NOVA Microhypervisor: AMD DMA Isolation for AI Security

The NOVA microhypervisor now supports AMD platforms with IOMMU hardware virtualization. This new open-source release from BlueRock brings DMA remapping capabilities. What's interesting is this feature is enabled by default. It extends hardware-level isolation across virtual machines, devices, and memory in shared environments. NOVA combines microkernel and hypervisor functions using a small trusted computing base. This integration with AMD IOMMU is a core enforcement mechanism. It prevents hardware devices assigned to one virtual machine from accessing the memory of neighboring workloads. It can also enforce memory access controls and abort unauthorized memory transactions. BlueRock CEO Harold Byun states that device drivers represent a large attack surface. Without IOMMU protections, a compromised driver could access arbitrary memory, risking confidentiality or integrity. The bottom line: This update enhances security for shared AI infrastructure by preventing direct memory access attacks on AMD systems.