Linked by mstein on Wed 9th Dec 2015 23:47 UTC
OSNews, Generic OSes

In their latest article, the developers of the Genode OS Framework document the long-winded way to their new ARM TrustZone demo on the USB Armory - an open source flash drive sized computer. This undertaking was motivated by the prospect to put Linux, which normally runs on the USB Armory, under the supervision of a significantly less complex Genode hypervisor. This construction enables shielding sensitive information like cryptographic keys from Linux by exposing them to Genode only and thereby drastically reduces the attack surface.

The article illustrates how the TrustZone technology is used to isolate Genode from Linux without compromising the rich feature set of Linux, and how both worlds can safely communicate with each other. Finally, the article provides you with all tools and information for easily bringing the demo to your own USB Armory.

Permalink for comment 622046
To read all comments associated with this story, please click here.
RE: Amazed again
by Pro-Competition on Thu 10th Dec 2015 15:49 UTC in reply to "Amazed again"
Pro-Competition
Member since:
2007-08-20

Just the word hypervisor and that device in one sentence...really incredible.


I completely agree.

It is quite a random device for Genode to put such focus on, but if they want to scratch that itch and do it in this way....awesome


According to the USB Armory website link in the article:

The USB armory hardware is supported by standard software environments and requires very little customization effort. In fact vanilla Linux kernels and standard distributions run seamlessly on the tiny USB armory board.


That makes it sound like a good choice for getting the most "bang" for the least amount of work. And the code should work on other devices, as well.

Reply Parent Score: 2