| 摘要 |
A method to isolate a secure mode with a secure operation region, safety-critical software and a real-time operating system from a non-secure mode with a non-secure operation region, non-critical software and a general operating system. In the non-secure mode, the real-time operating system is inactivated and the general operating system is activated by a secure configuration register, secure interrupts are mapped to fast processor interrupts calling a secure monitor program and non-secure interrupts are mapped to regular processor interrupts by an interface configuration register. In the secure mode, the real-time operating system is activated and the general operating system is inactivated by the secure configuration register, the secure interrupts are mapped to regular processor interrupts calling the real-time operating system, fast processor interrupts are not used and non-secure interrupts are disabled by the interface configuration register. The method works quickly because only two registers have to be written and the real-time operating system needs, in an ideal case, no adjustments. |
