Leveraging Assurance on an seL4-Enabled Safe & Secure Soldier Helmet Display

Period of Performance: 06/06/2016 - 07/07/2017


Phase 2 SBIR

Recipient Firm

DornerWorks, Ltd.
3445 Lake Eastbrook SE Array
Grand Rapids, MI 49546
Firm POC
Principal Investigator


We are leveraging theassurance of the seL4microkernel, enabling mixed levels of safety-criticality and security via a methodology, design process, ecosystem components, and tools. Our target market includes commercial and military aerospace, defense, energy, and medical embedded applications which require safety/reliability and information assurance. Phase I produced not only a feasibility study, but also demonstrated a prototype multi-level secure component layered onseL4, leveraging the guaranteed isolation of the microkernel to reduce the certification effort. Phase II will develop our lessons learned into a structured, componentized assurance methodology for leveraging the seL4 formal methods proof of correctness, demonstrating multiple embedded ecosystem components (such as device drivers, system startup and configuration, separation of security domains via partitioning, and multi-level secure communication links), by utilizing theseL4microkernel running on a Rockwell Collins Helmet Mounted Display for display of classified and non-classified data. Along with source code, we will deliver a Safety & Security Plan and sample certification artifacts supporting cross-domain security services built onseL4. Our unique approach takes advantage of seL4 isolation guarantees in a high assurance application, and demonstrates efficacy on fielded military equipment.