Skip Navigation

Barkhausen Institut

Composable Operating System

We build a secure operating system based on a microkernel architecture to reduce complexity and maximize component isolation. Serving the key principle of Composability Hardware and Software, our system consists of small building blocks that cooperate securely in a distributed use case. We co-design our operating system with the Scalable Computing Hardware and Wireless Connectivity and Sensing groups to solve platform and network security problems. The Composable Operating Systems group will provide the essential building blocks from which customized systems for IoT use cases can be built.

From simulator to hardware

We work closely with the Scalable Computing Hardware team to bring our operating system from a software-based simulator to actual hardware. To this end, we instantiate all hardware building blocks of Scalable Computing Hardware on an FPGA circuit emulator, which allows us to evaluate hardware designs and test interaction with software components of our operating system. In the end, our operating system and applications shall run on a real system on chip.

Enabling trade-offs between security and costs

Security is not for free. For example, physical isolation of components by placing them onto different cores requires additional resources. We investigate how exclusive and shared usage of resources can be provided with the same mechanisms, allowing system designers to choose between maximal isolation and minimal resource usage on a case-by-case basis.

Updatability and attestation of components

For the whole system to be trustworthy, it is critical that only those components that are responsible for a specific scenario can communicate with each other and that they behave as intended. We research minimal hardware and software support for secure attestation of each component's identity and integrity. This support is also needed to realize secure software updates.

Science Communication through film

We sometimes take unconventional paths to make our research accessible to a wider audience. One of our presentations was so well received by the audience that we turned it into an explanatory film on the topic of 'Data security by modularization.’ In the film, little animated robots illustrate how the software in smartphones works and how we can protect it. The smartphone also serves as a symbol for the digital infrastructure in the networked world of tomorrow.

Who we are

Michael Roitzsch
Dr.-Ing.Michael RoitzschResearch Group Leader
Nils Asmussen
Dr.-Ing.Nils AsmussenPrincipal Researcher
Carsten Weinhold
Dr.-Ing.Carsten WeinholdPrincipal Researcher
Matthias Hille
M.Sc. Inf.Matthias HilleAssociate Researcher
Till Miemietz
Dipl.-Inf.Till MiemietzAssociate Researcher
Viktor Reusch
M. Sc.Viktor ReuschAssociate Researcher
Hermann Härtig
Prof. Dr.Hermann HärtigBI Research Fellow

Publications

Nilanjana Das, Friedrich Pauls, Mattis Hasler, Sebastian Haas, Nils Asmussen, Hardware Attack Models in the Tiled Chip Multi-Core Processor: A Survey, 2024 IEEE 17th International Symposium on Embedded Multicore/Many-core Systems-on-Chip (MCSoC), 2024

@inproceedings{
DasMCSoC24,
title = "Hardware Attack Models in the Tiled Chip Multi-Core Processor: A Survey",
author = "Nilanjana Das, Friedrich Pauls, Mattis Hasler, Sebastian Haas, Nils Asmussen",
year = "2024",
booktitle = "2024 IEEE 17th International Symposium on Embedded Multicore/Many-core Systems-on-Chip (MCSoC)"
}
Download BibTex

Nils Asmussen, Michael Roitzsch, Towards Disaggregation-Native Data Streaming between Devices, 3rd Workshop on Heterogeneous Composable and Disaggregated Systems (HCDS), 2024 , Download PDF

@inproceedings{
Asmussen:DisaggregationNative,
title = "Towards Disaggregation-Native Data Streaming between Devices",
author = "Nils Asmussen, Michael Roitzsch",
year = "2024",
booktitle = "3rd Workshop on Heterogeneous Composable and Disaggregated Systems (HCDS)",
address = "San Diego, CA, USA",
month = "May",
url = "https://arxiv.org/abs/2406.09421"
}
Download BibTex

Michael Roitzsch, Bureaucracy in Systems: Measuring System Complexity by the Amount of Digital Paperwork, ASPLOS Wild and Crazy Ideas, 2024 , Download PDF

@inproceedings{
Roitzsch:Bureaucracy,
title = "Bureaucracy in Systems: Measuring System Complexity by the Amount of Digital Paperwork",
author = "Michael Roitzsch",
year = "2024",
booktitle = "ASPLOS Wild and Crazy Ideas",
address = "San Diego, CA, USA",
month = "May"
}
Download BibTex

Nils Asmussen, Sebastian Haas, Adam Lackorzyński, Michael Roitzsch, Core-Local Reasoning and Predictable Cross-Core Communication with M³, 30th IEEE Real-Time and Embedded Technology and Applications Symposium (RTAS), 2024 , Download PDF

@inproceedings{
Asmussen:Core-Local,
title = "Core-Local Reasoning and Predictable Cross-Core Communication with M³",
author = "Nils Asmussen, Sebastian Haas, Adam Lackorzyński, Michael Roitzsch",
year = "2024",
booktitle = "30th IEEE Real-Time and Embedded Technology and Applications Symposium (RTAS)",
address = "Hong Kong, China",
month = "May",
publisher = "IEEE",
url = "https://doi.org/10.1109/RTAS61025.2024.00024"
}
Download BibTex

Till Miemietz, Viktor Reusch, Michael Roitzsch, An NVM Performance Study Towards Whole System Persistence on Server Platforms, 1st Workshop on Disruptive Memory Systems (DIMES), 2023 , Download PDF

@inproceedings{
Miemietz:NVM-WSP,
title = "An NVM Performance Study Towards Whole System Persistence on Server Platforms",
author = "Till Miemietz, Viktor Reusch, Michael Roitzsch",
year = "2023",
booktitle = "1st Workshop on Disruptive Memory Systems (DIMES)",
address = "Koblenz, Germany",
month = "October",
publisher = "ACM",
url = "https://doi.org/10.1145/3609308.3625269"
}
Download BibTex

Felix Suchert, Lisza Zeidler, Jeronimo Castrillon, Sebastian Ertel, ConDRust: Scalable Deterministic Concurrency from Verifiable Rust Programs, 37th European Conference on Object-Oriented Programming (ECOOP), 2023 , Download PDF

@inproceedings{
Suchert:ConDRust,
title = "ConDRust: Scalable Deterministic Concurrency from Verifiable Rust Programs",
author = "Felix Suchert, Lisza Zeidler, Jeronimo Castrillon, Sebastian Ertel",
year = "2023",
booktitle = "37th European Conference on Object-Oriented Programming (ECOOP)",
address = "Seattle, WA, USA",
month = "July",
publisher = "LIPICS",
note = "Distinguished Artifact Award",
url = "https://doi.org/10.4230/LIPIcs.ECOOP.2023.33"
}
Download BibTex

Michael Roitzsch, Till Miemietz, Christian von Elm, Nils Asmussen, Software-Defined CPU Modes, 19th Workshop on Hot Topics in Operating Systems (HotOS), 2023 , Download PDF

@inproceedings{
Roitzsch:SDCPUModes,
title = "Software-Defined CPU Modes",
author = "Michael Roitzsch, Till Miemietz, Christian von Elm, Nils Asmussen",
year = "2023",
booktitle = "19th Workshop on Hot Topics in Operating Systems (HotOS)",
address = "Providence, RI, USA",
month = "June",
publisher = "ACM",
url = "https://doi.org/10.1145/3593856.3595894"
}
Download BibTex

Carsten Weinhold, Nils Asmussen, Diana Göhringer, Michael Roitzsch, Towards Modular Trusted Execution Environments, 6th Workshop on System Software for Trusted Execution (SysTEX), 2023 , Download PDF

@inproceedings{
Weinhold:ModularTEEs,
title = "Towards Modular Trusted Execution Environments",
author = "Carsten Weinhold, Nils Asmussen, Diana Göhringer, Michael Roitzsch",
year = "2023",
booktitle = "6th Workshop on System Software for Trusted Execution (SysTEX)",
address = "Rome, Italy",
month = "May",
publisher = "ACM",
url = "https://doi.org/10.1145/3578359.3593037"
}
Download BibTex

Sebastian Haas, Nils Asmussen, A Trusted Communication Unit for Secure Tiled Hardware Architectures, 2022 29th IEEE International Conference on Electronics, Circuits, and Systems (ICECS), 2022 , Download PDF

@inproceedings{
hwtcu-haas,
title = "A Trusted Communication Unit for Secure Tiled Hardware Architectures",
author = "Sebastian Haas, Nils Asmussen",
year = "2022",
booktitle = "2022 29th IEEE International Conference on Electronics, Circuits, and Systems (ICECS)",
month = "October",
pages = "1-4"
}
Download BibTex

Sebastian Haas, Mattis Hasler, Friedrich Pauls, Stefan Köpsell, Nils Asmussen, Michael Roitzsch, Gerhard Fettweis, Trustworthy Computing for O-RAN: Security in a Latency-Sensitive Environment, 2nd Workshop On Architectural Evolution Toward 6G Networks - 6GARCH, 2022 , Download PDF

@inproceedings{
m3oran-haas,
title = "Trustworthy Computing for O-RAN: Security in a Latency-Sensitive Environment",
author = "Sebastian Haas, Mattis Hasler, Friedrich Pauls, Stefan Köpsell, Nils Asmussen, Michael Roitzsch, Gerhard Fettweis",
year = "2022",
booktitle = "2nd Workshop On Architectural Evolution Toward 6G Networks - 6GARCH",
month = "December",
pages = "1-6"
}
Download BibTex

Jan Bierbaum, Maksym Planeta, Hermann Härtig, Towards Efficient Oversubscription: On the Cost and Benefit of Event-Based Communication in MPI, International Workshop on Runtime and Operating Systems for Supercomputers (ROSS), 2022 , Download PDF

@inproceedings{
Bierbaum:Blocking,
title = "Towards Efficient Oversubscription: On the Cost and Benefit of Event-Based Communication in MPI",
author = "Jan Bierbaum, Maksym Planeta, Hermann Härtig",
year = "2022",
booktitle = "International Workshop on Runtime and Operating Systems for Supercomputers (ROSS)",
address = "Dallas, TX, USA",
month = "November",
url = "https://doi.org/10.1109/ROSS56639.2022.00007"
}
Download BibTex

Till Smejkal, Jan Bierbaum, Manuel von Oltersdorff-Kalettka, Michael Roitzsch, CABAS: Real-Time for the Masses, 16th Workshop on Operating Systems Platforms for Embedded Real-Time (OSPERT), 2022 , Download PDF

@inproceedings{
Smejkal:CABAS,
title = "CABAS: Real-Time for the Masses",
author = "Till Smejkal, Jan Bierbaum, Manuel von Oltersdorff-Kalettka, Michael Roitzsch",
year = "2022",
booktitle = "16th Workshop on Operating Systems Platforms for Embedded Real-Time (OSPERT)",
address = "Modena, Italy",
month = "July"
}
Download BibTex

Robert Walther, Carsten Weinhold, Michael Roitzsch, RATLS: Integrating Transport Layer Security with Remote Attestation, 4th Workshop on Cloud Security and Privacy (Cloud S&P), 2022 , Download PDF

@inproceedings{
Walther:RATLS,
title = "RATLS: Integrating Transport Layer Security with Remote Attestation",
author = "Robert Walther, Carsten Weinhold, Michael Roitzsch",
year = "2022",
booktitle = "4th Workshop on Cloud Security and Privacy (Cloud S&P)",
address = "Rome, Italy",
month = "June",
publisher = "Springer Nature",
url = "https://doi.org/10.1007/978-3-031-16815-4_20"
}
Download BibTex

Friedrich Pauls, Sebastian Haas, Stefan Köpsell, Michael Roitzsch, Nils Asmussen, Gerhard Fettweis, On Trustworthy Scalable Hardware/Software Platform Design, Smart Systems Integration Conference and Exhibition (SSI), 2022 , Download PDF

@inproceedings{
hwswplatform_pauls2022,
title = "On Trustworthy Scalable Hardware/Software Platform Design",
author = "Friedrich Pauls, Sebastian Haas, Stefan Köpsell, Michael Roitzsch, Nils Asmussen, Gerhard Fettweis",
year = "2022",
booktitle = "Smart Systems Integration Conference and Exhibition (SSI)",
month = "April"
}
Download BibTex

Till Miemietz, Maksym Planeta, Viktor Reusch, Jan Bierbaum, Michael Roitzsch, Hermann Härtig, Fast Privileged Function Calls, 11th Workshop on Systems for Post-Moore Architectures (SPMA), 2022 , Download PDF

@inproceedings{
Miemietz:FastCalls,
title = "Fast Privileged Function Calls",
author = "Till Miemietz, Maksym Planeta, Viktor Reusch, Jan Bierbaum, Michael Roitzsch, Hermann Härtig",
year = "2022",
booktitle = "11th Workshop on Systems for Post-Moore Architectures (SPMA)",
address = "Rennes, France",
month = "April"
}
Download BibTex

Lluís Vilanova, Lina Maudlej, Shai Bergman, Till Miemietz, Matthias Hille, Nils Asmussen, Michael Roitzsch, Hermann Härtig, Mark Silberstein, Slashing the Disaggregation Tax in Heterogeneous Data Centers with FractOS, European Conference on Computer Systems (EuroSys), 2022 , Download PDF

@inproceedings{
Vilanova:FractOS,
title = "Slashing the Disaggregation Tax in Heterogeneous Data Centers with FractOS",
author = "Lluís Vilanova, Lina Maudlej, Shai Bergman, Till Miemietz, Matthias Hille, Nils Asmussen, Michael Roitzsch, Hermann Härtig, Mark Silberstein",
year = "2022",
booktitle = "European Conference on Computer Systems (EuroSys)",
address = "Rennes, France",
month = "April",
pages = "352–367",
url = "https://doi.org/10.1145/3492321.3519569"
}
Download BibTex

Michael Roitzsch, Till Miemietz, The Software-Defined CPU, ASPLOS Wild and Crazy Ideas, 2022 , Download PDF

@inproceedings{
Roitzsch:SoftwareDefinedCPU,
title = "The Software-Defined CPU",
author = "Michael Roitzsch, Till Miemietz",
year = "2022",
booktitle = "ASPLOS Wild and Crazy Ideas",
address = "Lausanne, Switzerland",
month = "February"
}
Download BibTex

Nils Asmussen, Sebastian Haas, Carsten Weinhold, Till Miemietz, Michael Roitzsch, Efficient and Scalable Core Multiplexing with M³v, ACM International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), 2022 , Download PDF

@inproceedings{
Asmussen:M3v,
title = "Efficient and Scalable Core Multiplexing with M³v",
author = "Nils Asmussen, Sebastian Haas, Carsten Weinhold, Till Miemietz, Michael Roitzsch",
year = "2022",
booktitle = "ACM International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)",
address = "Lausanne, Switzerland",
month = "February",
publisher = "ACM",
pages = "452–466",
url = "https://doi.org/10.1145/3503222.3507741"
}
Download BibTex

Sebastian Haas, Nils Asmussen, HW/SW Design Challenges for Secure Computing Platforms, HiPEAC CSW Autumn, 2021

@conference{
hipeac-csw-autumn21-bi,
title = "HW/SW Design Challenges for Secure Computing Platforms",
author = "Sebastian Haas, Nils Asmussen",
year = "2021",
booktitle = "HiPEAC CSW Autumn",
address = "Lyon, France",
month = "October",
note = "Presentation",
url = "https://www.youtube.com/watch?v=pn9mmnWfvQE"
}
Download BibTex

Andrés Goens, Timo Nicolai, Jeronimo Castrillon, mpsym: Improving Design-Space Exploration of Clustered Manycores with Arbitrary Topologies, IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (TCAD), 2021 , Download PDF

@article{
Goens:mpsym,
title = "mpsym: Improving Design-Space Exploration of Clustered Manycores with Arbitrary Topologies",
author = "Andrés Goens, Timo Nicolai, Jeronimo Castrillon",
year = "2021",
journal = "IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (TCAD)",
month = "July",
url = "https://doi.org/10.1109/TCAD.2021.3102512"
}
Download BibTex

Alexander Brauckmann, Andrés Goens, Jeronimo Castrillon, PolyGym: Polyhedral Optimizations as an Environment for Reinforcement Learning, 30th International Conference on Parallel Architectures and Compilation Techniques (PACT), 2021 , Download PDF

@inproceedings{
Brauckmann:PolyGym,
title = "PolyGym: Polyhedral Optimizations as an Environment for Reinforcement Learning",
author = "Alexander Brauckmann, Andrés Goens, Jeronimo Castrillon",
year = "2021",
booktitle = "30th International Conference on Parallel Architectures and Compilation Techniques (PACT)",
month = "September",
publisher = "IEEE",
url = "https://doi.org/10.1109/PACT52795.2021.00009"
}
Download BibTex

Robert Khasanov, Julian Robledo, Christian Menard, Andrés Goens, Jeronimo Castrillon, Domain-Specific Hybrid Mapping for Energy-Efficient Baseband Processing in Wireless Networks, International Conference on Compilers, Architecture, and Synthesis of Embedded Systems (CASES), 2021 , Download PDF

@inproceedings{
Khasanov:BasebandMapping,
title = "Domain-Specific Hybrid Mapping for Energy-Efficient Baseband Processing in Wireless Networks",
author = "Robert Khasanov, Julian Robledo, Christian Menard, Andrés Goens, Jeronimo Castrillon",
year = "2021",
booktitle = "International Conference on Compilers, Architecture, and Synthesis of Embedded Systems (CASES)",
month = "October",
publisher = "ACM",
url = "https://doi.org/10.1145/3476991"
}
Download BibTex

Carsten Weinhold, Nils Asmussen, Michael Roitzsch, Hardware/Software Co-Design für eine Modulare Systemarchitektur, Echtzeit 2020: Kommunikationssicherheit im Internet der Dinge, 2020

Inhalt dieses Papiers ist die Vorstellung eines Hardware/Software Co-Designs für Rechnerknoten im Internet der Dinge. Als Grundlage dient das M3-Mikrokernsystem, welches mittels einer neuartigen Hardware-Komponente sichere und effiziente Kommunikation zwischen Funktionsbausteinen innerhalb eines System-on-Chip erlaubt. Es wird außerdem ein Ausblick darauf gegeben, wie sichere Kommunikation über Knotengrenzen hinweg ermöglicht werden kann.

@inproceedings{
Weinhold:CoDesign,
title = "Hardware/Software Co-Design für eine Modulare Systemarchitektur",
author = "Carsten Weinhold, Nils Asmussen, Michael Roitzsch",
year = "2020",
booktitle = "Echtzeit 2020: Kommunikationssicherheit im Internet der Dinge",
month = "November",
publisher = "Springer",
pages = "21–30",
url = "https://doi.org/10.1007/978-3-658-32818-4_3"
}
Download BibTex

Alexander Brauckmann, Andrés Goens, Sebastian Ertel, Jeronimo Castrillon, Compiler-Based Graph Representations for Deep Learning Models of Code, 29th International Conference on Compiler Construction (CC), 2020 , Download PDF

In natural language processing, novel methods in deep learning, like recurrent neural networks (RNNs) on sequences of words, have been very successful. In contrast to natural languages, programming languages usually have a well-defined structure. With this structure compilers can reason about programs, using graphs such as abstract syntax trees (ASTs) or control-data flow graphs (CDFGs). In this paper, we argue that we should use these graph structures instead of sequences for learning compiler optimization tasks. To this end, we use graph neural networks (GNNs) for learning predictive compiler tasks on two representations based on ASTs and CDFGs. Experiments show that this improves upon the state-of-the-art in the task of heterogeneous OpenCL mapping, while providing orders of magnitude faster inference times, crucial for compiler optimizations. When testing on benchmark suites not included for training, our AST-based model significantly outperforms the state-of-the-art by over 12 percentage points in terms of accuracy. It is the only one to perform clearly better than a random mapping. On the task of predicting thread coarsening factors, we show that all of the methods fail to produce an overall speedup.

@inproceedings{
Brauckmann:DeepLearningGraph,
title = "Compiler-Based Graph Representations for Deep Learning Models of Code",
author = "Alexander Brauckmann, Andrés Goens, Sebastian Ertel, Jeronimo Castrillon",
year = "2020",
booktitle = "29th International Conference on Compiler Construction (CC)",
address = "San Diego, CA, USA",
month = "February",
publisher = "ACM",
pages = "201–211",
url = "https://doi.org/10.1145/3377555.3377894"
}
Download BibTex

Matthias Hille, Nils Asmussen, Hermann Härtig, Pramod Bhatotia, A Heterogeneous Microkernel OS for Rack-Scale Systems, 11th ACM SIGOPS Asia-Pacific Workshop on Systems (APSys), 2020 , Download PDF

@inproceedings{
Hille:RackScaleOS,
title = "A Heterogeneous Microkernel OS for Rack-Scale Systems",
author = "Matthias Hille, Nils Asmussen, Hermann Härtig, Pramod Bhatotia",
year = "2020",
booktitle = "11th ACM SIGOPS Asia-Pacific Workshop on Systems (APSys)",
address = "Tsukuba, Japan",
month = "August",
publisher = "ACM",
url = "https://doi.org/10.1145/3409963.3410487"
}
Download BibTex

Lluís Vilanova, Lina Maudlej, Matthias Hille, Nils Asmussen, Michael Roitzsch, Mark Silberstein, Caladan: A Distributed Meta-OS for Data Center Disaggregation, 10th Workshop on Systems for Post-Moore Architectures (SPMA), 2020 , Download PDF

@inproceedings{
Vilanova:Caladan2020,
title = "Caladan: A Distributed Meta-OS for Data Center Disaggregation",
author = "Lluís Vilanova, Lina Maudlej, Matthias Hille, Nils Asmussen, Michael Roitzsch, Mark Silberstein",
year = "2020",
booktitle = "10th Workshop on Systems for Post-Moore Architectures (SPMA)",
month = "April"
}
Download BibTex

Till Miemietz, Hannes Weisbach, Michael Roitzsch, Hermann Härtig, K2: Work-Constraining Scheduling of NVMe-Attached Storage, 40th IEEE Real-Time Systems Symposium (RTSS), 2019 , Download PDF

@inproceedings{
Miemietz:K2,
title = "K2: Work-Constraining Scheduling of NVMe-Attached Storage",
author = "Till Miemietz, Hannes Weisbach, Michael Roitzsch, Hermann Härtig",
year = "2019",
booktitle = "40th IEEE Real-Time Systems Symposium (RTSS)",
month = "December",
publisher = "IEEE"
}
Download BibTex

Matthias Hille, Nils Asmussen, Pramod Bhatotia, Hermann Härtig, SemperOS: A Distributed Capability System, USENIX Annual Technical Conference (ATC), 2019 , Download PDF

@inproceedings{
Hille:SemperOS,
title = "SemperOS: A Distributed Capability System",
author = "Matthias Hille, Nils Asmussen, Pramod Bhatotia, Hermann Härtig",
year = "2019",
booktitle = "USENIX Annual Technical Conference (ATC)",
address = "Renton, WA, USA",
month = "July",
publisher = "USENIX"
}
Download BibTex

Nils Asmussen, Michael Roitzsch, Hermann Härtig, M3x: Autonomous Accelerators via Context-Enabled Fast-Path Communication, USENIX Annual Technical Conference (ATC), 2019 , Download PDF

@inproceedings{
Asmussen:M3x,
title = "M3x: Autonomous Accelerators via Context-Enabled Fast-Path Communication",
author = "Nils Asmussen, Michael Roitzsch, Hermann Härtig",
year = "2019",
booktitle = "USENIX Annual Technical Conference (ATC)",
address = "Renton, WA, USA",
month = "July",
publisher = "USENIX"
}
Download BibTex

Nils Asmussen, Michael Roitzsch, Carsten Weinhold, Pluggable Components All The Way Down, 1st International Workshop on Next-Generation Operating Systems for Cyber-Physical Systems (NGOSCPS), 2019 , Download PDF

@inproceedings{
Asmussen:Pluggable2019,
title = "Pluggable Components All The Way Down",
author = "Nils Asmussen, Michael Roitzsch, Carsten Weinhold",
year = "2019",
booktitle = "1st International Workshop on Next-Generation Operating Systems for Cyber-Physical Systems (NGOSCPS)",
address = "Montreal, Canada",
month = "April"
}
Download BibTex