We understand the complexity of code and policy as the most fundamental security problem shared by modern general-purpose operating systems. Because of high functional demands and dynamic workloads, however, this complexity cannot be avoided. But it can be organized. Genode is a novel OS architecture that is able to master complexity by applying a strict organizational structure to all software components including device drivers, system services, and applications. The Genode OS framework is the effort to advance the Genode OS architecture as a community-driven Open-Source project.
- Genode OS Framework release 14.05 May 29, 2014
- Version 14.05 greatly improves the way 3rd-party software can be combined with the framework, VirtualBox on NOVA received guest-additions support, there is a new block-encryption facility, and our custom base-hw kernel became able to use multiple processors.
- An Exploration of ARM TrustZone Technology Apr 10, 2014
- A new article supplemented by a demonstration video presents our endeavour of combining Genode with the security features of ARM TrustZone.
- Genode OS Framework release 14.02 Feb 28, 2014
- The two highlights of the new release are VirtualBox running on top of the NOVA microhypervisor and the added support for NetBSD's file systems. Furthermore, the release comes with new or largely revised storage components such as a block cache.
- Slides and videos of our FOSDEM talks Feb 10, 2014
- We held two talks at FOSDEM 2014: Stefan Kalkowski presented Genode running on the secure side of ARM TrustZone whereas Norman Feske gave an overview of the project's efforts towards general-purpose computing.
- Guide for porting 3rd-party software to Genode Jan 28, 2014
- Our new porting guide provides step-by-step instructions on how to port existing libraries, applications, and device drivers to Genode.
- Road Map 2014 Jan 17, 2014
- The updated road map outlines the major topics and schedule of the project for 2014.
VirtualBox running besides the Seoul VMM (virtual machine monitor) on top of Genode/NOVA. Seoul executes Tinycore Linux as guest OS. VirtualBox executes MS Windows 7. Both VMMs are utilizing hardware virtualization (VT-X) but are plain user-level programs with no special privileges.
Qt version 5.1 running natively on Genode 13.08.
The Webkit-based Arora webbrowser running alongside an application using Gallium3D, which was introduced with release 10.08.
The demonstration scenario provided with the official Genode distribution shows off Genode's ability to create and destroy arbitrarily shaped process trees, which can include multiple instances of services in a nested fashion. The screenshot shows an isolated instance of the GUI server running in a window of another GUI-server instance. The whole demo scenario including the graphical user interface has a source-code complexity of less than 20,000 lines of code. With Genode, graphically rich applications and a low-complexity trusted computing base are no contradiction.