A software infrastructure for dependable embedded systems

Hiromasa Shimada, Alexandre Courbot, Yuki Kinebuchi, Tatsuo Nakajima

    Research output: Contribution to journalArticle

    1 Citation (Scopus)

    Abstract

    Recent embedded systems like mobile phones and digital TV appliances have been increasing their functionalities. These systems become very complex, but new products should be developed with short time-to-market. Therefore, future embedded systems that will be more complex require a new software infrastructure that industries can develop new products faster by reusing existing software as much as possible. In our project, we are developing SPUMONE which is able to compose multiple functionalities with a minimum cost. SPUMONE enables multiple OSes to coexist on a single system. Therefore, most of existing application programs require no modification. For satisfying the requirements of embedded systems, one of the most important goal of SPUMONE is to satisfy real-time constraints of real-time OSes. When real-time OS and general purpose OS like Linux run at the same time, the real-time OS can ensure the real-time responsiveness. It is also important to ensure security in future embedded systems that is always connected to the Internet. Increasing the complexity and functionality in embedded systems makes the OS kernel more vulnerable from malicious programs. This raises the need of the integrity management system for the general purpose OS kernel. The integrity management system that observes the behavior of kernel activities from the outside of the OS kernel is promising approach to increase the security of the general purpose OS kernel. However, traditional integrity management systems require extra resources and do not take into account the monitoring on a multi-core processor. The monitoring service which is an integrity management system running on SPUMONE as a new OS personality checks the integrity of data structures in the general purpose OS kernel. It also takes into account running on a multi-core processor. Therefore, the monitoring service and the general purpose OS can run on different cores to reduce the overhead of the integrity management.

    Original languageEnglish
    Pages (from-to)491-503
    Number of pages13
    JournalComputer Systems Science and Engineering
    Volume26
    Issue number6
    Publication statusPublished - 2011 Nov

    Fingerprint

    Embedded systems
    Embedded Systems
    Integrity
    Infrastructure
    kernel
    Software
    Real-time
    Multi-core Processor
    Monitoring
    Mobile phones
    Application programs
    Linux
    Data structures
    Mobile Phone
    Internet
    Data Structures
    Industry
    Resources
    Requirements
    Costs

    Keywords

    • Monitoring service
    • Real time systems
    • Virtualization layer

    ASJC Scopus subject areas

    • Computer Science(all)
    • Control and Systems Engineering
    • Theoretical Computer Science

    Cite this

    A software infrastructure for dependable embedded systems. / Shimada, Hiromasa; Courbot, Alexandre; Kinebuchi, Yuki; Nakajima, Tatsuo.

    In: Computer Systems Science and Engineering, Vol. 26, No. 6, 11.2011, p. 491-503.

    Research output: Contribution to journalArticle

    Shimada, H, Courbot, A, Kinebuchi, Y & Nakajima, T 2011, 'A software infrastructure for dependable embedded systems', Computer Systems Science and Engineering, vol. 26, no. 6, pp. 491-503.
    Shimada, Hiromasa ; Courbot, Alexandre ; Kinebuchi, Yuki ; Nakajima, Tatsuo. / A software infrastructure for dependable embedded systems. In: Computer Systems Science and Engineering. 2011 ; Vol. 26, No. 6. pp. 491-503.
    @article{0f741ee43e9a4b41a7e708f1792fcffa,
    title = "A software infrastructure for dependable embedded systems",
    abstract = "Recent embedded systems like mobile phones and digital TV appliances have been increasing their functionalities. These systems become very complex, but new products should be developed with short time-to-market. Therefore, future embedded systems that will be more complex require a new software infrastructure that industries can develop new products faster by reusing existing software as much as possible. In our project, we are developing SPUMONE which is able to compose multiple functionalities with a minimum cost. SPUMONE enables multiple OSes to coexist on a single system. Therefore, most of existing application programs require no modification. For satisfying the requirements of embedded systems, one of the most important goal of SPUMONE is to satisfy real-time constraints of real-time OSes. When real-time OS and general purpose OS like Linux run at the same time, the real-time OS can ensure the real-time responsiveness. It is also important to ensure security in future embedded systems that is always connected to the Internet. Increasing the complexity and functionality in embedded systems makes the OS kernel more vulnerable from malicious programs. This raises the need of the integrity management system for the general purpose OS kernel. The integrity management system that observes the behavior of kernel activities from the outside of the OS kernel is promising approach to increase the security of the general purpose OS kernel. However, traditional integrity management systems require extra resources and do not take into account the monitoring on a multi-core processor. The monitoring service which is an integrity management system running on SPUMONE as a new OS personality checks the integrity of data structures in the general purpose OS kernel. It also takes into account running on a multi-core processor. Therefore, the monitoring service and the general purpose OS can run on different cores to reduce the overhead of the integrity management.",
    keywords = "Monitoring service, Real time systems, Virtualization layer",
    author = "Hiromasa Shimada and Alexandre Courbot and Yuki Kinebuchi and Tatsuo Nakajima",
    year = "2011",
    month = "11",
    language = "English",
    volume = "26",
    pages = "491--503",
    journal = "Computer Systems Science and Engineering",
    issn = "0267-6192",
    publisher = "CRL Publishing",
    number = "6",

    }

    TY - JOUR

    T1 - A software infrastructure for dependable embedded systems

    AU - Shimada, Hiromasa

    AU - Courbot, Alexandre

    AU - Kinebuchi, Yuki

    AU - Nakajima, Tatsuo

    PY - 2011/11

    Y1 - 2011/11

    N2 - Recent embedded systems like mobile phones and digital TV appliances have been increasing their functionalities. These systems become very complex, but new products should be developed with short time-to-market. Therefore, future embedded systems that will be more complex require a new software infrastructure that industries can develop new products faster by reusing existing software as much as possible. In our project, we are developing SPUMONE which is able to compose multiple functionalities with a minimum cost. SPUMONE enables multiple OSes to coexist on a single system. Therefore, most of existing application programs require no modification. For satisfying the requirements of embedded systems, one of the most important goal of SPUMONE is to satisfy real-time constraints of real-time OSes. When real-time OS and general purpose OS like Linux run at the same time, the real-time OS can ensure the real-time responsiveness. It is also important to ensure security in future embedded systems that is always connected to the Internet. Increasing the complexity and functionality in embedded systems makes the OS kernel more vulnerable from malicious programs. This raises the need of the integrity management system for the general purpose OS kernel. The integrity management system that observes the behavior of kernel activities from the outside of the OS kernel is promising approach to increase the security of the general purpose OS kernel. However, traditional integrity management systems require extra resources and do not take into account the monitoring on a multi-core processor. The monitoring service which is an integrity management system running on SPUMONE as a new OS personality checks the integrity of data structures in the general purpose OS kernel. It also takes into account running on a multi-core processor. Therefore, the monitoring service and the general purpose OS can run on different cores to reduce the overhead of the integrity management.

    AB - Recent embedded systems like mobile phones and digital TV appliances have been increasing their functionalities. These systems become very complex, but new products should be developed with short time-to-market. Therefore, future embedded systems that will be more complex require a new software infrastructure that industries can develop new products faster by reusing existing software as much as possible. In our project, we are developing SPUMONE which is able to compose multiple functionalities with a minimum cost. SPUMONE enables multiple OSes to coexist on a single system. Therefore, most of existing application programs require no modification. For satisfying the requirements of embedded systems, one of the most important goal of SPUMONE is to satisfy real-time constraints of real-time OSes. When real-time OS and general purpose OS like Linux run at the same time, the real-time OS can ensure the real-time responsiveness. It is also important to ensure security in future embedded systems that is always connected to the Internet. Increasing the complexity and functionality in embedded systems makes the OS kernel more vulnerable from malicious programs. This raises the need of the integrity management system for the general purpose OS kernel. The integrity management system that observes the behavior of kernel activities from the outside of the OS kernel is promising approach to increase the security of the general purpose OS kernel. However, traditional integrity management systems require extra resources and do not take into account the monitoring on a multi-core processor. The monitoring service which is an integrity management system running on SPUMONE as a new OS personality checks the integrity of data structures in the general purpose OS kernel. It also takes into account running on a multi-core processor. Therefore, the monitoring service and the general purpose OS can run on different cores to reduce the overhead of the integrity management.

    KW - Monitoring service

    KW - Real time systems

    KW - Virtualization layer

    UR - http://www.scopus.com/inward/record.url?scp=84860167466&partnerID=8YFLogxK

    UR - http://www.scopus.com/inward/citedby.url?scp=84860167466&partnerID=8YFLogxK

    M3 - Article

    AN - SCOPUS:84860167466

    VL - 26

    SP - 491

    EP - 503

    JO - Computer Systems Science and Engineering

    JF - Computer Systems Science and Engineering

    SN - 0267-6192

    IS - 6

    ER -