Software Development
AdaCore Research Proves Novel Solution For "Security By Default"
Share
BRISTOL, United Kingdom--(BUSINESS WIRE)--In an age of increasing security breaches and cyberattacks, the need for robust and comprehensive security mechanisms within embedded real-time systems is paramount.
Through its research, AdaCore (https://www.adacore.com/) has demonstrated how combining memory-safe hardware with memory-safe software results in a mutualistic layered approach to security and increases the assurance of embedded real-time systems. More specifically, this research describes the development steps and subsequent evaluation of a security-hardened Ada runtime executing on Arm’s Morello CHERI extended ISA microprocessor.
AdaCore is delighted to present this research during ERTS https://erts2024.org/ 11th - 12th June. Paul Butcher, the UK Programme Manager for AdaCore, alongside Daniel King, a bare board expert and cross compiler engineer for AdaCore, as part of a team that also includes Johannes Kliemann, a Product Security Vulnerability Manager for AdaCore, will present their paper: "Security by Default - CHERI ISA Extensions Coupled with a Security-Enhanced Ada Runtime."
“As the UK’s National Cyber Security Centre (NCSC) states, ‘Secure by Default’ is defined as ‘technology which has the best security it can without you even knowing it’s there or having to turn it on.’ This principle served as the guiding philosophy of our research.” Paul Butcher
The paper summarizes research and development into a ‘Security by Default’ approach to real-time embedded systems by leveraging the Arm Morello CHERI ISA extensions and a bare-metal security-enhanced Ada runtime. More specifically, a layered approach to security is described that demonstrates the benefits of memory-safe programming languages executing on memory-safe microprocessors.
"Security by design should be at the forefront of all modern systems development, and factoring security into every phase of the development lifecycle is critical to producing demonstrably safe and secure systems. Our paper presents a Security by Default approach, where fundamental security measures are implemented directly into the hardware and software runtime layer. We argue that our CHERI pure capability GNAT Pro for Morello Ada bare metal runtime executing on the Arm Morello board provides a state-of-the-art cyber security platform upon which developers can implement the highest security assurance applications. Furthermore, our solution captures and propagates CHERI hardware-detected capability faults to Ada exception handlers, allowing for new paradigms in security patterns around cyber-recovery and fail-secure-but-degraded." Paul Butcher
The results and insights presented in this research open additional avenues for strengthening the security of embedded real-time systems, ultimately contributing to safer, more reliable, and more secure technology.
ContactsFirst published on Tue, Jun 11, 2024
Enjoyed what you read? Great news – there’s a lot more to explore!
Dive into our content repository of the latest tech news, a diverse range of articles spanning introductory guides, product reviews, trends and more, along with engaging interviews, up-to-date AI blogs and hilarious tech memes!
Also explore our collection of branded insights via informative white papers, enlightening case studies, in-depth reports, educational videos and exciting events and webinars from leading global brands.
Head to the TechDogs homepage to Know Your World of technology today!
Disclaimer - Reference to any specific product, software or entity does not constitute an endorsement or recommendation by TechDogs nor should any data or content published be relied upon. The views expressed by TechDogs' members and guests are their own and their appearance on our site does not imply an endorsement of them or any entity they represent. Views and opinions expressed by TechDogs' Authors are those of the Authors and do not necessarily reflect the view of TechDogs or any of its officials. While we aim to provide valuable and helpful information, some content on TechDogs' site may not have been thoroughly reviewed for every detail or aspect. We encourage users to verify any information independently where necessary.
Trending Business Wire
Fieldbee Vision Wins Gold For Digital Technology Innovation At LAMMA 2026
Ahrefs Adds Youtube And Reddit Tracking To Brand Radar
FPT Named Sitecores First Global Partner Under Global Elite Reseller Program
Solarwinds Named Sterlings 2025 Software Partner Of The Year
Sourcenow VMS Named Top AI-Driven Global Vendor Management Software Of 2026 By HR Tech Outlook
Join Our Newsletter
Get weekly news, engaging articles, and career tips-all free!
By subscribing to our newsletter, you're cool with our terms and conditions and agree to our Privacy Policy.
Join The Discussion