N003: Safety & Security

Document Statusactive


The kernel safety mechanism provide reliable system performance. Its security mechanisms protect the system from attacks on interfaces.


IDTitleUser StoryPriority
N003-1Application SecurityAs a developer, I want that code from an unsafe partition cannot corrupt my application.high
N003-2Kernel SecurityAs a maintainer, I want that no code outside the kernel space can crash the kernel.high
N003-3ToolchainAs a maintainer, I want to use Rusts stable toolchain, so that the kernel doesn't rely on unstable language features.medium



Out of Scope

  • Ferrocene (formerly Sealed Rust) - a Rust subset for safety critical applications - might become a requirement at some point in the future