Green Hills Software Introduces INTEGRITY PC, Enabling the Integration of Linux and Other Legacy Software into Secure Systems.SANTA BARBARA Santa Barbara (săn'tə bär`brə, –bərə), city (1990 pop. 85,571), seat of Santa Barbara co., S Calif., on the Pacific Ocean; inc. 1850. , Calif. -- New Virtualization An umbrella term for enhancing a computer's ability to do work. Following are the ways virtualization is used. Hardware Virtualization Partitioning the computer's memory into separate and isolated "virtual machines" simulates multiple machines within one physical computer. Solution Deployed by Boeing in Military Equipment Green Hills Software, Inc., the market leader in safety-critical and royalty-free Real-Time Operating Systems (RTOS (1) (RealTime Operating System) An operating system designed for use in a real time computer system. See real time system, embedded system, process control and OS-9. ), today announced the immediate availability of INTEGRITY PC, an extension to the company's INTEGRITY operating system operating system (OS) Software that controls the operation of a computer, directs the input and output of data, keeps track of files, and controls the processing of computer programs. that enables the incorporation of legacy applications and traditional operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. , such as Linux, into high-security and high-reliability applications. Boeing is using INTEGRITY PC in several of its military development programs. INTEGRITY PC has enabled Boeing to take advantage of existing Linux-based software, freeing it from having to port Linux code to a secure operating system The term "secure operating system" is a misnomer. Relevant articles include:
INTEGRITY PC integrates the INTEGRITY RTOS with Green Hills Software's new Padded Cell secure virtualization technology. The Padded Cell technology implements a "virtual computer" in a user-mode application running on top of the INTEGRITY operating system. Multiple Padded Cell applications can run concurrently on a single physical computer, each hosting its own guest operating system. An impenetrable wall around each virtual computer ensures that errant, insecure or malicious code can never compromise the security or reliability of the rest of the system--either inadvertently or via a hostile attack. "Like a padded cell, INTEGRITY PC prevents Linux, non-memory-protected operating systems such as Wind River's legacy VxWorks, and other insecure and unreliable software from harming the rest of a system while also limiting the harm it can do to itself," explained Dan O'Dowd, founder and chief executive officer of Green Hills Software. "For years, the INTEGRITY operating system has lead the market for security-critical and safety-critical applications, including leading-edge avionics and defense applications. Now, with INTEGRITY PC, users of enterprise operating systems can upgrade to a secure foundation without having to re-implement their existing applications. Legacy operating systems and applications can safely co-exist with totally reliable and security-critical applications running natively under the INTEGRITY operating system." Key Features and Problems Solved Key features and security threats addressed by INTEGRITY PC include: --Guest operating systems and their applications run as "user mode" INTEGRITY applications, which means that they cannot alter the hardware's configuration. This prohibits them from circumventing the protections imposed by the INTEGRITY RTOS. --Hardware memory protection prevents software running within a virtual computer from reading or writing memory not explicitly allocated to it. Even if a virtualized application were contaminated contaminated, v 1. made radioactive by the addition of small quantities of radioactive material. 2. made contaminated by adding infective or radiographic materials. 3. an infective surface or object. by a buffer overrun exploit, hacker, virus, worm or Trojan horse, it would not be able to corrupt, disrupt or spy on any other part of the system. Moreover, a hacker cannot leverage a break-in of software running in one virtual computer to gain access to the rest of the system. --All Input and Output (I/O (Input/Output) The transfer of data between the CPU and a peripheral device. Every transfer is an output from one device and an input to another. See PC input/output. I/O - Input/Output ) operations can be monitored, including network communications. This allows aberrant activity, such as that generated by spyware and hackers, to be detected and filtered. Because the monitoring function is performed by a native INTEGRITY application, it cannot be subverted or disabled by software running under a guest operating system. --Guaranteed resource availability provides each virtual computer and native INTEGRITY application with the processor bandwidth and memory required for successful execution. No software can exhaust the resources needed by another application or by the INTEGRITY operating system--thwarting any denial of service attack An assault on a network that floods it with so many additional requests that regular traffic is either slowed or completely interrupted. Unlike a virus or worm, which can cause severe damage to databases, a denial of service attack interrupts network service for some period. . --Completely deterministic, real-time performance is provided by the INTEGRITY RTOS, enabling the co-existence of real-time and general-purpose applications. --Green Hills Software's Integrate tool allows users to graphically configure and visualize a system's security, such as the allocation of resources allocation of resources Apportionment of productive assets among different uses. The issue of resource allocation arises as societies seek to balance limited resources (capital, labour, land) against the various and often unlimited wants of their members. to an application, the devices that an application can access, and which applications can communicate with each other. Flexible Interfaces INTEGRITY PC supports the simultaneous use of multiple system interfaces, for maximum developer and user flexibility: --The use of one or more guest operating systems provides binary compatibility with existing applications. No re-compilation is needed. Multiple instances of the same or different operating systems can run concurrently in different virtual computers, allowing programs to be compartmentalized com·part·men·tal·ize tr.v. com·part·men·tal·ized, com·part·men·tal·iz·ing, com·part·men·tal·iz·es To separate into distinct parts, categories, or compartments: "You learn . . . for increased security. --POSIX interfaces provide source code portability with UNIX UNIX Operating system for digital computers, developed by Ken Thompson of Bell Laboratories in 1969. It was initially designed for a single user (the name was a pun on the earlier operating system Multics). and Linux applications together with the reliability and security benefits of the INTEGRITY RTOS. The INTEGRITY RTOS is the first and only operating system to be certified under the "POSIX (Portable Operating System Interface for UNIX) An IEEE 1003.1 standard that defines the language interface between application programs and the Unix operating system. (R): Certified by IEEE (Institute of Electrical and Electronics Engineers, New York, www.ieee.org) A membership organization that includes engineers, scientists and students in electronics and allied fields. and The Open Group" program to the 1003.1 -2003 System Interfaces Product Standard and is listed on the certification register at http://get.posixcertified.ieee.org/register.html. --INTEGRITY interfaces offer full access to the operating system's underlying security and real-time performance capabilities. Availability INTEGRITY PC, running on PowerPC processors with support for Linux as a guest operating system, is available today. Please contact Green Hills Software for availability information for other target processors and guest operating systems. About Green Hills Software Founded in 1982, Green Hills Software, Inc. is the technology leader for real-time operating systems and software development tools for 32- and 64-bit embedded systems. Our royalty-free INTEGRITY RTOS, velOSity microkernel (1) The part of an operating system that is specialized for the hardware it is running in. The other components of the OS interact with the microkernel in a message-based relationship and do not have to be rewritten when the OS is ported to a new platform. , compilers, MULTI MULTI Multiple and AdaMULTI Integrated Development Environments and TimeMachine debugger, offer a complete development solution that addresses both deeply embedded and high-reliability applications. Green Hills Software is headquartered in Santa Barbara, CA, with European headquarters in the United Kingdom. Visit Green Hills Software on the web at www.ghs.com. Green Hills Software, the Green Hills logo, MULTI, INTEGRITY, velOSity, AdaMULTI, TimeMachine, Padded Cell, INTEGRATE and EventAnalyzer are trademarks or registered trademarks of Green Hills Software, Inc. in the U.S. and/or internationally. POSIX is a registered trademark and 1003.1 is a trademark of the Institute of Electrical and Electronic Engineers, Inc. All other trademarks and products are the property of their respective owners. North American North American named after North America. North American blastomycosis see North American blastomycosis. North American cattle tick see boophilusannulatus. Sales Contact: Green Hills Software, Inc., 30 West Sola Street, Santa Barbara, CA 93101, Tel: 805-965-6044, Fax: 805-965-6343, Website: www.ghs.com, Email: sales@ghs.com. International Sales Contact: Green Hills Software Ltd., Dolphin House, St. Peter Street, Winchester Hampshire SO23 8BW, United Kingdom, Tel: +44 (0)1962 829820, Fax: +44 (0)1962 890300, Email: mktg-europe@ghs.com. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion