Skip Navigation

Barkhausen Institut

Composability Hardware and Software

Can we improve the security of IoT systems while also enabling a modular design?

Traditional multiprocessor architectures allow a modular system design and an easy integration of different components into one system. However, hardware components are not isolated from each other and therefore can communicate with all other components, utilize I/O interfaces, and access each memory. Hence, malicious components may compromise the whole system. In order to mitigate these security risks, the goal of the research topic is to deploy a componentized, microkernel-based operating system with a tile-based hardware architecture and communication control. A component-based system design follows the isolation-by-default concept and thus improves both security and reusability.

The presented hardware architecture consists of multiple heterogeneous tiles which are connected by a network-on-chip. Each tile may include processing cores, accelerators, or application-specialized hardware, but can also interface to I/O peripherals or off-chip memory. The isolation between tiles is enforced by Trusted Communication Units (TCUs) which set up dedicated communication channels. Only the kernel running on a selected tile is privileged to configure the communication channels between tiles.

Publications

Robert Khasanov, Julian Robledo, Christian Menard, Andrés Goens, Jeronimo Castrillon, Domain-Specific Hybrid Mapping for Energy-Efficient Baseband Processing in Wireless Networks, International Conference on Compilers, Architecture, and Synthesis of Embedded Systems (CASES), 2021, Download PDF

@inproceedings{
Khasanov:BasebandMapping,
title = "Domain-Specific Hybrid Mapping for Energy-Efficient Baseband Processing in Wireless Networks",
author = "Robert Khasanov, Julian Robledo, Christian Menard, Andrés Goens, Jeronimo Castrillon",
year = "2021",
booktitle = "International Conference on Compilers, Architecture, and Synthesis of Embedded Systems (CASES)",
month = "October",
publisher = "IEEE"
}
Download BibTex

Lluís Vilanova, Lina Maudlej, Matthias Hille, Nils Asmussen, Michael Roitzsch, Mark Silberstein, Caladan: A Distributed Meta-OS for Data Center Disaggregation, 10th Workshop on Systems for Post-Moore Architectures (SPMA), 2020, Download PDF

@inproceedings{
Vilanova:Caladan2020,
title = "Caladan: A Distributed Meta-OS for Data Center Disaggregation",
author = "Lluís Vilanova, Lina Maudlej, Matthias Hille, Nils Asmussen, Michael Roitzsch, Mark Silberstein",
year = "2020",
booktitle = "10th Workshop on Systems for Post-Moore Architectures (SPMA)",
month = "April"
}
Download BibTex

Matthias Hille, Nils Asmussen, Hermann Härtig, Pramod Bhatotia, A Heterogeneous Microkernel OS for Rack-Scale Systems, 11th ACM SIGOPS Asia-Pacific Workshop on Systems (APSys), 2020, Download PDF

@inproceedings{
Hille:RackScaleOS,
title = "A Heterogeneous Microkernel OS for Rack-Scale Systems",
author = "Matthias Hille, Nils Asmussen, Hermann Härtig, Pramod Bhatotia",
year = "2020",
booktitle = "11th ACM SIGOPS Asia-Pacific Workshop on Systems (APSys)",
address = "Tsukuba, Japan",
month = "August",
publisher = "ACM",
url = "https://doi.org/10.1145/3409963.3410487"
}
Download BibTex

Carsten Weinhold, Nils Asmussen, Michael Roitzsch, Hardware/Software Co-Design für eine Modulare Systemarchitektur, Echtzeit 2020: Kommunikationssicherheit im Internet der Dinge, 2020

@inproceedings{
Weinhold:CoDesign,
title = "Hardware/Software Co-Design für eine Modulare Systemarchitektur",
author = "Carsten Weinhold, Nils Asmussen, Michael Roitzsch",
year = "2020",
booktitle = "Echtzeit 2020: Kommunikationssicherheit im Internet der Dinge",
month = "November",
publisher = "Springer",
pages = "21–30",
url = "http://doi.org/10.1007/978-3-658-32818-4_3"
}
Download BibTex

Nils Asmussen, Michael Roitzsch, Carsten Weinhold, Pluggable Components All The Way Down, 1st International Workshop on Next-Generation Operating Systems for Cyber-Physical Systems (NGOSCPS), 2019, Download PDF

@inproceedings{
Asmussen:Pluggable2019,
title = "Pluggable Components All The Way Down",
author = "Nils Asmussen, Michael Roitzsch, Carsten Weinhold",
year = "2019",
booktitle = "1st International Workshop on Next-Generation Operating Systems for Cyber-Physical Systems (NGOSCPS)",
address = "Montreal, Canada",
month = "April"
}
Download BibTex

Nils Asmussen, Michael Roitzsch, Hermann Härtig, M3x: Autonomous Accelerators via Context-Enabled Fast-Path Communication, USENIX Annual Technical Conference (ATC), 2019, Download PDF

@inproceedings{
Asmussen:M3x,
title = "M3x: Autonomous Accelerators via Context-Enabled Fast-Path Communication",
author = "Nils Asmussen, Michael Roitzsch, Hermann Härtig",
year = "2019",
booktitle = "USENIX Annual Technical Conference (ATC)",
address = "Renton, WA, USA",
month = "July",
publisher = "USENIX"
}
Download BibTex

Matthias Hille, Nils Asmussen, Pramod Bhatotia, Hermann Härtig, SemperOS: A Distributed Capability System, USENIX Annual Technical Conference (ATC), 2019, Download PDF

@inproceedings{
Hille:SemperOS,
title = "SemperOS: A Distributed Capability System",
author = "Matthias Hille, Nils Asmussen, Pramod Bhatotia, Hermann Härtig",
year = "2019",
booktitle = "USENIX Annual Technical Conference (ATC)",
address = "Renton, WA, USA",
month = "July",
publisher = "USENIX"
}
Download BibTex