Northstar
An embedded container
runtime system
Idea
Embedded systems control more and more parts of the vehicle. A growing number of software features are tightly integrated into the same amount of hardware. This restricted environment creates the need for robustness, resource efficiency, security, and minimal startup time.
Northstar adresses these challenging requirements – a lightweight container runtime for embedded Linux systems. It makes use of state-of-the-art sandboxing technology to isolate various Linux applications from the rest of the system. At the same time it allows for efficient startup and secure update scenarios. The applications run sandboxed within Northstar containers, thus allowing various processes to run simultaneously without affecting each other.
Github ↗
Whitepaper ↗
Benefits
-
+
Lightweight and portable
-
+
Economic use of limited computing resources
-
+
Robust and secure, guarding against potentially malicious application
-
+
Meets stringent demands of automotive systems
-
+
Fast startup while meeting critical security obligations
-
+
Secure way to install and update applications
Facts
-
+
Built with Rust
-
+
Use of Sandboxing through a combination of various Linux technologies
-
+
Open source project under the Apache 2 license