SYSGO Product Overview

Guest Guest PikeOS Operating Runtime Native Drivers PikeOS 5.1 System Environment Certified RTOS with

Hypervisor Functionality PikeOS

Hardware

Graphics PikeOS is a real-time Avionics Railway Automotive Industrial Medical Network Network Network Network Network based on a designed for Multi-Core the highest levels of Safety & Security. The PikeOS technology is certifiable by various certification standards including DO-178C, IEC 61508, EN 50128, EN 50657, and ISO 26262. It combines a modular, highly flexible and future-proof ITAR architecture with a variety of certification standards. free SERVER LAYER-GROUP EXPAND-ARROWS-ALT Check-Circle With this fully European solution customers benefit Common in terms of reduction of cost, risk and full system Hardware Use of Application Certification Criteria certification lead times. We offer optional long-term Consolidation COTS Separation Kits support for all of our OS products.

UNIQUE COMBINATION OF FEATURES

Virtualization Advanced and Timing Support Performance-optimized para- on standard PikeOS incorporates a scheduler combining time and priority CPUs as well as hardware-assisted virtualization on CPUs driven scheduling. Hard real-time requirements for critical such as ARM-VE ensure high performance with minimal applications are met while still providing best effort changes to guest operating systems. Virtualized guest OSs scheduling for non-critical tasks. It is possible to switch can either access I/O resources through their native drivers between multiple pre-configured time partition scheduling or use a common infrastructure to access device drivers schemes to optimize CPU usage based on the platform provided by PikeOS. If supported by the CPU, the IOMMU operating mode. manager protects the platform from malicious DMA transfers initiated by untrusted guest OSs. Health Monitoring PikeOS provides built-in health monitoring functions, which Safety implement all features described in the ARINC 653 standard. Strict time and resource partitioning of the PikeOS Application errors or hardware failures are intercepted by separation kernel prevents application failures from the OS and handled according to system and partitions- propagating to any other place in the system. PikeOS is specific configuration. This ensures a predictable system developed according to Safety standards such as DO-178C, behaviour. IEC 61508, EN 50128, ISO 26262 or IEC 62304. Related certificates, certification artefacts and documentation can be made available as a Certification Kit to SYSGO customers. DEVELOPMENT & CONFIGURATION TOOL CODEO is an -based IDE and offers a complete Security environment for embedded systems covering the In addition to the PikeOS multilayer Security architecture whole development cycle from early simulation and based on data and application separation as well as emulation tools to software update mechanisms for controlled information flow, PikeOS can incorporate deployed systems. communication encryption and binary verification. The PikeOS separation kernel architecture is fully compliant with Learn more: www.sysgo.com/codeo the MILS architecture. By means of TrustZone, secure boot can be established on according ARM platforms.

www.sysgo.com PikeOS - Certified RTOS with Functionality

CUSTOMER BENEFITS

PikeOS is based on a separation kernel with RTOS • Flexible broad support of architectures and Guest OSs performance including hypervisor. The hypervisor provides • Wide open source support, via SYSGO’s own Linux partitions that can host different applications – from a simple distribution ELinOS or vendor-specific or Yocto kernels yet highly critical control task to a full-featured operating system such as Linux or Android™. As a consequence, Learn more: www.sysgo.com/elinos embedded and IT applications can coexist on a single hardware platform. This saves weight, energy consumption • Safety & Security bulletins / patches. Step by step and space leading to a significant reduction of material: enlargment of Security add-on technologies, such as TSL, SSL or encryption libraries to make systems more secure • Avionics customers benefit from best in class ARINC 653, • Enhanced PikeOS native API allows migration from Part 1 + Part 2 and ARINC 664 software running on proprietary operating systems as • Quicker and more deterministic multi-core handling via well as usage of open-source projects fine-granular locking on kernel-specific threads • Common Criteria: www.sysgo.com/common-criteria

PIKEOS FEATURES PIKEOS HIGHLIGHTS

• RTOS and Type 1 hypervisor with Multi-Core Certification Enhancements on the separation kernel-based hard • DO-178 DAL A, EN 50128 / PikeOS native API real-time operating system EN 50657 SIL 4 and CAST-32A • Priority inheritance and ceiling • Robust time & resource partitioning • Inter-core interference mitigated by protocols for mutexes • Shared memory, graphics and • Shared Cache partitioning • C++ for PikeOS native API audio (BSP dependant) • Fine grained Locking within • TCP/IP stack based on LwIP • Support of OpenGL, OpenCL PikeOS • I/O Streams • MILS-compliant • Bandwidth Access Monitoring • Safety certification according to (BAM) for applications User-Centric Approach DO-178C, EN 50218, EN 50657, • Improved Multi-Core Performance • PikeOS-qualified toolchain with IEC 61508, ISO 26262, IEC 62304 and Power Efficiency configuration on single-/multi-core • Security certification according to • Quick System calls • Shared memory information Common Criteria and Airbus SAR • Reduced Driver access time monitor • Multi-core processor support • Support for lock-free kernel • Graphical view enhancements • , graphic drivers • CPU load information and and audio sharing for certain BSP • Support pre-emptive kernel driver VMIT improvements • Certifiable CIP and CFS • Improved user documentation incl. • Eclipse-based IDE CODEO Certifiable (Certification Kits) migration guide from PikeOS 4.x to • Large SW & HW ecosystem • According to highest Safety & PikeOS 5.x Security standards with modular Wide Range of Guest OSs certification kits for Avionics, Enhanced Ecosystem via • Linux (ELinOS), Android™, Railway, Automotive, Industrial • New BSPs from NXP, STM or TI legacy RTOS, RTEMS, … Automation, and Medical • Added Security solutions • POSIX, ARINC 653, Java, ADA, … • Including Safety/Security Bulletin • 3rd party on chip debugger • AUTOSAR classic & adaptive, … with known issues and open solutions problem reports Available for PowerPC, , ARM v7 v8, SPARC/LEON v8, RISC- SECURE CONNECTIVITY

TRAININGS, CONSULTING AND SUPPORT Railway Platform Automotive Platform Learn more: www.sysgo.com/service www.sysgo.com/safe-vx www.sysgo.com/sacop

Founded in 1991, SYSGO became a trusted advisor for Embedded Operating Systems and is the European leader in hypervisor-based OS technology offering worldwide product life cycle support. We are well positioned to meet customer needs in all industries and offer tailor-made solutions with highest expectations in Safety & Security. More information at www.sysgo.com/pikeos

Rel. 1.2 (PUBLIC) © 2021-03 by SYSGO GmbH // SYSGO, ELinOS, SYSGO Headquarters SYSGO France SYSGO Czech Republic PikeOS, and CODEO are trademarks or registered trademarks Phone +49 6136 9948 500 Phone +33 1 30 09 12 70 Phone +420 222 138 111 of SYSGO GmbH. All other products, logos and service names www.sysgo.com are the trademarks of their resp. owners. [email protected]