Automotive Solutions PikeOS®: Certified RTOS & in Series Production ENGAGEMENT >

SYSGO Headquarters Germany, Klein-Winternheim (near Mainz)

SYSGO & PikeOS®­ Automated Driving starts with Safety separation technology, applications of different criticality levels, different security levels, real-time As an independent entity from Car manufacturers face the challenges of in- or non-real-time (using time partitioning) can the THALES group, SYSGO is the tegrating a flood of electronic components, run concurrently in a mixed-critical environment European #1 in safe & secure reducing development and production costs, on a single standard hardware platform. operating software for the and reacting quickly to environmental and “”. SYSGO public requirements, while still ensuring the PikeOS®: Hypervisor and RTOS has 25 years of expertise in Safety and Security of the entire system. embedded devices and is one A certification for ISO 26262 raises demands for PikeOS is based on a with the of the pioneers in embedded intelligent and extensible system architectures. performance of a traditional real-time operating . The RTOS PikeOS is well system. This includes a hypervisor that provides known in the market as a stable The increasing number of software applications partitions which can host different applications and reliable OS that includes and assistance systems means that automotive – from a simple yet highly critical control task technology. electronics require similar safety architectures to to a full-fledged like Linux. those used in the avionics industry. PikeOS is a Customers can start with a platform development Customer survey results show hypervisor that can host various software using RTOS and later add hypervisor that SYSGO has market leading packages in individual partitions and control functionality. experience and knowledge in communication and data flow between the customer support for devices applications and the hardware. As a consequence, safe and un-safe applications that need to run more than can coexist on the same platform. Complex 20 years. The main vertical Manage automotive Complexity with Safe and systems, consisting of multiple devices in the past, markets are automotive, Secure Virtualisation can now be consolidated on a single hardware aerospace & defense, railway platform. This saves weight, energy consumption and industrial, where SYSGO PikeOS provides a modular software architecture and cabling and reduces the bill of material. The is not only active with its integrating multiple applications on a single hard- PikeOS Hypervisor runs on as well as ARM products, but also with ware platform. Furthermore, PikeOS offers both, or PowerPC and can easily be adapted to other professional services mainly in a full hard Real-time Operating System (RTOS) CPU architectures. customer systems that are and a virtualization and partitioning system following various certification designed to support the special requirements of Safety and Security incl. Certification standards. automotive applications. The core of our PikeOS platform is a small, certifiable separation-kernel, The PikeOS Hypervisor itself is certified to With SYSGO solutions customers providing a virtualization infrastructure with the ASIL-B according to the ISO 26262 standard, reduce costs, time to market ability to house diverse resource and function thus providing the foundation for mission-critical and have a reliable, long term needs into safe individual partitions. systems with both, functional safety and supported operating system as IT Security requirements. Since 2017 SYSGO has basis for innovative products. Because automotive applications range from a joint venture with Vector Informatik and non-critical infotainment systems to highly critical jointly develops an adaptive AUTOSAR solution control functions in the car (ADAS), PikeOS certifiable to ASIL-D. accordingly provides a broad variety of GuestOS: from POSIX to Linux and And- Read more on Common Criteria certification: roid to AUTOSAR or GENIVI. Thanks to strict  www.sysgo.com/common-criteria Our best rated Asset

The safeguard mechanisms are essentially based communication and data flow between the appli- PikeOS for Automotive on two principles: strict separation of applications cations and the hardware. by time and resource partitioning and control of Automotive applications today go the communication channels. The individual ap- This enables the integration of applications of dif- beyond the actual vehicle. In plications that comprise the overall system can ferent criticality on one hardware platform. Any particular, secured communica- represent different levels of criticality. For secure necessary certification according to standards for tions are needed to ensure smoo- systems PikeOS can provide secure boot mecha- functional safety (e.g. ISO 26262) or IT security (e.g. th mobility. The use of PikeOS nisms and can build a root of trust for the applica- Common Criteria) can be created separately for resolves a wide array of challenges tions. Due to the protection mechanisms provided each application. Features like secure boot and se- at the same time: by PikeOS, the certification according to industry cure update enhance security of the entire system specific safety and/or security standards can be even when updates for individual components of PikeOS enables integration of a made separate for each application – a key feature the software landscape have to be launched. large number of functions and to keep cost under control. applications onto a single hard- ISO 26262 and SEooC Concept ware platform. Strict separation of Since beginning 2019 PikeOS is certified according applications into secure partitions to common criterial EAL 3+ and used as reference A Safety Element out of context (SEooC) is a allow authorized access only and by some authorities. safety-related element which is not developed avoids mutual interference. for a specific item. This means it is not developed PikeOS in Automotive Electronics in the context of a particular system or vehicle. Applications of various levels of The ISO 26262 is an international standard that criticality and security are sa- The PikeOS hypervisor was specifically designed defines the safety lifecycle of electrical, electronic fely separated from one another for the development of software in embedded sys- and software-based components in passenger and certified separately. PikeOS tems with certification requirements. The PikeOS cars. Based on the IEC 61508 the ISO 26262 can host AUTOSAR, AGL, GENIVI, architecture forms the basis for certification and reduces the risk of dangerous operational situa- Android, POSIX or other Guest OS. official approval of critical systems according to tions and defines security measures that reduce standards for functional safety and IT security. the risk of downtime. To meet the requirements High scalability and hardware of ISO 26262, PikeOS is optionally offered with an independence secures return on Fast Boot: By using PikeOS plus the hypervisor we Automotive Certification Kit. This Certification Kit investment. And PikeOS allows can demonstrate how to boot a system in ~30 msec includes an “ISO 26262 Part 6 compliant PikeOS legacy code re-use. and bring up the Linux applications after that. hypervisor” and a set of development and testing documentation. PikeOS has been used for many years as a basic Use Cases software in aircraft electronics to reduce the number Furthermore, additional safety information can of ECU (electronic control units) and thus the be provided, to achieve ISO 26262-compliant • Advanced Driver complexity of the overall system. The increasing systems. Important components of this Certifi- Assistance Systems number of software applications and assistance cation Kits are a safety manual with guidelines • AUTOSAR Adaptive systems in cars also require analogical system for the use of PikeOS in safety-critical design of Platform architectures, similar to an airplane. With PikeOS, systems, as well as a safety case with characteristic • Connectivity Gateway system software vendor SYSGO is supplying a functional safety requirements in accordance with • ECU Virtualization hypervisor that creates separate private partitions the necessary Automotive Safety Integrity Levels for different software applications and controls (ASIL).  www.sysgo.com/automotive Magna, SYSGO & PikeOS Vector Informatik GmbH and SYSGO join PikeOS in Series Production: Assisted Parking forces for AUTOSAR Adaptive

Several OEMs are using 360-degree view systems (for assisted parking) of Vector Informatik GmbH, located in the latest generation on the road, based on SYSGO’s PikeOS Hypervisor. Stuttgart (Germany) and SYSGO AG have founded a joint venture for the development The safe and secure hypervisor technology is used to combine the of embedded software. The aim of the integrated camera system and vehicle information system on the same cooperation is to create an integrated hardware. The new platform is the basis for further joint customer software platform consisting of the projects and can be used for the next generation of autonomous vehicles. AUTOSAR adaptive basic software MICROSAR and the real-time operating Full control of the tools is a key factor in efficient software development. system PikeOS. We compliment your use of our products by providing qualified support, including on-site consultation as needed.  www.sysgo.com/vector

MAN, SYSGO & PikeOS SYSGO is participating in the Automotive Hypervisor Technology for Cars in Mass Production: Grade Linux Project MAN Telematics Unit SYSGO is joining forces with the Linux PikeOS is used in OpenSynergy‘s COQOS and applied in a telematic Foundation to actively participate in their system of MAN by adding an Autosar and Linux partition. It handles Automotive Grade Linux (AGL) project. In this the interfacing to the vehicle buses and hosts software components open-source project, renowned automotive developed by the OEM. The communication between the server manufacturers and suppliers will work alongside backend and the telematics and fleet management functions is hardware and software manufacturers to implemented on a virtualised Linux partition, simplifying the develop and implement a completely open development of this complex software. software stack for the connected car.

 www.sysgo.com/agl-project

More information can be found on our website: Latest news, articles and whitepapers:

 www.sysgo.com/automotive  www.sysgo.com/newsletter

Rel. 1.5 (PUBLIC) © 2020-06 by SYSGO GmbH. SYSGO, ELinOS, PikeOS and SYSGO Headquarters SYSGO France SYSGO Czech

CODEO are trademarks or registered trademarks of SYSGO GmbH. All other Phone +49 6136 9948 500 Phone +33 1 30 09 12 70 Phone +420 222 138 111 products, logos and service names are the trademarks of their resp. owners. [email protected] [email protected] [email protected]