Overview
- BlueRock published an updated NOVA microhypervisor that adds DMA remapping support for AMD platforms that expose IOMMU, enforcing device-to-memory mappings at the hardware level.
- NOVA uses the IOMMU to block or abort unauthorized DMA transactions, apply per-device and per-page access rules, and optionally log DMA remapping faults for diagnostics.
- The company says NOVA runs beneath guest operating systems so isolation holds even if a VM or device driver is compromised, and supports very large workloads with up to 256TB physical memory and 128PB virtual address space per VM.
- BlueRock released the code under GPLv2 so security teams can inspect enforcement logic and formal specifications are maintained on a separate verification branch, though the project remains experimental.
- Market coverage noted AMD shares moved lower on the day of the release but attributed the drop to broad market selling rather than the NOVA announcement itself, leaving technical uptake and customer adoption as the key next steps to watch.