Microkernel Mechanisms for Improving the Trustworthiness of Commodity Hardware

Select |


Shen, Yanyan; Elphinstone, Kevin

Shen, Yanyan; Elphinstone, Kevin


Conference Material

European Dependable Computing Conference

Paris, France


Trustworthy isolation is required to consolidate safety and security critical software systems on a single hardware platform. Recent advances in formally verifying isolation properties of a microkernel provides a high degree of assurance that mutually distrusting software can co-exist on the same platform. However, commodity hardware is susceptible to transient faults triggered by cosmic rays, alpha particle strikes, temperature variation, and thus may invalidate the isolation guarantees. To increase trustworthiness of commodity hardware, we apply redundant execution techniques from the dependability community to a modern microkernel, to leverage the hardware redundancy provided by multicore processors to perform transient fault detection for applications and for the kernel itself. This paper presents the mechanisms and framework for microkernel-based systems to implement redundant execution for improved trustworthiness. It evaluates the performance of the resulting system on intel and ARM platforms.

multicore; kernel; reliability



Shen, Yanyan; Elphinstone, Kevin. Microkernel Mechanisms for Improving the Trustworthiness of Commodity Hardware. In: European Dependable Computing Conference; Paris, France. 2015-09-07. 12.

Loading citation data...

Citation counts
(Requires subscription to view)