The LynxSecure technical training course is a hands-on workshop that educates students on the capabilities of LynxSecure, provides a low level understanding of how LynxSecure is built in support of security critical and real-time applications, and offers system design guidance for tackling specific security and real-time issues. The training course is hosted at the Lynx Software Technologies headquarters presented and supported by an expert group of product trainers and architects. On-site training is also available upon request (Domestic USA only). Students are encouraged to bring their target platforms to get a head start on their upcoming LynxSecure based projects. The training course is provided over a series of lessons. Each lesson of the course assumes knowledge of the previous lesson and progressively delves deeper into advanced technical aspects of the product. Below provides a detailed breakdown of the LynxSecure Technical Training Course schedule:

Introduction to LynxSecure

  • Out-of-the box installation and setup walkthrough
  • High-level LynxSecure Architecture
  • LynxSecure configuration tools
  • Basic Configuration & Demo Labs

Full Virtualization Support Layer

  • FVS high-level architecture walk through
  • Understanding Virtual Bios
  • Understanding Device Emulation
  • Understanding the FVS state machine
  • Adding a new virtual devices

Virtual Device Server (VDS)

  • The Virtual Device Server high-level design overview
  • Understanding para-virtualization
  • Para-virtualizing an OS
  • The VDS daemons
  • Adding your own code into VDS
  • Device Sharing Lab

Bootloader

  • Understanding the initialization process
  • System Runtime Package (SRP)
  • Building an SRP Lab

LynxSecure Application (LSA)

LSAs are bare-metal applications supported by a minimal bare-metal independent C runtime and C libraries used for building highly secure applications that possess the smallest possible trusted computing base (TCB). Details of this lesson include:
  • Understanding LSA
  • Developing LSA modules Lab

Advanced Configurations

This lesson provides a walk-through of system functional and security policy specification configuration file, and advanced features of LynxSecure for software developers. Details of this lesson include:
  • Hypercalls
  • Least Privilege Access Control
  • Virtual Timekeeping
  • Shared Memory Transports
  • Synthetic Interrupts
  • Flexible Scheduling Policies
  • Audit Management

LynxSecure Internals

The lesson breaks down the kernel subsystem, looks closely at the security critical functions of the product, and describes impact on the security foundation it provides for high-level hosted solutions. Details of this lesson include:
  • Understanding memory management
  • Understanding the virtual CPU
  • Understanding the Runtime Initialization Functions (RIF)/CSP/BSP, and built In tests (BIT)

Developing a Secure System

This lesson includes a hands-on workshop that examines the proposed MILS evaluation target. The workshop walks through the target evaluation architecture and guides students through the configuration, development, and integration process. Details of this lesson include:
  • Understanding MILS architectural approach
  • Least Privilege System Design
  • Separation design
  • Information Flow control