Shulou(Shulou.com)11/24 Report--

Thanks to CTOnews.com netizens Wu Yanzu in South China for the delivery of clues! CTOnews.com October 16, Google announced the launch of the KataOS operating system, the goal is to provide security systems for embedded devices.

Google said that as we find ourselves surrounded by more and more smart devices that collect and process information from the environment, we need a simple solution to build a verifiable security system for embedded hardware. If the devices around us cannot be mathematically proved to be secure, then the personally identifiable data they collect, such as character images and voice recordings, may be accessed by malware, hence the launch of KataOS.

According to reports, KataOS chose seL4 as the micro-kernel, which has been mathematically proved to be safe, with guaranteed confidentiality, integrity and availability. Through the seL4 CAmkES framework, KataOS can also provide statically defined and analyzable system components.

KataOS provides a verifiable security platform to protect the privacy of users, because the application can not logically violate the kernel hardware security, and the system components are verifiable security.

In addition, KataOS is implemented almost entirely in Rust, which eliminates all types of errors, such as off-by-one errors and buffer overflows.

CTOnews.com learned that earlier versions of Google KataOS are open source in GitHub, including most of the core KataOS components:

Framework for Rust (for example, sel4 syscall, which provides sel4 system call API)

Alternate rootserver written in Rust (required for dynamic system-wide memory management)

Sel4 kernel modifications that can reclaim memory used by rootserver

Google is also working with Antmicro to debug and emulate GDB through Renode for the target hardware. Internally, KataOS can also dynamically load and run third-party applications built outside the CAmkES framework. Currently, the code on Github does not contain the components needed to run these applications, and Google hopes to release these features in the near future.

To fully demonstrate the security environment system, Google has also built a reference implementation for KataOS called Sparrow, which combines KataOS with the security hardware platform. Therefore, in addition to the logically secure operating system kernel, Sparrow includes a logically secure trust root that is built with OpenTitan on the RISC-V architecture. For the initial version of KataOS, however, Google's goal is to use QEMU simulations to run the more standard 64-bit ARM platform.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.