Presentation is loading. Please wait.

Presentation is loading. Please wait.

Zephyr Kernel Security Discussion

Published byAshlee Dalton Modified over 6 years ago

Similar presentations

Presentation on theme: "Zephyr Kernel Security Discussion"— Presentation transcript:

1 Zephyr Kernel Security Discussion
Jan 11, 2017

2 Security Levels 5 4 3 2b 2a 1 Application Libraries RNG Secure Storage
3 2b Secure OS Subsystems (Logging/FS/) 2a Secure Infrastructure (Security Objects: Key Objects, TEE) Kernel + Thread Separation 1 Not Secure: Kernel without thread separation

3 Threads “Stack area” Control block (struct k_thread) Stack
CRC protection? “Stack area” Control block (struct k_thread) Execution flags Thread state Init data Abort function Stack Stack pointer (?) Data CRC protection? MMU/MPU

4 Interrupts ???

5 Scheduler (struct _kernel)
CRC protection? CPU registers Store/load List of threads Current thread Priorities States Locking + Extra Protection for special threads Idle Thread Main Thread, e.g. against DOS (thread starvation) Flow protection CRC protection? Flow protection

6 Memory Allocation Types Global/per thread? Memory Slabs Memory Pools
Heap Memory Pool Global/per thread? MMU/MPU Protected sections

7 Data Passing Key points for consideration: Key goal(s):
Integrity protection Access control (MPU) Key goal(s): Limit accessibility to communicating parties only Add “protected” counter-parts that sacrifice code size/performance for e.g. integrity protection

8

Download ppt "Zephyr Kernel Security Discussion"

Similar presentations

Slide 3-1 Copyright © 2004 Pearson Education, Inc. Operating Systems: A Modern Perspective, Chapter 3 3 Operating System Organization.

Slide 3-1 Copyright © 2004 Pearson Education, Inc. Operating Systems: A Modern Perspective, Chapter 3 3 Operating System Organization.
Chap 4 Multithreaded Programming. Thread A thread is a basic unit of CPU utilization It comprises a thread ID, a program counter, a register set and a.

Chap 4 Multithreaded Programming. Thread A thread is a basic unit of CPU utilization It comprises a thread ID, a program counter, a register set and a.
Chapter 4: Threads. Overview Multithreading Models Threading Issues Pthreads Windows XP Threads.

Chapter 4: Threads. Overview Multithreading Models Threading Issues Pthreads Windows XP Threads.
Day 11 Processes. Operating Systems Control Tables.

Day 11 Processes. Operating Systems Control Tables.
CSE 451: Operating Systems Winter 2009 Module 4 Processes Mark Zbikowski Gary Kimura.

CSE 451: Operating Systems Winter 2009 Module 4 Processes Mark Zbikowski Gary Kimura.
Process Management. External View of the OS Hardware fork() CreateProcess() CreateThread() close() CloseHandle() sleep() semctl() signal() SetWaitableTimer()

Process Management. External View of the OS Hardware fork() CreateProcess() CreateThread() close() CloseHandle() sleep() semctl() signal() SetWaitableTimer()
OS Spring’03 Introduction Operating Systems Spring 2003.

OS Spring’03 Introduction Operating Systems Spring 2003.
Advanced OS Chapter 3p2 Sections 3.4 / 3.5. Interrupts These enable software to respond to signals from hardware. The set of instructions to be executed.

Advanced OS Chapter 3p2 Sections 3.4 / 3.5. Interrupts These enable software to respond to signals from hardware. The set of instructions to be executed.
Operating Systems Lecture # 3. Recap Hardware Operating System Application System Call Trap Hardware Trap Processor.

Operating Systems Lecture # 3. Recap Hardware Operating System Application System Call Trap Hardware Trap Processor.
SMP threads an Introduction to Posix Threads. Technical Definition 1.Independent stream of instructions that can be scheduled to run by an operating system.

SMP threads an Introduction to Posix Threads. Technical Definition 1.Independent stream of instructions that can be scheduled to run by an operating system.
Operating Systems Béat Hirsbrunner Main Reference: William Stallings, Operating Systems: Internals and Design Principles, 6 th Edition, Prentice Hall 2009.

Operating Systems Béat Hirsbrunner Main Reference: William Stallings, Operating Systems: Internals and Design Principles, 6 th Edition, Prentice Hall 2009.
CS533 Concepts of Operating Systems Class 3 Integrated Task and Stack Management.

CS533 Concepts of Operating Systems Class 3 Integrated Task and Stack Management.
Chapter 6 Implementing Processes, Threads, and Resources.

Chapter 6 Implementing Processes, Threads, and Resources.
CPS110: Implementing threads/locks on a uni-processor Landon Cox.

CPS110: Implementing threads/locks on a uni-processor Landon Cox.
CSI 400/500 Operating Systems Spring 2009 Lecture #2 – Functional Parts of an Operating System Monday January 23, 2009.

CSI 400/500 Operating Systems Spring 2009 Lecture #2 – Functional Parts of an Operating System Monday January 23, 2009.
Chapter 51 Threads Chapter 5. 2 Process Characteristics  Concept of Process has two facets.  A Process is: A Unit of resource ownership:  a virtual.

Chapter 51 Threads Chapter 5. 2 Process Characteristics  Concept of Process has two facets.  A Process is: A Unit of resource ownership:  a virtual.
Operating Systems CSE 411 CPU Management Sept. 29 2006 - Lecture 11 Instructor: Bhuvan Urgaonkar.

Operating Systems CSE 411 CPU Management Sept Lecture 11 Instructor: Bhuvan Urgaonkar.
Slide 6-1 Copyright © 2004 Pearson Education, Inc. Operating Systems: A Modern Perspective, Chapter 6.

Slide 6-1 Copyright © 2004 Pearson Education, Inc. Operating Systems: A Modern Perspective, Chapter 6.
OPERATING SYSTEM OVERVIEW. Contents Basic hardware elements.

OPERATING SYSTEM OVERVIEW. Contents Basic hardware elements.
Chapter 4: Threads. From Processes to Threads 4.3 Silberschatz, Galvin and Gagne ©2005 Operating System Concepts – 7 th edition, Jan 23, 2005 Threads.

Chapter 4: Threads. From Processes to Threads 4.3 Silberschatz, Galvin and Gagne ©2005 Operating System Concepts – 7 th edition, Jan 23, 2005 Threads.

Similar presentations

Ads by Google