Security Testing and Evaluation Labs
Security Evaluation Laboratory (SEL)
Wind River : Wind River VxWorks MILS 2.0
| Sponsor: | Wind River Systems Inc. |
| Point of Contact: | Guy Millet Phone: 972-434-4130 |
| Assurance Level: | EAL6+ (with SKPP) |
| Status: | In-Evaluation |
The Wind River’s VxWorks MILS product claims conformance to the “U.S. Government Protection Profile for Separation Kernels in Environments Requiring High Robustness” (SKPP). The primary security function of Wind River VxWorks MILS is to partition (viz. separate) the subjects and resources of a system into security policy-equivalence classes, and to enforce the rules for authorized information flows between partitions.
Wind River VxWorks MILS supports information flow control, resource isolation, trusted initialization, trusted delivery, trusted recovery and audit capabilities. The information flow policies are defined by the configuration vector. Wind River VxWorks MILS also includes the support tools and procedures used to accurately generate and securely distribute that configuration vector. Specific assurance requirements are allocated to those support tools and procedures.
Wind River VxWorks MILS provides a highly robust foundation for system services and applications in mission-critical embedded systems, and a high degree of assurance for the enforcement of related security policies. Such policies include those for the management of classified and other high-valued information, whose confidentiality, integrity or releasability must be protected. For example, VxWorks MILS separation mechanisms, when integrated within a high assurance security architecture, are appropriate to support critical security policies for the Department of Defense (DoD), Intelligence Community, the Department of Homeland Security, Federal Aviation Administration, and industrial sectors such as finance and manufacturing.