We understand the complexity of code and policy as the most fundamental security problem shared by modern general-purpose operating systems. Because of high functional demands and dynamic workloads, however, this complexity cannot be avoided. But it can be organized. Genode is a novel OS architecture that is able to master complexity by applying a strict organizational structure to all software components including device drivers, system services, and applications. The Genode OS framework is the effort to advance the Genode OS architecture as a community-driven Open-Source project.
- Article about building a simple seL4 root task Oct 30, 2014
- As we have just kicked off our work on porting Genode to the seL4 microkernel, we took the chance to document the process in the form of a series of articles. The first part covers the steps of creating a minimalistic root task.
- Genode OS Framework release 14.08 Aug 28, 2014
- The central theme of version 14.08 is a new GUI architecture that maintains strong security yet scales to highly flexible and dynamic GUIs. Furthermore, the release comes with a port of OpenVPN, networking support for VirtualBox, updated DDE Linux, and vastly improved performance of our custom base-hw kernel.
- Genode OS Framework release 14.05 May 29, 2014
- Version 14.05 greatly improves the way 3rd-party software can be combined with the framework, VirtualBox on NOVA received guest-additions support, there is a new block-encryption facility, and our custom base-hw kernel became able to use multiple processors.
- An Exploration of ARM TrustZone Technology Apr 10, 2014
- A new article supplemented by a demonstration video presents our endeavour of combining Genode with the security features of ARM TrustZone.
- Genode OS Framework release 14.02 Feb 28, 2014
- The two highlights of the new release are VirtualBox running on top of the NOVA microhypervisor and the added support for NetBSD's file systems. Furthermore, the release comes with new or largely revised storage components such as a block cache.
- Slides and videos of our FOSDEM talks Feb 10, 2014
- We held two talks at FOSDEM 2014: Stefan Kalkowski presented Genode running on the secure side of ARM TrustZone whereas Norman Feske gave an overview of the project's efforts towards general-purpose computing.
VirtualBox running besides the Seoul VMM (virtual machine monitor) on top of Genode/NOVA. Seoul executes Tinycore Linux as guest OS. VirtualBox executes MS Windows 7. Both VMMs are utilizing hardware virtualization (VT-X) but are plain user-level programs with no special privileges.
Qt version 5.1 running natively on Genode 13.08.
The Webkit-based Arora webbrowser running alongside an application using Gallium3D, which was introduced with release 10.08.
The demonstration scenario provided with the official Genode distribution shows off Genode's ability to create and destroy arbitrarily shaped process trees, which can include multiple instances of services in a nested fashion. The screenshot shows an isolated instance of the GUI server running in a window of another GUI-server instance. The whole demo scenario including the graphical user interface has a source-code complexity of less than 20,000 lines of code. With Genode, graphically rich applications and a low-complexity trusted computing base are no contradiction.