LynxOS-178 Certifiable RTOS for safety-critical computing

LynxOS-178 RTCA/DO-178B, level A Certified RTOS and FAA-accepted Reusable Software Component

LynxOS®-178 RTOS is the first and only supporting both Intel® Pentium® and solid real-time DO-178B and EURO- PowerPC® platforms. CAE/ED-12B level A certified operating LynxOS-178 provides APIs for system to offer both the interoperability LynxOS-178 is built on open standards the Future Airborne Capability benefits of POSIX® and support for the and designed specifically to fulfill the Environment (FACE): ARINC 653-1 Application EXecutive stringent needs of multi-process and (APEX) interface. The resulting COTS multi-threaded applications used in - 159 FACE Security Profile APIs solution provides the most open and safety critical systems. - 81 FACE Safety Profile APIs industry recognized interfaces between - 98 FACE Security Extended the system hardware and applications ARINC 653-1 Conformance Profile APIs that enable the most capable systems for ARINC 653-1 brick-wall partitions make it - additional ongoing coverage Integrated Modular Avionics platforms. impossible for system events in one par- tition to interfere with events in another. The FACE standard is designed LynxOS-178 claims the first and only time Each partition can be equated to existing to enhance the U.S. military and space partitioned, FAA-accepted Re- as its own separate virtual computer aviation community’s ability to usable Software Component (RSC) award having non-shared and fixed hardware address issues of limited soft- as defined by advisory circular 20-148. resources. ware reuse and accelerate and It is also one of the few COTS solutions enhance warfighter capabilities. Memory and resources are not shared between the partitions in a LynxOS-178 Software Technologies™ is system. Each partition has access to stat- an Associate Sponsor of FACE, Features & Advantages ically pre-allocated memory and operat- an industry consortium. The ing system resources. Partition memory FACE technical standard defines • Low risk - DO-178B level A reusable is protected by the hardware MMU elimi- a reference architecture for cre- certification nating any chance of a process execution ating a common operating envi- in one partition to inadvertently access ronment to support applications • Reduced cost - Elimination of man- memory owned by a different partition. across multiple Department of years of certification effort Defense avionics systems. An optimized ARINC 653-1 based sched- • Reusable Software Component uling algorithm ensures that the system (RSC) - First and only time and space is deterministically safe while providing partitioned, FAA-accepted RSC each partition with fixed cycles of execu- tion time. The partition execution time • Open Standards Conformance - En- windows are guaranteed regardless of partition and system. Health Monitor sures application portability, software operations occurring in the other parti- logging can include system hardware reuse and interoperability tions. error data for devices connected via the o POSIX - POSIX.1 with POSIX 1.b, peripheral component interconnect (PCI) real-time extensions, and POSIX The ARINC 653-1 Health Monitor is an bus. In addition the number of power-on 1.c , threads extensions integral component of the LynxOS-178 cycles, total operational time, and time o ARINC 653-1 - Application EXecu- . The Health Monitor since last service date data is maintained. tive (APEX) oversees and reports the health of the hardware and software. Health Monitor • Certifiable Networking - Lynx Certifi- functions are performed at two levels: able Stack comprehensive support for networking protocols the performance of safety-critical sys- tems. The complete package includes full customer support and DO-178B consult- ing services from the specialists at Lynx Software Technologies.

Full POSIX Conformance The POSIX standard was developed by the Institute of Electrical and Electronics Engineers (IEEE) and is maintained by The Open Group. POSIX is recognized by FROM LYNX SOFTWARE TECHNOLOGIES the International Organization for Stan- dardization (ISO) and American National Standards Institute (ANSI).

POSIX conformance assures code porta- bility between systems and is mandated for increasing commercial applications LynxOS-178 provides the following hardware modules for seamless commu- and government contracts. POSIX con- ARINC 653-1 mandated system service nication between applications. tains the native LynxOS-178 interface, groups: and POSIX calls are included as part of • Partition management Full DO-178B Level A Acceptance the add-on library for the operating sys- • Process management LynxOS-178 is a FAA-recognized Reus- tem ensuring maximum performance. • Time management able Software Component (RSC) that ฀ • Inter-partition communications (sam- meets all objectives of RTCA/DO-178B. LynxOS-178–The Safest Solution pling ports and queuing ports) This function allows LynxOS-178 to be Certification of software to DO-178B and • Intra-partition communications (buf- used in multiple projects without having EUROCAE/ED-12B has traditionally de- fers, blackboards, semaphores and to regenerate certification artifacts. manded multiple years of effort resulting events) in considerable costs and time-to-market • Health monitoring The LynxOS-178 RSC is more than just a penalties. set of DO-178B artifacts. The documenta- Inter-Partition Communication tion set includes a detailed partitioning LynxOS-178 now allows companies to LynxOS-178 offers developers the flexibil- and interface analysis that focuses on mitigate both schedule and cost risk. ity of advanced networking features that time, space and resource partitioning LynxOS-178 provides a well-known certifi- are unmatched by the competition. The as well as timing margin analysis so able package at a predictable cost poten- Lynx Certifiable Stack provides users with developers can allocate budgets to use tially saving thousands of man-hours, over TCP/IP, UDP, ARP, ICMP, IGMP, FTP and LynxOS-178 system services. The set of the course of a certification project. TFTP protocols on a per partition basis RSC guidance documentation includes certifiable up to DO-178B level A. Users requirements, design data, test suites Developers can bring their safety-critical can configure network applications with and coverage analysis to meet DO-178B products to market faster than ever by SNMPv3 and SNTP for added flexibility. requirements. leveraging software and artifacts that have been previously certified. Once Applications can also make use of the Additionally, LynxOS-178 comes with a again, Lynx Software Technologies leads ARINC 653 ports interface to communi- full-fledged Eclipse-based development the industry as LynxOS-178 ushers in a cate across partition boundaries. ARINC environment which includes all tools new era of productivity for safety-critical 653 ports can be configured on multiple necessary for debugging and fine-tuning system development.

Lynx Software Lynx Software Lynx Software ©2012 Lynx Software Technologies, Inc. Lynx Software Technologies, Inc. Technologies UK Technologies Europe Technologies and the Lynx Software Technologies logo are 855 Embedded Way 400 Thames Valley Park 38 Avenue Pierre Curie trademarks, and LynxOS and BlueCat are registered trade- San José, CA 95138-1018 Drive 78210 Saint-Cyr-l’École marks of Lynx Software Technologies, Inc. is a reg- istered trademark of Linus Torvalds. All other trademarks 408.979.3900 Thames Valley Park France are the trademarks and registered trademarks of their 408.979.3920 fax Reading, RG6 1PT (33) 1 30 85 06 00 respective owners. 1.800.255.5969 [email protected] United Kingdom (33) 1 30 85 06 06 fax www.lynx.com +44 208 906 9506 [email protected] All rights reserved. Printed in the USA. +44 208 906 2338 fax [email protected]