http://os.inf.tu-dresden.de/papers_ps/liebergeld-diplom.pdf
Complexity was still yoo high. Most in high-assurance security were trying stuff like Nova microhypervisor as a result. KVM on separation kernels might be worth further investigation for these platforms that will stay on KVM regardless.