In order to host a general purpose operating system, hypervisors need to virtualize the CPU memory subsystem. This entails dynamically changing MMU resources, in particular the page tables, to allow a hosted OS to reconfigure its own memory. In this paper we present the verification of the isolation properties of a hypervisor design that uses direct paging. This virtualization approach allows to host commodity Oss without requiring either shadow data structures or specialized hardware support. Our verification targets a system consisting of a commodity CPU for embedded devices (ARMv7), a hypervisor and an untrusted guest running Linux.The verification involves three steps: (i) Formalization of an ARMv7 CPU that includes the MMU, (ii) Formal...
In recent years, system virtualization technology has gradually shifted its focus from data centers ...
AbstractThe paper discusses the constructive framework for writing hypervisor on the top of the VM. ...
The growing demand of new functionalities in modern embedded real-time systems has led chip makers t...
In order to host a general purpose operating system, hypervisors need to virtualize the CPU memory s...
The isolation of security critical components from an untrusted OS allows to both protect applicatio...
The isolation of security critical components from an untrusted OS allows to both protect applicatio...
Hypervisors are a popular mechanism for implementing software virtualization. Since hypervisors exec...
International audienceHypervisors must isolate memories of guest operating systems. This paper is co...
In this paper, we formally verify security properties of the ARMv7 Instruction Set Architecture (ISA...
This paper presents the first results from the ongoing research project HASPOC, developing a high as...
We present an analysis of the virtualizability of the ARMv7-A architecture carried out in the contex...
Over the last years, security-kernels have played a promising role in reshaping the landscape of pla...
Virtual memory is an essential mechanism for enforcing security boundaries, but its relaxed-memory c...
A hypervisor is a software which virtualizes hardware resources, allowing several guest operating sy...
ARM is the dominant processor architecture for mobile devices and many other high-end embedded syste...
In recent years, system virtualization technology has gradually shifted its focus from data centers ...
AbstractThe paper discusses the constructive framework for writing hypervisor on the top of the VM. ...
The growing demand of new functionalities in modern embedded real-time systems has led chip makers t...
In order to host a general purpose operating system, hypervisors need to virtualize the CPU memory s...
The isolation of security critical components from an untrusted OS allows to both protect applicatio...
The isolation of security critical components from an untrusted OS allows to both protect applicatio...
Hypervisors are a popular mechanism for implementing software virtualization. Since hypervisors exec...
International audienceHypervisors must isolate memories of guest operating systems. This paper is co...
In this paper, we formally verify security properties of the ARMv7 Instruction Set Architecture (ISA...
This paper presents the first results from the ongoing research project HASPOC, developing a high as...
We present an analysis of the virtualizability of the ARMv7-A architecture carried out in the contex...
Over the last years, security-kernels have played a promising role in reshaping the landscape of pla...
Virtual memory is an essential mechanism for enforcing security boundaries, but its relaxed-memory c...
A hypervisor is a software which virtualizes hardware resources, allowing several guest operating sy...
ARM is the dominant processor architecture for mobile devices and many other high-end embedded syste...
In recent years, system virtualization technology has gradually shifted its focus from data centers ...
AbstractThe paper discusses the constructive framework for writing hypervisor on the top of the VM. ...
The growing demand of new functionalities in modern embedded real-time systems has led chip makers t...