Azure Sphere OS Built on a Compact, Secured Linux

July 9, 2019

Microsoft assembled the Azure Sphere OS on Linux to provide a secure platform for its IoT Azure Sphere environment.

Azure is Microsoft’s cloud platform. It’s a platform as a service (PaaS), infrastructure as a service (IaaS), and software as a service (SaaS). For IoT and IIoT applications, Microsoft goes further with its Azure Sphere environment (Fig. 1), providing cloud support and management of IoT devices that includes gateways and end nodes.

Electronicdesign Com Sites Electronicdesign com Files Azure Sphere Fig1 0

Azure Sphere is designed to work with secure application processors like Arm’s Cortex-A family. These aren’t run-of-the-mill processors, but secure platforms that can incorporate Microsoft’s Pluton security subsystem (Fig. 2). This provides a secure root of trust for the Azure Sphere OS. Chip platforms like MediaTek’s MT3620 and NXP’s forthcoming Edge Verse i.MX8 chip family are designed to run this secure IoT operating system.

Electronicdesign Com Sites Electronicdesign com Files Azure Sphere Fig2 0

2. Azure Sphere works with secure application processors that can incorporate Microsoft's Pluton subsystem.

Azure Sphere OS is a compact version of Linux enhanced with a secure application environment that takes advantage of the underlying secure hardware. It also offers middleware and secure communication support to tie the chip to the Azure Sphere cloud.

The security support available with Azure Sphere OS is similar to SELinux and App Armor, two other Linux security modules (LSMs). Linux allows an LSM to manage application and system security. The multilayer architecture (Fig. 3) supports secure containers that bring a modular approach to application support. Container systems like Docker have become popular in the cloud and servers, and they’re equally useful in IoT end nodes.

Electronicdesign Com Sites Electronicdesign com Files Azure Sphere Fig3 0

3. The layered architecture of the Azure Sphere OS includes support for secure containers.

Azure Sphere OS is also melded with Azure Sphere support for remote management, remote updates, and IoT communication. This is all done within a secure environment. Update support covers Azure Sphere OS, Azure Sphere middleware, as well as applications.

Developers can utilize the Azure Sphere software development kit (SDK) for application development. It can streamline debugging and is supported by Microsoft’s Visual Studio IDE. Azure Sphere OS and applications also work with Azure IoT Hub asset management, Azure IoT Edge platforms, and Azure IoT Central.

Developers can get started with Azure Sphere OS using platforms like Avnet’s MT3620 Starter Kit. It’s based on MediaTek’s MT3620, which has a 500-MHz Arm Cortex-A7. It also has a pair of Arm Cortex-M4F microcontrollers for real-time support.

About the Author

William G. Wong | Senior Content Director - Electronic Design and Microwaves & RF

I am Editor of Electronic Design focusing on embedded, software, and systems. As Senior Content Director, I also manage Microwaves & RF and I work with a great team of editors to provide engineers, programmers, developers and technical managers with interesting and useful articles and videos on a regular basis. Check out our free newsletters to see the latest content.

You can send press releases for new products for possible coverage on the website. I am also interested in receiving contributed articles for publishing on our website. Use our template and send to me along with a signed release form.

Check out my blog, AltEmbedded on Electronic Design, as well as his latest articles on this site that are listed below.

You can visit my social media via these links:

I earned a Bachelor of Electrical Engineering at the Georgia Institute of Technology and a Masters in Computer Science from Rutgers University. I still do a bit of programming using everything from C and C++ to Rust and Ada/SPARK. I do a bit of PHP programming for Drupal websites. I have posted a few Drupal modules.

I still get a hand on software and electronic hardware. Some of this can be found on our Kit Close-Up video series. You can also see me on many of our TechXchange Talk videos. I am interested in a range of projects from robotics to artificial intelligence.