Abstract: To improve the dependability of security/safety-critical systems, after analyzing status quo of high dependable safeguard mechanism, a multi-layered architecture based on the concept of separation and the VM is proposed, which supports applications with multi-level security. This paper researches multi-layered security/safety policy, the information flow control mechanism and the evaluation and certification for trusted software. This architecture can provide trustworthy services for the embedded security/safety-critical systems.