Characterization of Hypervisors for Security-Enhanced Avionics Applications 2011-01-2805

Traditionally, software in avionics has been totally separated from open-world software, in order to avoid any interaction that could corrupt critical on-board systems. However, new aircraft generations need more interaction with off-board systems to offer extended services, which makes these information flows potentially dangerous.

In a previous work, we have proposed the use of virtualization to ensure dependability of critical applications despite bidirectional communication between critical on-board systems and untrusted off-board systems. We have developed a test bed to assess the performance impact induced by the use of virtualization. In this work, various configurations have been experimented that range from a basic machine without an OS up to the complete architecture featuring a hypervisor and an OS running in a virtual machine. Several tests (computation, memory, network) are carried out, and timing measures are collected on different hypervisors.