Yeah that’s another solution we are considering as well. But I found that not a lot of hardwares support Hardware Assisted Virtualization, and those do support it are kind of expensive for business. I got a TK1-SOM board I will try that way out as well. It is little bit hard to convince business to switch hardware and some their chosen boards already support TZ. Although I’ m not 100% sure the difference between those two solutions regards of system security and performance. I would love to hear your opinion.

Thank you very much for your response. 

Best Regards
-Daniel Wang



On Jan 29, 2018, at 4:35 PM, <Gernot.Heiser@data61.csiro.au> <Gernot.Heiser@data61.csiro.au> wrote:

On 30 Jan 2018, at 10:24, Daniel Wang <danielwang.ksu@gmail.com> wrote:

We are thinking about exploring TZ mainly because lots of legacy software stacks are written for Linux. It would be very costly to port all code directly into seL4.

So you put your Linux into a VM, and it’s fully isolated from the native stuff.

Gernot
_______________________________________________
Devel mailing list
Devel@sel4.systems
https://sel4.systems/lists/listinfo/devel