13 min read

Introducing the Z-Application-Bridging the gap between bare metal and rtos

By LYNX Software Technologies on Aug 12, 2021 12:06:18 PM

_______________

Topics: Safety Certification MCP Systems Architecture architecture rtos embedded systems development real-time LynxSecure separation kernel hypervisors virtualization
12 min read

Single Root I/O Virtualization (SR-IOV) -Pt 2- LynxOS-178 10G network benchmarkS

By Tim Loveless | Principal Solutions Architect on Mar 16, 2021 12:33:11 PM

_______________

Single Root I/O Virtualization (SR-IOV) virtualizes network interface cards (NICs) to allow a single NIC to present itself as dozens of virtual NICs to a hypervisor. It is a hardware standard, part of the PCI-SIG (Peripheral Component Interconnect - Special Interest Group) and is heavily used in data centers. It is a key software defined networking (SDN) component that allows data centers to efficiently host internet servers as virtual machines (VMs). SR-IOV provides a pool of hardware virtualized NICs that a cloud computing platform such as OpenStack dynamically assigns to VMs as they are launched. This infrastructure uses Linux orchestration platforms and mainly Linux based enterprise guest OSs.

In our first blog post on the topic (Part I), we saw that the Intel® Atom® C3858 (Denverton) Processor has 4 built-in X550 NICs that present 256 virtual NICs. LynxSecure was used to build a system with 5 Buildroot Linux guests, 4 of which used virtual SR-IOV NICS. This article (Part II), takes the next step and illustrates how to build a system with 3 LynxOS-178 RTOS guests and a Buildroot Linux. LynxSecure is used to assign 14 SR-IOV NICs to the guests before we run benchmarks to measure the overhead of SR-IOV virtual networking. These are high performance 10G bit/sec NICs, so the benchmarks are also an interesting comparison of Linux vs LynxOS-178 networking performance for UDP and TCP at various packet sizes.

Topics: Multicore Safety MCP embedded systems hardware development Single-root IO Virtualization hypervisors virtualization software certifications Virtual Machines 10G Benchmark
6 min read

On reference architectures

By LYNX Software Technologies on Jan 8, 2021 11:57:36 AM

What is a reference architecture?

The term “architecture” seems to be in ever increasing use in its technological context. As an extrapolation from the construction term that Frank Lloyd Wright would have been familiar with, its definition as the “overall design of a computing system and the logical and physical interrelationships between its components” is intuitively obvious. The fact that the architecture specifies the hardware, software, access methods and protocols used throughout the system comes as a surprise to no-one.

Topics: Multicore Systems Architecture architecture CVEs embedded systems development Open Group Open Standards separation kernel hypervisors virtualization Reference Architecture
19 min read

What Is A Separation Kernel?

By Tim Loveless | Principal Solutions Architect on Mar 22, 2020 12:02:33 PM

_______________

Having built both separation kernels and real-time operating systems—and supported customers using both across a wide range of industries—we are familiar with the pros and cons of each software technology, as well as their security, safety, reliability, and adaptability impact on complex system designs. Yet despite providing strong security and safety benefits and being the foundation of some of the world’s largest mission-critical systems, separation kernels remain largely unknown and poorly understood. In this article, we hope to:

  1. Bring some clarity to the topic of separation kernels vs. real-time operating systems (RTOSes) and embedded hypervisors
  2. Discuss the benefits and drawbacks of using a separation kernel as the software foundation of your embedded systems design
  3. Introduce LynxSecure®, our own separation kernel
Topics: Safety Certification MCP Least Privilege Systems Architecture Security Trusted Codebase architecture linux rtos embedded systems hardware vulnerabilities development real-time LynxSecure separation kernel hypervisors virtualization