High assurance security products on COTS platforms
| Reference number | |
| Coordinator | SICS SWEDISH ICT AB |
| Funding from Vinnova | SEK 6 239 956 |
| Project duration | May 2014 - September 2016 |
| Status | Completed |
| Venture | Challenge-driven innovation - Phase 2 Collaboration |
Purpose and goal
The main societal challenge addressed by the HASPOC project was to help secure digital infrastructures to guarantee reliable and available services that can withstand cyber-attacks. The project developed an open, secure platform for virtualization based on the ARMv8 CPU architecture for embedded systems, the HAPSOC platform. This platform fulfils the targets as it with high assurance can deliver strict isolation and controlled communication between guest systems running on the platform.
Expected results and effects
The HASPOC platform exhibits good performance and is available as open source. Two demonstrators prove its suitability for design of secure embedded systems. As it is also prepared for evaluation according to the Common Criteria standard and has, under certain conditions, formally been verified to fulfil strict security requirements it is expected to be use in different security critical systems like e.g. crypto units, secure mobiles, firewalls, SCADA systems, mobile networks, aero vehicular and medical systems, and IoT devices.
Planned approach and implementation
The HASPOC platform was developed in a series of steps and the development was anchored in the project reference group. The first major activity was to strictly define requirements. In parallel, a modular approach was used for its design and implementation. Design activities were performed in close cooperation with the activities aiming for formal verification of the platforms security properties and the Common Criteria evaluation preparations.