Principled operating systems mechanisms for temporal isolation


Anna Lyons, Hesham Almatary, Kent Mcleod and Gernot Heiser



Mixed-criticality systems (MCS) combine real-time components of different levels of criticality – i.e. severity of failure – on the same processor, in order to obtain good resource utilisation. They must be able to guarantee deadlines of highly-critical threads without any dependence on less-critical threads. This requires strong temporal isolation, similar to the spatial isolation that is traditionally provided by operating systems, without unnecessary loss of processor utilisation. We present an approach to supporting MCS in the high-assurance seL4 microkernel.

