High Assurance Virtualization Engine (HAVEN)

Abstract

This report describes the research results of the High Assurance Virtualization ENgine. HAVEN is an FPGA-based virtualization technology that implements much of the traditional hypervisor functionality in FPGAs instead of in software. There are two main results: A Secure Virtual I/O Manager (SIM) and a Secure Memory Manager (SMM). The Secure Virtual I/O Manager implements a virtual PCI controller along with multiple virtual Network Interface Cards (NIC) in conjunction with independent data buffers on a single FPGA. The CPU sees multiple NIC even though there is only one true physical card. The SMM registers a memory range with the CPU and ensures that all memory managed by the SMM is encrypted and only decrypted when it is moved to the CPU cache.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
May 01, 2009
Accession Number
ADA501020

Entities

People

  • Nasir Memon
  • Pratik Mathur
  • Ramesh Karri
  • Vikram Padman

Organizations

  • New York University Tandon School of Engineering

Tags

Communities of Interest

  • Advanced Electronics
  • Cyber

DTIC Thesaurus Topics

  • Air Force Research Laboratories
  • Central Processing Units
  • Communication Channels
  • Computer Program Documentation
  • Computer Program Reliability
  • Computer Programs
  • Computers
  • Device Drivers
  • Field Programmable Gate Arrays
  • Mainframe Computers
  • Operating Systems
  • Reliability
  • Simulations
  • System Software
  • Virtual Machines
  • Virtualization
  • Virtualization Software

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Parallel and Distributed Computing.