Skip to the main content.

LynxSecure Logo drop shadow -white

 

LynxSecure: Separation Kernel Hypervisor

LynxSecure is a simple and elegant platform technology that controls hardware resources according to an intuitive information flow modeling language. It is the foundation of the LYNX MOSA.ic™ framework and is designed to satisfy real-time, high assurance computing requirements used to regulate military and industrial computing environments, such as NIST, NSA Common Criteria, and NERC CIP.

LynxSecure-Venn2

 

LynxSecure

LynxSecure Logo drop shadow -white

 

LynxSecure: Separation Kernel Hypervisor

LynxSecure is a simple and elegant platform technology that controls hardware resources according to an intuitive information flow modeling language. It is the foundation of the LYNX MOSA.ic™ framework and was designed to satisfy real-time, high assurance computing requirements used to regulate military and industrial computing environments, such as NIST, NSA Common Criteria, and NERC CIP.
LynxSecure

BENEFITS OF LYNXSECURE

Our focus is on reducing program risk, development costs, and timelines. LynxSecure:

  • Provides the simplest path to DO-178C DAL A certification for mixed criticality architectures
  • Is a strong foundational element on which to create secure platforms that harness multicore processors
  • Provides resiliency to cyberattack through unmodifiable allocation of system resources for each partition (“Least Privilege” model)
LYNXSECURE-VENN-3

 

FUTURE-PROOFED, CYBER RESILIENT, DETERMINISTIC SOFTWARE PLATFORMS

The Military and Aerospace segment continues to be challenged with the need to improve development cycles and program costs. As systems increasingly become connected, the threat of cyber terrorism rears its head to add a step function in system complexity. These systems need a software foundation that isolates software applications from each other to ensure functions perform precisely as they are intended. There is also a requirement to be able to securely update these platforms with new functionality and/or mitigation techniques to counter latest the cyber threats.

LynxSecure is a simple and elegant platform technology that harnesses the hardware virtualization capabilities of modern multicore processors. It was designed to satisfy the strictest real-time, high assurance computing requirements used to regulate military and aerospace computing environments, such as NIST, NSA Common Criteria, NERC CIP and DO178C.  
 
The grounds up design provides the strongest immunity to system attack, with applications immutably allocated the minimum resources required to perform their task (“Least Privilege”). Unlike alternative approaches, there no single point of failure. The separation kernel remains out of the data plane for the system, isolating applications from each other and avoiding the need to include operating system service interfaces (which has been identified as one of the primary system resources targeted by hackers to gain entry to systems).

LynxSecure Logo drop shadow -white

 

LynxSecure: Separation Kernel Hypervisor

LynxSecure is a simple and elegant platform technology that controls hardware resources according to an intuitive information flow modeling language. It is the foundation of the LYNX MOSA.ic™ framework and was designed to satisfy real-time, high assurance computing requirements used to regulate military and industrial computing environments, such as NIST, NSA Common Criteria, and NERC CIP.
LynxSecure

DISTRIBUTED VS CENTRALIZED

The separation kernel concept enforces a simpler distributed application runtime model on a processor by way of provably separating processor-controlled resources, such that independent applications execute on their own allocation of resources. With such a platform technology in place, the security properties of a software system can be verified by tracing system actors' data access and information flows directly to the physical allocation of resources:

Simply put, LynxSecure harnesses all of the functionality in the underlying platform, such as hardware virtualization, to ensure that each virtual machine will run independently and free of interference—from power on until power off. Additionally, LynxSecure offers advanced resource scheduling and security controls that exceed traditional operating systems and microkernel offerings. These LynxSecure tunables allow developers to explicitly define how a computer platform executes with traceable evidence from specification to instantiation, establishing platform integrity for design patterns that include:

•  Safety and security domain isolation
•  Trusted execution environments
•  Reference monitor plugins such as firewalls and encryption

Distributed vs Centralized Architectures-1

collins 3

BUSINESS BENEFITS

  • Fastest path to DO-178C DAL A certification​
  • Creates safe, deterministic systems from multicore processors​
  • Designed from the ground up focused on delivering highest level of resiliency to cyberattack

PERIGON CASE STUDY

 
 
 

 

 

DEVELOPMENT BENEFITS

  • Fastest path to DO-178C DAL A certification​
  • Creates safe, deterministic systems from multicore processors​
  • Designed from the ground up focused on delivering highest level of resiliency to cyberattack

3-10-23

1280px-Logo_Airbus_2014.svg navy-white-2 BAE Bosch collins aerospace-1-1 Dornerworks-1 Elekta_logo-1 WTVA-GeneralAtomics-JobFair2020-1920x1080 copy-2-1-1 general dynamics-1-1 Kyndryl_logo.svg-1-1-2-1 L3-3 lockheed martin 1200px-NASA_logo.svg-1-1-1-3-1-1 Naval_Research_Laboratory-2-1 northrop-grumman-logo-2 1280px-Raytheon.svg-2 rohde-and-schwarz-2 sandia white -1 thales-1 pinpng.com-us-army-png-2029634-1-1-1 Wabtec-Corporation-White-(1)

LET'S CONNECT