Meltdown Schmeltdown, high assurance design of LynxSecure is affirmed
San Jose, USA, January 22, 2018 – Lynx Software Technologies, a market leader in high assurance and safe system development, today confirmed that both its ARM and Intel LynxSecure customers’ are protected from Meltdown, the infamous hardware vulnerability that has exposed almost every other operating system based computer system on the planet.
LynxSecure is a true high assurance separation kernel virtualization technology founded on a unique robust design. Alternative to traditional centralized resource and service oriented designs seen in most operating systems and hypervisors, LynxSecure provides a decentralized approach. One where each guest computing environment is self-sufficient. The autonomy of each guest environment obviates the need for the kernel to provide global services. It is by the nature of the unique distributed autonomous design approach LynxSecure was immune to Meltdown, where attacker processes/VMs were able to derive kernel and guest private memory as a result of central service oriented kernel designs that required access to all guest memory.
Commenting, John Blevins, Director of Products at Lynx Software Technologies said, “The fact that LynxSecure is not vulnerable to attacks such as Meltdown further validates the ‘secure by design’ principles on which it was founded.”
He continued, “Every virtualization user expects that their sub-system or address space is completely separate from other users of the same processor or system. Meltdown exposes the fundamentally insecure design of almost every other virtualization and separation kernel implementation, because those virtualization solutions do not isolate their kernel from the virtualized environments it hosts.”
The consequences of a failed high assurance design go far beyond a possible breach, which can be catastrophic to a business. The real cost of recovery to a highly assured system status may potentially require both operating system patches and application code recompilation, or worse, the complete redesign of the original system which has now been shown to be fundamentally unable to meet a high assurance standard. Using an architecturally sound separation kernel for high assurance system design can significantly reduce the incidence of security vulnerabilities in sensitive systems.
John Blevins concluded, “Systems are becoming increasingly complex and need to be architected from the ground up with both safety and security in mind. This is especially true of Industrial IoT applications, medical applications and ADAS systems, where the consequences of even a single failure are extremely serious. LynxSecure facilitates the creation of complex, high assurance systems that are both safe and secure by design.”
About Lynx Software Technologies
Lynx Software Technologies develops advanced high assurance and safe system development platforms that empower innovative companies to create the safest, most secure systems in the world. Lynx is committed to providing the highest levels of safety and security in its Virtualization and RTOS products. The latest product in the portfolio, the award-winning LynxSecure offers a secure separation kernel and virtualization solution that forms a platform for the development of highly secure systems. Since it was established in 1988, Lynx Software Technologies has created technology that has been successfully deployed in thousands of designs and millions of products made by leading automotive, communications, avionics, aerospace, medical, and transportation companies. Lynx headquarters are located in San Jose, CA.
Lynx Software Technologies is a trademark and LynxOS is a registered trademark of Lynx Software Technologies, Inc. Other brand or product names are registered trademarks or trademarks of the respective holders.