8/7/2019 android-khup

1/11

Android Solutions

2009 Open Kernel Labs, Inc. All rights reserved. This presentation has been prepared by Open Kernel Labs (OK). Itcontains certain proprietary and confidential information about OKs core competencies, personnel, and product offerings.

OK does not authorize its dissemination in whole or in part to any unauthorized parties, potential partners or competitors.

8/7/2019 android-khup

2/11

> Worlds leading provider of mobile phone virtualization solutions> Founded in 2006 following 15+ years R&D; > $25MM invested> Delivers OKL4 Microvisor; in more than 300 million devices> IP commercialization with National ICT Australia> OK developer community surpasses 1,000 members> Solutions for Android, Symbian, Linux, and more> Growing mobile-to-enterprise market with investor/partner Citrix

2009 Open Kernel Labs, Inc. All rights reserved.

ok-labs.com

Open Kernel LabsMobile Virtualization

2

2009Finalist

Open Kernel Labs is the global leader in open source virtualizationsoftware for mobile devices, consumer electronics, and embedded

systems. Backed by the largest, independent team of microkerneldevelopers, the OKL4 embedded hypervisor is deployed on more

than 300 million mobile phones worldwide. Semiconductor suppliers,handset OEMs, and mobile network operators depend on OK Labsto deliver high performance solutions that decrease BOM cost,

reduce complexity, and speed time-to-market.

8/7/2019 android-khup

3/11

What is Mobile Virtualization?OKL4 Microvisor with Secure HyperCell Technology

> Goes well beyond the classical hypervisormodel

> Enables virtualization and componentization VM = OS plus its applications in a cell Lightweight execution environments Drivers HW enforced isolation between cells

> Control over communication between cells Required for mandatory access control

> Fast context switching and highperformance inter-cell communication

> Highly trustworthy privileged code Small, clean, open source

2009 Open Kernel Labs, Inc. All rights reserved.

Secure HyperCell Technology

ok-labs.com3

8/7/2019 android-khup

4/11

2009 Open Kernel Labs, Inc. All rights reserved.

> : a truly game-changing platform for mobile devices Complete set of software: operating system, middleware, key applications Completely open for end users and developers Feature-rich software development kit and open App Market

> Significant opportunity! But significant challenges How to integrate such an all-encompassing platform? How to maintain existing development and technology investment? How to differentiate?

> The Solution is OK:Android

ok-labs.com

The Android Revolution OK:Android

4

8/7/2019 android-khup

5/11

2009 Open Kernel Labs, Inc. All rights reserved.

> In OK:Android, OK Labs supplies anOS support package for Android,enabled for use as a guest OS of theOKL4 mobile virtualization platform.OK:Android simplifies and streamlinesthe process of creating new Androidphones

> OK:Android provides a standardAndroid environment, where existingAndroid applications can run withoutmodification and new applications canbe developed using standard Androiddevelopment tools

ok-labs.com

OK:Android Architecture

5

Privileged

De-privileged

Android

Middleware

Application

Software Baseband

Software

Android Linux

Kernel

RTOS

Legacy

Components

Example:

Multimedia

Framework

ARM Processor

OKL4 Microvisor

8/7/2019 android-khup

6/11

2009 Open Kernel Labs, Inc. All rights reserved.

> Using OK:Android to create a virtual machine (VM) with an Android guest OSadds to the benefits associated with the use of Android in the following ways:

Android applications can run on the same processor side by side with legacyapplications and legacy OSes. This co-location eliminates the need for either

multiprocessor hardware or porting the legacy system to Android.

OKL4 native cells can complement the Android VM by providing an executionenvironment with better real-time properties and stronger security.

OKL4 native cells are well-suited to hosting real-time OSes, easing implementation oflatency-sensitive functions without sacrificing the rich ecosystem support available forAndroid.

The OKL4 Microvisor makes it possible to dynamically and efficiently utilize systemresources such as computing power, electrical power, and memory on single core andmulticore designs.

ok-labs.com

OK:Android Solutions

6

8/7/2019 android-khup

7/11

> Microvisor partitions and multiplexes hardwarebetween guests

> Microvisor is in complete control of all resources Completely abstracts SoC implementation from

OKL4 kernel

> Virtual machines access virtual resources Mapped to physical resources by microvisor

> Guest OS executes at lesser privilege Only microvisor runs in most privileged mode Essential to ensure microvisor has control over

resources

Guest OS should not run in the most privilegedmode

Microvisor schedules virtual machines Performs world switch between VMs Each guest OS schedules its apps

2009 Open Kernel Labs, Inc. All rights reserved.

RAM

Privileged

De-privileged

OKL4 Microvisor

Memory Region Memory Region

Guest OS

Applications

Virtual RAM

Guest OS

Applications

Virtual RAM

VM 1 VM 2

Virtualizing Android:The role of the Microvisor

Secure HyperCell Technology

ok-labs.com7

8/7/2019 android-khup

8/11

> Minimally-invasive paravirtualization Introduces the OKL4 architecture to the Linux/arch

directory (roughly 8 kLOC)

No modifications to architecture-independent Linux> OKL4 is the only software in privileged mode

Receives interrupts, syscalls, and exceptions Trampolines to Linux using IPC OKL4 architecture in Linux just decodes IPC Past that point, its just standard Linux

> All Linux applications (including Androidmiddleware) are fully binary compatible

> OK:Android is distributed as a simple patchagainst a kernel.org kernel tree

Simple to virtualize any Linux distribution

2009 Open Kernel Labs, Inc. All rights reserved.

Virtualizing Android:The paravirtualization approach

ok-labs.com8

Syscall delivered viaTrampolined IPC

Privileged

De-privileged

OKL4 Microvisor

Android Middleware

Applications

Android Linux Kernel

ARM Processor

OKL4

Architecture

IPC

Syscall

8/7/2019 android-khup

9/11

> Similar paravirtualization approach forcommunications RTOS

> OKL4 is fully real-time capable Will maintain all RTOS RT guarantees Example: < 3us interrupt delivery on all

platforms> Maintain the same API for application stack

to use

Simply implement a small translation layerusing IPC

> Typical effort: one engineer-week> Several RTOSes already exist

2009 Open Kernel Labs, Inc. All rights reserved.

Virtualizing the Communications Stack

ok-labs.com9

Privileged

De-privileged

OKL4 Microvisor

Communications Applications

RTOS

ARM Processor

OKL4

Architecture

Syscall delivered viaTrampolined IPC

APICommunications API

delivered via IPC

IPC

Syscall

8/7/2019 android-khup

10/11

2009 Open Kernel Labs, Inc. All rights reserved.

> The OKL4 Microvisor creates systems that are easier to develop, easier tomaintain, more secure, and more reliable. The OKL4 building block approachcombines, connects, and manages VMs, native OKL4 subsystems, and devicedrivers.

> OK:Android adds ready-to-use Android VMs to the standard set of buildingblocks available to developers.

> For a more detailed explanation of benefits and uses, watch the webinarAndroid Migration at the Speed of Light with Rob McCammon

> Contact info@ok-labs.com or call +1 312 924 1445 for more information

ok-labs.com

Conclusion

10

8/7/2019 android-khup

11/11

Rob McCammon

Vice President, Product Management

robm@ok-labs.com

+1 312 924 1445

LEARN MORE at ok-labs.com 2009 Open Kernel Labs, Inc. All rights reserved. 11