Skip Navigation

Barkhausen Institut

Modulare Betriebssysteme

Wir bauen ein sicheres Betriebssystem auf Basis einer Mikrokernarchitektur, um die Komplexität zu reduzieren und die Komponentenisolation zu maximieren. Im Sinne des Prinzips der Modularisierung von Hard- und Software besteht unser System aus kleinen Bausteinen, die in einem verteilten Anwendungsfall sicher zusammenarbeiten. Wir entwickeln unser Betriebssystem gemeinsam mit den Gruppen Skalierbare Hardware-Plattformen und Funkkommunikation, um Plattform- und Netzwerksicherheitsprobleme zu lösen. Die Gruppe Modulare Betriebssysteme liefert die wesentlichen Bausteine, aus denen kundenspezifische Systeme für IoT-Anwendungsfälle aufgebaut werden können.

 

Vom Simulator zur Hardware

Wir arbeiten eng mit dem MPSoC-Team zusammen, um unser Betriebssystem von einem Software-basierten Simulator auf echte Hardware zu bringen. Dazu synthetisieren wir die Hardware-Bausteine des MPSoC in einem FPGA-Chip, was es uns erlaubt das Hardware-Design zu evaluieren und die Interaktion mit unserem Betriebssystem zu testen. Am Ende soll unser Betriebssystem und Anwendungen auf einem echten System-on-Chip laufen.

Kosten versus Sicherheit

Sicherheit hat ihren Preis. Beispielsweise werden zusätzliche Ressourcen benötigt um Komponenten auf verschiedenen Cores ausführen zu können. Wir untersuchen daher wie exklusive und geteilte Nutzung von Ressourcen mit den gleichen Mechanismen ermöglicht werden kann, so dass Systemdesigner in jedem Einzelfall zwischen maximaler Isolation und minimaler Ressourcennutzung wählen können.

 

Updates und Attestierung von Komponenten

Damit das Gesamtsystem vertrauenswürdig ist, dürfen nur die zum jeweiligen Szenario benötigten Komponenten miteinander kommunizieren und sie müssen sich korrekt verhalten. Um dies sicherzustellen, erforschen wir minimale Hard- und Software-Unterstützung für die sichere Attestierung von Identität und Integrität aller Bausteine. Die Attestierung wird auch benötigt, um Softwareupdates sicher einzuspielen.

 

Wissenschaftskommunikation mittels Film

Um unsere Forschung einem breiteren Publikum zu näherzubringen, gehen wir manchmal ungewöhnliche Wege. Einer unserer Vorträge kam beim Publikum so gut an, dass wir daraus einen Erklärfilm zum Thema ‚Datensicherheit durch Modularisierung‘ entwickelt haben. Im Film veranschaulichen animierte Roboter, wie die Software in Smartphones funktioniert und wie wir sie schützen können. Dabei dient das Smartphone auch als Sinnbild für die digitale Infrastruktur in der vernetzten Welt von morgen.

Unser Team

Michael Roitzsch
Dr.-Ing.Michael RoitzschResearch Group Leader
Nils Asmussen
Dr.-Ing.Nils AsmussenResearch Associate
Sebastian Ertel
Dr.-Ing.Sebastian ErtelResearch Associate
Till Miemietz
Dipl.-Inf.Till MiemietzResearch Associate
Carsten Weinhold
Dr.-Ing.Carsten WeinholdRESEARCH ASSOCIATE

Publikationen

Sebastian Haas, Nils Asmussen, A Trusted Communication Unit for Secure Tiled Hardware Architectures, 2022 29th IEEE International Conference on Electronics, Circuits, and Systems (ICECS), 2022, Download PDF

@inproceedings{
hwtcu-haas,
title = "A Trusted Communication Unit for Secure Tiled Hardware Architectures",
author = "Sebastian Haas, Nils Asmussen",
year = "2022",
booktitle = "2022 29th IEEE International Conference on Electronics, Circuits, and Systems (ICECS)",
month = "October",
pages = "1-4"
}
Download BibTex

Sebastian Haas, Mattis Hasler, Friedrich Pauls, Stefan Köpsell, Nils Asmussen, Michael Roitzsch, Gerhard Fettweis, Trustworthy Computing for O-RAN: Security in a Latency-Sensitive Environment, 2nd Workshop On Architectural Evolution Toward 6G Networks - 6GARCH, 2022

@inproceedings{
m3oran-haas,
title = "Trustworthy Computing for O-RAN: Security in a Latency-Sensitive Environment",
author = "Sebastian Haas, Mattis Hasler, Friedrich Pauls, Stefan Köpsell, Nils Asmussen, Michael Roitzsch, Gerhard Fettweis",
year = "2022",
booktitle = "2nd Workshop On Architectural Evolution Toward 6G Networks - 6GARCH",
month = "December",
pages = "1-6"
}
Download BibTex

Jan Bierbaum, Maksym Planeta, Towards Efficient Oversubscription: On the Cost and Benefit of Event-Based Communication in MPI, International Workshop on Runtime and Operating Systems for Supercomputers (ROSS), 2022

@inproceedings{
Bierbaum:Blocking,
title = "Towards Efficient Oversubscription: On the Cost and Benefit of Event-Based Communication in MPI",
author = "Jan Bierbaum, Maksym Planeta",
year = "2022",
booktitle = "International Workshop on Runtime and Operating Systems for Supercomputers (ROSS)",
address = "Dallas, TX, USA",
month = "November"
}
Download BibTex

Till Smejkal, Jan Bierbaum, Manuel von Oltersdorff-Kalettka, Michael Roitzsch, CABAS: Real-Time for the Masses, 16th Workshop on Operating Systems Platforms for Embedded Real-Time (OSPERT), 2022, Download PDF

@inproceedings{
Smejkal:CABAS,
title = "CABAS: Real-Time for the Masses",
author = "Till Smejkal, Jan Bierbaum, Manuel von Oltersdorff-Kalettka, Michael Roitzsch",
year = "2022",
booktitle = "16th Workshop on Operating Systems Platforms for Embedded Real-Time (OSPERT)",
address = "Modena, Italy",
month = "July"
}
Download BibTex

Robert Walther, Carsten Weinhold, Michael Roitzsch, RATLS: Integrating Transport Layer Security with Remote Attestation, 4th Workshop on Cloud Security and Privacy (Cloud S&P), 2022

@inproceedings{
Walther:RATLS,
title = "RATLS: Integrating Transport Layer Security with Remote Attestation",
author = "Robert Walther, Carsten Weinhold, Michael Roitzsch",
year = "2022",
booktitle = "4th Workshop on Cloud Security and Privacy (Cloud S&P)",
address = "Rome, Italy",
month = "June",
publisher = "Springer Nature",
url = "https://doi.org/10.1007/978-3-031-16815-4_20"
}
Download BibTex

Friedrich Pauls, Sebastian Haas, Stefan Köpsell, Michael Roitzsch, Nils Asmussen, Gerhard Fettweis, On Trustworthy Scalable Hardware/Software Platform Design, Smart Systems Integration Conference and Exhibition (SSI), 2022, Download PDF

@inproceedings{
hwswplatform_pauls2022,
title = "On Trustworthy Scalable Hardware/Software Platform Design",
author = "Friedrich Pauls, Sebastian Haas, Stefan Köpsell, Michael Roitzsch, Nils Asmussen, Gerhard Fettweis",
year = "2022",
booktitle = "Smart Systems Integration Conference and Exhibition (SSI)",
month = "April"
}
Download BibTex

Till Miemietz, Maksym Planeta, Viktor Reusch, Jan Bierbaum, Michael Roitzsch, Hermann Härtig, Fast Privileged Function Calls, 11th Workshop on Systems for Post-Moore Architectures (SPMA), 2022, Download PDF

@inproceedings{
Miemietz:FastCalls,
title = "Fast Privileged Function Calls",
author = "Till Miemietz, Maksym Planeta, Viktor Reusch, Jan Bierbaum, Michael Roitzsch, Hermann Härtig",
year = "2022",
booktitle = "11th Workshop on Systems for Post-Moore Architectures (SPMA)",
address = "Rennes, France",
month = "April"
}
Download BibTex

Lluís Vilanova, Lina Maudlej, Shai Bergman, Till Miemietz, Matthias Hille, Nils Asmussen, Michael Roitzsch, Hermann Härtig, Mark Silberstein, Slashing the Disaggregation Tax in Heterogeneous Data Centers with FractOS, European Conference on Computer Systems (EuroSys), 2022, Download PDF

@inproceedings{
Vilanova:FractOS,
title = "Slashing the Disaggregation Tax in Heterogeneous Data Centers with FractOS",
author = "Lluís Vilanova, Lina Maudlej, Shai Bergman, Till Miemietz, Matthias Hille, Nils Asmussen, Michael Roitzsch, Hermann Härtig, Mark Silberstein",
year = "2022",
booktitle = "European Conference on Computer Systems (EuroSys)",
address = "Rennes, France",
month = "April",
pages = "352–367",
url = "https://doi.org/10.1145/3492321.3519569"
}
Download BibTex

Michael Roitzsch, Till Miemietz, The Software-Defined CPU, ASPLOS Wild and Crazy Ideas, 2022, Download PDF

@inproceedings{
Roitzsch:SoftwareDefinedCPU,
title = "The Software-Defined CPU",
author = "Michael Roitzsch, Till Miemietz",
year = "2022",
booktitle = "ASPLOS Wild and Crazy Ideas",
address = "Lausanne, Switzerland",
month = "February"
}
Download BibTex

Nils Asmussen, Sebastian Haas, Carsten Weinhold, Till Miemietz, Michael Roitzsch, Efficient and Scalable Core Multiplexing with M³v, ACM International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), 2022, Download PDF

@inproceedings{
Asmussen:M3v,
title = "Efficient and Scalable Core Multiplexing with M³v",
author = "Nils Asmussen, Sebastian Haas, Carsten Weinhold, Till Miemietz, Michael Roitzsch",
year = "2022",
booktitle = "ACM International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)",
address = "Lausanne, Switzerland",
month = "February",
publisher = "ACM",
pages = "452–466",
url = "https://doi.org/10.1145/3503222.3507741"
}
Download BibTex

Sebastian Haas, Nils Asmussen, HW/SW Design Challenges for Secure Computing Platforms, HiPEAC CSW Autumn, 2021

@conference{
hipeac-csw-autumn21-bi,
title = "HW/SW Design Challenges for Secure Computing Platforms",
author = "Sebastian Haas, Nils Asmussen",
year = "2021",
booktitle = "HiPEAC CSW Autumn",
address = "Lyon, France",
month = "October",
note = "Presentation",
url = "https://www.youtube.com/watch?v=pn9mmnWfvQE"
}
Download BibTex

Andrés Goens, Timo Nicolai, Jeronimo Castrillon, mpsym: Improving Design-Space Exploration of Clustered Manycores with Arbitrary Topologies, IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (TCAD), 2021, Download PDF

@article{
Goens:mpsym,
title = "mpsym: Improving Design-Space Exploration of Clustered Manycores with Arbitrary Topologies",
author = "Andrés Goens, Timo Nicolai, Jeronimo Castrillon",
year = "2021",
journal = "IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (TCAD)",
month = "July",
url = "https://doi.org/10.1109/TCAD.2021.3102512"
}
Download BibTex

Alexander Brauckmann, Andrés Goens, Jeronimo Castrillon, PolyGym: Polyhedral Optimizations as an Environment for Reinforcement Learning, 30th International Conference on Parallel Architectures and Compilation Techniques (PACT), 2021, Download PDF

@inproceedings{
Brauckmann:PolyGym,
title = "PolyGym: Polyhedral Optimizations as an Environment for Reinforcement Learning",
author = "Alexander Brauckmann, Andrés Goens, Jeronimo Castrillon",
year = "2021",
booktitle = "30th International Conference on Parallel Architectures and Compilation Techniques (PACT)",
month = "September",
publisher = "IEEE",
url = "https://doi.org/10.1109/PACT52795.2021.00009"
}
Download BibTex

Robert Khasanov, Julian Robledo, Christian Menard, Andrés Goens, Jeronimo Castrillon, Domain-Specific Hybrid Mapping for Energy-Efficient Baseband Processing in Wireless Networks, International Conference on Compilers, Architecture, and Synthesis of Embedded Systems (CASES), 2021, Download PDF

@inproceedings{
Khasanov:BasebandMapping,
title = "Domain-Specific Hybrid Mapping for Energy-Efficient Baseband Processing in Wireless Networks",
author = "Robert Khasanov, Julian Robledo, Christian Menard, Andrés Goens, Jeronimo Castrillon",
year = "2021",
booktitle = "International Conference on Compilers, Architecture, and Synthesis of Embedded Systems (CASES)",
month = "October",
publisher = "ACM",
url = "https://doi.org/10.1145/3476991"
}
Download BibTex

Carsten Weinhold, Nils Asmussen, Michael Roitzsch, Hardware/Software Co-Design für eine Modulare Systemarchitektur, Echtzeit 2020: Kommunikationssicherheit im Internet der Dinge, 2020

@inproceedings{
Weinhold:CoDesign,
title = "Hardware/Software Co-Design für eine Modulare Systemarchitektur",
author = "Carsten Weinhold, Nils Asmussen, Michael Roitzsch",
year = "2020",
booktitle = "Echtzeit 2020: Kommunikationssicherheit im Internet der Dinge",
month = "November",
publisher = "Springer",
pages = "21–30",
url = "https://doi.org/10.1007/978-3-658-32818-4_3"
}
Download BibTex

Alexander Brauckmann, Andrés Goens, Sebastian Ertel, Jeronimo Castrillon, Compiler-Based Graph Representations for Deep Learning Models of Code, 29th International Conference on Compiler Construction (CC), 2020, Download PDF

@inproceedings{
Brauckmann:DeepLearningGraph,
title = "Compiler-Based Graph Representations for Deep Learning Models of Code",
author = "Alexander Brauckmann, Andrés Goens, Sebastian Ertel, Jeronimo Castrillon",
year = "2020",
booktitle = "29th International Conference on Compiler Construction (CC)",
address = "San Diego, CA, USA",
month = "February",
publisher = "ACM",
pages = "201–211",
url = "https://doi.org/10.1145/3377555.3377894"
}
Download BibTex

Matthias Hille, Nils Asmussen, Hermann Härtig, Pramod Bhatotia, A Heterogeneous Microkernel OS for Rack-Scale Systems, 11th ACM SIGOPS Asia-Pacific Workshop on Systems (APSys), 2020, Download PDF

@inproceedings{
Hille:RackScaleOS,
title = "A Heterogeneous Microkernel OS for Rack-Scale Systems",
author = "Matthias Hille, Nils Asmussen, Hermann Härtig, Pramod Bhatotia",
year = "2020",
booktitle = "11th ACM SIGOPS Asia-Pacific Workshop on Systems (APSys)",
address = "Tsukuba, Japan",
month = "August",
publisher = "ACM",
url = "https://doi.org/10.1145/3409963.3410487"
}
Download BibTex

Lluís Vilanova, Lina Maudlej, Matthias Hille, Nils Asmussen, Michael Roitzsch, Mark Silberstein, Caladan: A Distributed Meta-OS for Data Center Disaggregation, 10th Workshop on Systems for Post-Moore Architectures (SPMA), 2020, Download PDF

@inproceedings{
Vilanova:Caladan2020,
title = "Caladan: A Distributed Meta-OS for Data Center Disaggregation",
author = "Lluís Vilanova, Lina Maudlej, Matthias Hille, Nils Asmussen, Michael Roitzsch, Mark Silberstein",
year = "2020",
booktitle = "10th Workshop on Systems for Post-Moore Architectures (SPMA)",
month = "April"
}
Download BibTex

Till Miemietz, Hannes Weisbach, Michael Roitzsch, Hermann Härtig, K2: Work-Constraining Scheduling of NVMe-Attached Storage, 40th IEEE Real-Time Systems Symposium (RTSS), 2019, Download PDF

@inproceedings{
Miemietz:K2,
title = "K2: Work-Constraining Scheduling of NVMe-Attached Storage",
author = "Till Miemietz, Hannes Weisbach, Michael Roitzsch, Hermann Härtig",
year = "2019",
booktitle = "40th IEEE Real-Time Systems Symposium (RTSS)",
month = "December",
publisher = "IEEE"
}
Download BibTex

Matthias Hille, Nils Asmussen, Pramod Bhatotia, Hermann Härtig, SemperOS: A Distributed Capability System, USENIX Annual Technical Conference (ATC), 2019, Download PDF

@inproceedings{
Hille:SemperOS,
title = "SemperOS: A Distributed Capability System",
author = "Matthias Hille, Nils Asmussen, Pramod Bhatotia, Hermann Härtig",
year = "2019",
booktitle = "USENIX Annual Technical Conference (ATC)",
address = "Renton, WA, USA",
month = "July",
publisher = "USENIX"
}
Download BibTex

Nils Asmussen, Michael Roitzsch, Hermann Härtig, M3x: Autonomous Accelerators via Context-Enabled Fast-Path Communication, USENIX Annual Technical Conference (ATC), 2019, Download PDF

@inproceedings{
Asmussen:M3x,
title = "M3x: Autonomous Accelerators via Context-Enabled Fast-Path Communication",
author = "Nils Asmussen, Michael Roitzsch, Hermann Härtig",
year = "2019",
booktitle = "USENIX Annual Technical Conference (ATC)",
address = "Renton, WA, USA",
month = "July",
publisher = "USENIX"
}
Download BibTex

Nils Asmussen, Michael Roitzsch, Carsten Weinhold, Pluggable Components All The Way Down, 1st International Workshop on Next-Generation Operating Systems for Cyber-Physical Systems (NGOSCPS), 2019, Download PDF

@inproceedings{
Asmussen:Pluggable2019,
title = "Pluggable Components All The Way Down",
author = "Nils Asmussen, Michael Roitzsch, Carsten Weinhold",
year = "2019",
booktitle = "1st International Workshop on Next-Generation Operating Systems for Cyber-Physical Systems (NGOSCPS)",
address = "Montreal, Canada",
month = "April"
}
Download BibTex