A Formal Model for the Automatic Configuration of Access Protection Units in MPSoC-Based Embedded Systems

2020 23rd Euromicro Conference on Digital System Design (DSD) Pub Date : 2020-08-01 DOI:10.1109/DSD51259.2020.00098

Tobias Dörr, T. Sandmann, J. Becker

{"title":"A Formal Model for the Automatic Configuration of Access Protection Units in MPSoC-Based Embedded Systems","authors":"Tobias Dörr, T. Sandmann, J. Becker","doi":"10.1109/DSD51259.2020.00098","DOIUrl":null,"url":null,"abstract":"Heterogeneous system-on-chip platforms with multiple processing cores are becoming increasingly common in safety-and security-critical embedded systems. To facilitate a logical isolation of physically connected on-chip components, internal communication links of such platforms are often equipped with dedicated access protection units. When performed manually, however, the configuration of these units can be both time-consuming and error-prone. To resolve this issue, we present a formal model and a corresponding design methodology that allows developers to specify access permissions and information flow requirements for embedded systems in a mostly platform-independent manner. As part of the methodology, the consistency between the permissions and the requirements is automatically verified and an extensible generation framework is used to transform the abstract permission declarations into configuration code for individual access protection units. We present a prototypical implementation of this approach and validate it by generating configuration code for the access protection unit of a commercially available multiprocessor system-on-chip.","PeriodicalId":128527,"journal":{"name":"2020 23rd Euromicro Conference on Digital System Design (DSD)","volume":"84 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 23rd Euromicro Conference on Digital System Design (DSD)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/DSD51259.2020.00098","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

Abstract

Heterogeneous system-on-chip platforms with multiple processing cores are becoming increasingly common in safety-and security-critical embedded systems. To facilitate a logical isolation of physically connected on-chip components, internal communication links of such platforms are often equipped with dedicated access protection units. When performed manually, however, the configuration of these units can be both time-consuming and error-prone. To resolve this issue, we present a formal model and a corresponding design methodology that allows developers to specify access permissions and information flow requirements for embedded systems in a mostly platform-independent manner. As part of the methodology, the consistency between the permissions and the requirements is automatically verified and an extensible generation framework is used to transform the abstract permission declarations into configuration code for individual access protection units. We present a prototypical implementation of this approach and validate it by generating configuration code for the access protection unit of a commercially available multiprocessor system-on-chip.

查看原文本刊更多论文

基于mpsoc的嵌入式系统中访问保护单元自动配置的形式化模型

具有多个处理核心的异构片上系统平台在安全和安全关键型嵌入式系统中变得越来越普遍。为了方便物理连接的片上组件的逻辑隔离，这些平台的内部通信链路通常配备专用的访问保护单元。但是，当手动执行时，这些单元的配置既耗时又容易出错。为了解决这个问题，我们提出了一个正式的模型和相应的设计方法，允许开发人员以一种与平台无关的方式为嵌入式系统指定访问权限和信息流需求。作为方法的一部分，自动验证权限和需求之间的一致性，并使用可扩展的生成框架将抽象权限声明转换为单个访问保护单元的配置代码。我们提出了这种方法的一个原型实现，并通过为商用多处理器片上系统的访问保护单元生成配置代码来验证它。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 23rd Euromicro Conference on Digital System Design (DSD)

自引率

0.00%

发文量