Inter-partition Information Flow Control for High-Assurance Embedded Systems

Author

Yang, Xia ; Lei, Jian ; Xiong, Guang-ze

Author_Institution

Sch. of Comput. Sci. & Eng., Univ. of Electron. Sci. & Technol. of China, Chengdu, China

Volume

2

fYear

2009

fDate

March 31 2009-April 2 2009

Firstpage

456

Lastpage

460

Abstract

High-assurance embedded systems have very strict requirement in both design and analysis. This paper presents a trusted architecture named Hades to high-assurance system design for security and safety-critical embedded systems with MLS, which is based on the concept of separation. We define a rule that only authorized data can be transferred among partitions to absolutely guarantee the security and safety for high-assurance embedded systems. The inter-partition information flow control mechanism for Hades architecture can prevent untrustworthy and low-level partitions from violating other partitions, by means of which the security and safety of high-assurance embedded systems are assured.

Keywords

embedded systems; safety-critical software; security of data; software architecture; Hades architecture; MLS; high-assurance embedded system; high-assurance system design; interpartition information flow control; low-level partition; multilevel security; safety-critical embedded system; Communication system security; Computer science; Control systems; Data security; Design engineering; Embedded system; Information security; Kernel; Safety; Virtual machine monitors;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Science and Information Engineering, 2009 WRI World Congress on

Conference_Location

Los Angeles, CA

Print_ISBN

978-0-7695-3507-4

Type

conf

DOI

10.1109/CSIE.2009.656

Filename

5171380