Welcome to über eXtensible Micro-Hypervisor Framework’s documentation!

The über eXtensible Micro-Hypervisor Framework (überXMHF) is a compositionally verifiable, extensible, micro-hypervisor framework for commodity platforms advocating the design and development of a new class of security-oriented micro-hypervisor based applications (“überApps”).

überXMHF is designed to achieve three goals: modular extensibility, automated (compositional) verification, and high performance.

überXMHF includes a core that provides functionality common to many hypervisor-based security architectures and supports extensions that augment the core with additional security or functional properties while preserving the fundamental hypervisor security property of memory integrity (i.e., ensuring that the hypervisor’s memory is not modified by software running at a lower privilege level).

überXMHF advocates a “rich” commodity single-guest execution model (uberguest) where the hypervisor framework supports only a single, commodity guest OS and allows the guest direct access to all performance-critical system devices and device interrupts. In principle, the uberguest could also be a traditional hypervisor/VMM.

überXMHF currently runs on both x86 (Intel and AMD) and ARM (Raspberry PI) multi-core hardware virtualized platforms with support for nested (2-dimensional) paging. The framework is capable of running unmodified legacy multiprocessor capable OSes such as Linux and Windows.

This documentation describes the details on the supported hardware platforms, supported OSes, building, verifying, installing and debugging of the framework and associated components.

• General Software Requirements

PC Intel x86 32-bit:

• Hardware Requirements
• Supported OS
• Verifying and Building
  • Software Requirements and Dependencies
  • Verifying
  • Build micro-hypervisor core framework
  • Adding new überApps
• Installing
  • Prerequisites
  • Configure target system to boot uberXMHF
• Debugging
  • Terminology
  • Debugging Setup

Raspberry Pi3 ARMv8 32-bit:

• Hardware Requirements
• Supported OS
• Building
  • Build micro-hypervisor core framework
  • uhcalltest überApp micro-hypervisor extension
  • Other überApp micro-hypervisor extensions
  • Adding new überApps
• Installing
  • Deploying binaries to SD Card
  • Boot up and test
• Debugging
  • Terminology
  • Debugging Setup

Legacy PC AMD/Intel x86 32-bit:

• Hardware Requirements
• Supported OS
• Verifying and Building
  • Verifying
  • Building
• Installing
  • Prerequisites
  • Configure target system to boot uberXMHF
• Debugging
  • Terminology
  • Debugging Setup
• überApp - TrustVisor
  • Introduction
  • Building
  • Installing
  • Trusted Execution Environment (TEE) SDK
  • Installing TEE-SDK
  • Using TEE-SDK
• überApp - Lockdown
  • Introduction