FOSDEM '08 is a free and non-commercial event organised by the community, for the community. Its goal is to provide Free and Open Source developers a place to meet.


Schedule: Xen for Secure Isolation on ARM11

George Davis
Jean Pihet
Day Saturday
Room AW1.126
Start time 15:00
End time 16:00
Duration 01:00
Event type Podium
Track Embedded
Language English
Xen for Secure Isolation on ARM11

Using Xen for Secure Isolation on ARM11 Based Mobile Devices or Yet Another Xen ARM Port. MontaVista is implementing a port of Xen to the ARM architecture tailored for use on mobile devices. Although there are reports of existing Xen ARM ports, those ports are either [[ incomplete], abandoned and/or have not been publicly released. MontaVista is therefore implementing yet another Xen ARM port which will indeed be publicly released.

  1. Our primary goal for porting Xen to the ARM architecture is to provide secure isolation between two or more Xen guest domains on mobile devices utilizing ARM11 based processors. To achieve this primary goal, we intend to leverage the ongoing Xen Security Modules (XSM) FLux Advanced Security Kernel (FLASK) work as part of our Xen based ARM Secure Isolation strategy.
  2. As a secondary goal, we intend to implement our Xen ARM port in a manner which will facilitate rapid porting to new ARM processors and/or machines. This secondary goal will be achieved via inclusion of the excellent ARM multi-processor/multi-machine support implementation present in the current Linux-2.6 kernel into our Xen ARM port.
  3. Our tertiary goal is to incorporate ARM Linux kernel initialisation parameter support into Xen to set up the initial Xen ARM machine environment thus facilitating use of Xen on existing ARM targets without requiring target bootloader customisations. As of this writing, we have completed the initial bring up of the Xen ARM idle domain on a QEMU Versatile/PB ARM926EJ-S based target but have not yet completed bring up of the Xen mini-OS and/or Linux guest domains. It is anticipated that we will have substantially completed our Xen ARM porting efforts in time to present a fully functional Xen ARM port at the LCA Virtualisation Miniconf.
This presentation will provide:
  1. An architectural overview of the MontaVista Xen ARM port
  2. Background details of the MontaVista Xen ARM porting efforts to date
  3. Current status of the MontaVista Xen ARM port
  4. Live demonstration of Xen on an ARM11 based target
  5. Next steps for the Xen ARM port