTOS) 8/5/2013 2013 DHS S&T/DoD ASD (R&E) CYBER SECURITY SBIR WORKSHOP 1

Customer Need Aircraft integrators lack good tools to predict, manage, and control avionics integration challenges. Increasing avionics software complexity is driving up the cost and time to deploy aircraft. Integration of previously federated avionics and controls architectures has saved size, weight, and power, but integration costs remain high due to: High certification costs for mixed-criticality systems. Constrained application architecture options. Heavy development and run-time penalties. Limited reasoning scope, so changes ripple. As a result, integration opportunities are limited, and It takes a long time to field enhancements and new capabilities. Engines - Payload Sensing Fire Control Displays Guidance Navigation Weather Flight Controls 8/5/2013 2013 DHS S&T/DoD ASD (R&E) CYBER SECURITY SBIR WORKSHOP 2 Fuel Systems Aircraft avionics integration opportunities are limited by complexity and tools

Approach MiCART is a time and space system integrating platform, which reduces certification costs. It provides architecture flexibility to host diverse applications. Primary artifacts: MiCART Xen Run-time Scheduler satisfies rate, latency, jitter, and intraframe application communications requirements on top of Xen, which supports rapid prototyping, development, and deployment. MiCART Hierarchical, Off-line Scheduler, built upon standard languages, development, and analysis environments, computes hierarchical cabinet-level schedules, so change can be managed. MiCART addresses hierarchical time and space partitioning from cabinet to core. 8/5/2013 2013 DHS S&T/DoD ASD (R&E) CYBER SECURITY SBIR WORKSHOP 3

Benefits MiCART enables safety critical software, such as avionics, to affordably operate side by side on the same computer hardware with non critical software, such as video feeds. New functionality can be rapidly prototyped in inexpensive development environments and hosted alongside high criticality applications with constrained RTOSs. Cabinet-level scheduling permits performance integration during development, rather than on the test-bench or in flight. Time-to-deploy can be reduced, since time-and-space partitioning guarantees that low criticality components cannot adversely impact flight critical code. Timing channels can be reduced. MiCART reduces life-cycle cost and time to integrate mixed-criticality applications. 8/5/2013 2013 DHS S&T/DoD ASD (R&E) CYBER SECURITY SBIR WORKSHOP 4

Current Status MiCART Xen Run-time Scheduler Demonstrated ability to host DDC-I DO-178B Certified RTOS as Xen 4 VMM guest. Demonstrated I/O separation with IOMMU. Released Xen Scheduler open-source to Xen community. MiCART Hierarchical Off-line Scheduler Currently funded under the Leading Edge Aeronautics Research for NASA (LEARN) to compute real-time schedules at the aircraft level. This off-line scheduler is independent of the Run-time Scheduler, and is intended for complex real-time integration challenges. Phase II Complete; Currently extending off-line scheduler to aircraft level. 8/5/2013 2013 DHS S&T/DoD ASD (R&E) CYBER SECURITY SBIR WORKSHOP 5

Next Steps MiCART Xen Run-time Scheduler (already released open source) Exploring opportunities to port MiCART Xen Scheduler to spacepartitioned hypervisor (e.g., AFRL TSABI/SABI* certified SecureView built on Citrix XenClient XT). Transition to UAV or other controls application. MiCART Hierarchical Off-line Scheduler Currently looking for an integrator needing complex aircraft-level performance guarantees to partner with for Phase II NASA LEARN. Phase II LEARN will demonstrate benefits of providing performance guarantees during system design, thereby reducing down-stream integration cost spirals. *in progress NASA LEARN is near-term opportunity to deploy off-line scheduler. 8/5/2013 2013 DHS S&T/DoD ASD (R&E) CYBER SECURITY SBIR WORKSHOP 6

Contact Information Todd Carpenter Chief Scientist and Owner, Adventium Labs 651.295.7126 todd.carpenter@adventiumlabs.com http://www.adventiumlabs.com/our-work/productsservices/micart%e2%84%a2-mixed-criticality-real-time-virtualizationsupport includes a video of real-time control with Xen Acknowledgements: This work has been funded by the Office of Secretary of Defense (OSD)/Navy SBIR program under OSD07-I10. Program technical direction has been provided by NRL. Disclaimer: The views and conclusions contained in this document are those of the authors and should not be interpreted as representing the official policies, either express or implied, of the Naval Research Laboratory, Office of the Secretary of Defense, or the U.S. Government. 8/5/2013 2013 DHS S&T/DoD ASD (R&E) CYBER SECURITY SBIR WORKSHOP 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information