NOVA is a modern open-source microhypervisor that can host unmodified guest operating systems next to critical host applications. After adding support for multiple instruction sets (ARMv8-A and x86_64), NOVA's code base has been restructured to share as much code between architectures as possible. I will give an overview of the new abstractions that make NOVA fit for the next decade and discuss how advanced features, such as boot-time relocation and code patching, multiple resource spaces, support for suspend/resume, cache allocation technology, control-flow protection and multi-key total memory encryption have increased NOVA's flexibility, security and performance even further.
Speakers: Udo Steinberg