Malware containment on Intel Core i7 platforms performed by tool from LynuxWorks

Posted by John McHale

 

BOSTON, 22, Sept. 2010. LynuxWorks announced at the Embedded Systems Conference in Boston the availability of LynxSecure 4.0 on the Core i7 family from Intel, enabling operating systems to run securely on the multiple cores in embedded systems.

 

LynxSecure is not an anti-virus software or malware detection program, it essentially "performs malware containment," says Robert Day, vice president of marketing at LynxWorks in San Jose, Calif. In other words if malware affects one operating system (OS) or real-time operating system (RTOS) running on one of the Intel cores, LynxSecure prevents it from infecting the other operating systems, he adds.

 

For example a potential Core i7 platform could have Windows running one Core, Linux on another, and LynxOS RTOS on the other two, Day continues. If Windows is hit with a virus or other malware as it quite often is, LynxSecure will partition the other operating systems and prevent them from getting infected.

 

Day says he sees the LynxSecure/Intel Core i7 combination as an ideal application for High Mobility Multipurpose Wheeled Vehicle (HMMWV) command and control units. For example, the most secure, mission critical systems within the HMMWV would run on LynxOS on one or two cores, while Windows or Linux handles lesser critical systems, he continues. The LynxSecure partitions the difference systems so that if the Windows OS gets hit with malware it does not more mission critical operations, Day adds.

 

Within a multi-core system the performance drain that is often seen when running antivirus software to clean-up after an attack will be mostly negated, Day says. For example, the LynxOS RTOS would be running on one core and an infected Windows system is running on a separate core -- therefore the anti-virus software will only slow the Windows operation, he explains.

 

The advanced software virtualization in LynxSecure is integrated with the hardware-virtualization technologies, such as vt-x and vt-d, on the Intel processors to give native performance and functionality of all the OSes that are running as guests.

 

Another key feature that LynxSecure offers is the ability to run guest OSes that have symmetric multi-processing (SMP) capabilities. The new quad-core devices from Intel makes this feature a reality by allowing one of the guest OSes to run across multiple cores. For embedded systems that require a sophisticated user interface coupled with networked connectivity, and also hard real-time data response, the combination of LynxSecure with the quad-core Intel Core i7 processor allows all of this functionality to be easily developed, or migrated from existing systems.

 

LynxSecure supports a wide range of commercial boards and the initial port to the Intel quad-core Core i7 uses Intel's Customer Reference Board (CRB). The CRB allows embedded customers to evaluate the latest hardware and software technology and begin the porting process for their software systems while either building their own custom hardware or making the selection of commercial hardware platforms.

 

The tool gives developers the ability to run virtualized guest OSes either para-virtualized, such as Linux or the LynxOS RTOS for ultimate performance, or fully virtualized and unmodified, like the Microsoft Windows OS for complete compatibility. When using multicore processors, these virtualized guest OSes can share a single core, be given dedicated access to a core, or a guest OS can run in SMP mode across multiple cores.

 

Taking advantage of the hardware virtualization capabilities of the Intel Core i7, LynxSecure offers the ability to run guest OSes at near-native performance. It enables an unmodified OS such as Windows to run at much higher performance than other solutions that rely on the traditional emulation-layer approach. LynxSecure also offers built-in virtual networking, allowing Windows applications to seamlessly communicate via TCP/IP with other virtualized OSes, such as Linux, running in a separate partition. This inter-partition communication is handled entirely by LynxSecure without modifying the applications or the virtualized OS.

 

 

 


Get All the Military Aerospace Electronics News Delivered to Your Inbox or Your Mailbox

Subscribe to Military Aerospace Electronics Magazine or email newsletter today at no cost and receive the latest information on:


  • C4ISR
  • Cyber Security
  • Embedded Computing
  • Unmanned Vehicles

Military & Aerospace Photos

Most Popular Articles

Related Products

Flexible Printed Circuit Board

Flexible Printed Circuit Boards are one of the most popular types of circuit boards used in a var...

Printed Circuit Board Assembly

Printed Circuit Board Assembly (PCB ASSY) is as critical a process as circuit board manufacturing.

CANoe.A429

CANoe.A429 is ideal for the test and analysis of ARINC 429 buses and of individual devices on up ...

VN0601 - Interface for ARINC 429 Bus Systems

The VN0601 is a compact and powerful interface for ARINC 429 bus systems. The interface convenien...

XPand6020 | Small Form Factor (SFF) System Featuring XPedite5205 Running Cisco IOS® and XPedite7450

The XPand6020 is a Small Form Factor (SFF) system that features an XPedite5205, which runs Cisco ...

XPedite5401 | Freescale Eight-Core P4080 Conduction-Cooled PrPMC/XMC Module with Two GbE Ports

The XPedite5401 is a high-performance PrPMC/XMC, single board computer supporting Freescale QorIQ...

XPand4206 | Rugged Intel® Core™ i7-Based Multiprocessor COTS System with 10 Gigabit Ethernet Fabric

The XPand4206 is a high-performance computing and networking platform for environmentally demandi...

XPort3200 | Freescale QorIQ P1020 Processor-Based Conduction- or Air-Cooled XMC/PMC IEEE 1588v2 Grandmaster Clock Module

The XPort3200 is a rugged, IEEE 1588v2 Precision Time Protocol (PTP) ordinary clock with grandmas...

XChange4002 | Conduction- or Air-Cooled 6U VME PMC Carrier Card

The XChange4002 is a versatile conduction- or air-cooled 6U VME64x dual-PMC carrier card. With PC...

XPedite7501 | 5th Generation Intel® Core™ i7 Broadwell-H Processor-Based Conduction- or Air-Cooled XMC Module

The XPedite7501 is a high-performance, low-power, XMC module based on the 5th generation Intel® C...

Related Companies

A-FLEX

Provides customized Printed Circuit Board fabrication in California. The entire process can be customized according t...

TASC Technical & Assembly Services Corporation Electronic Equipment Manufacturing

Electronic Manufacturing sub-contractor. Circuit Board assembly, Cable Assembly, Wire Harness Assembly, Box Build Ass...

Vector Informatik GmbH

Provides solutions to benefit developers and test engineers for aerospace electronic networking. Focuses on tools for...

DDC-I Inc

Offers complete solutions for embedded software developers with a focus on mission- and safety-critical applications....

Curtiss-Wright Defense Solutions

About Curtiss-Wright Defense Solutions Curtiss-Wright Defense Solutions (CWDS) is a long established techno...

United Electronic Industries Inc

UEI is a leader in the PC/Ethernet data acquisition and control, Data Logger/Recorder and Programmable Automation Con...

STMicroelectronics Inc

ST serves customers across the spectrum of sense, power, automotive products, and embedded processing solutions. From...

MERITEC

Signal integrity leaders and preferred vertically integrated manufacturer of high-performance electrical and electron...

Stealth.com

Manufactures industrial rugged computers and peripherals, including custom rack servers, rugged LCD monitors, mini PC...

AcQ Inducom

Develops and produces non-certified and certified high-tech modular hardware- and software solutions for on-board and...
Wire News provided by   

Press Releases

Calibration services

Bonding and adhesives

PELORUS NAVAL SYSTEMS Inc

Pelorus Naval Systems is a specialist naval defense engineering and support services company with headquarters in Rancho Santa Margarita, California, USA, in the greater Lo...

Webcasts

New Design Tools That Help You Develop Radar That Sees the Un-seeable and Detects the Undetectable

Xilinx EW/ISR System Architect, Luke Miller, has new tricks and he’s going to tell you all about them in a new Xilinx Webinar—for free. His Webinar will cover new ways to implement Radar functions including ...
Sponsored by:

All Access Sponsors


Mil & Aero Magazine

July 2015
Volume 26, Issue 7
file

Download Our Apps



iPhone

iPad

Android

Follow Us On...



Newsletters

Military & Aerospace Electronics

Weekly newsletter covering technical content, breaking news and product information
SUBSCRIBE

Cyber Security

Monthly newsletter covering cyber warfare, cyber security, information warfare, and information security technologies, products, contracts, and procurement opportunities
SUBSCRIBE

Defense Executive

Monthly newsletter covering business news and strategic insights for executive managers
SUBSCRIBE

Electronic Warfare

Quarterly newsletter covering technologies and applications in electronic warfare, cyber warfare, optical warfare, and spectrum warfare.
SUBSCRIBE

Embedded Computing Report

Monthly newsletter covering news on embedded computing in aerospace, defense and industrial-rugged applications
SUBSCRIBE

Unmanned Vehicles

Monthly newsletter covering news updates for designers of unmanned vehicles
SUBSCRIBE