_______________
13 min read
12 min read
Single Root I/O Virtualization (SR-IOV) -Pt 2- LynxOS-178 10G network benchmarkS
_______________
Single Root I/O Virtualization (SR-IOV) virtualizes network interface cards (NICs) to allow a single NIC to present itself as dozens of virtual NICs to a hypervisor. It is a hardware standard, part of the PCI-SIG (Peripheral Component Interconnect - Special Interest Group) and is heavily used in data centers. It is a key software defined networking (SDN) component that allows data centers to efficiently host internet servers as virtual machines (VMs). SR-IOV provides a pool of hardware virtualized NICs that a cloud computing platform such as OpenStack dynamically assigns to VMs as they are launched. This infrastructure uses Linux orchestration platforms and mainly Linux based enterprise guest OSs.
In our first blog post on the topic (Part I), we saw that the Intel® Atom® C3858 (Denverton) Processor has 4 built-in X550 NICs that present 256 virtual NICs. LynxSecure was used to build a system with 5 Buildroot Linux guests, 4 of which used virtual SR-IOV NICS. This article (Part II), takes the next step and illustrates how to build a system with 3 LynxOS-178 RTOS guests and a Buildroot Linux. LynxSecure is used to assign 14 SR-IOV NICs to the guests before we run benchmarks to measure the overhead of SR-IOV virtual networking. These are high performance 10G bit/sec NICs, so the benchmarks are also an interesting comparison of Linux vs LynxOS-178 networking performance for UDP and TCP at various packet sizes.
Topics: Multicore Safety MCP embedded systems hardware development Single-root IO Virtualization hypervisors virtualization software certifications Virtual Machines 10G Benchmark
10 min read
Who Needs a Hypervisor?
_______________
The standard benefits of a hypervisor are well known and often touted. Every RTOS has its hypervisor and they do genuinely help embedded designers to:
- Partition multicore processors into virtual machines; an elegant way to consolidate OSs
- Isolate guests; to improve security and safety
- Oversubscribe high performance multicore processors; use time slicing to host more OSes than cores
Topics: Multicore Safety CAST-32A Certification MCP embedded systems hardware development hardware interference software certifications DO-178
14 min read
Edge Computing is Here. What's Next?
_______________
Industry 4.0? Edge computing? Call it what you will, the fact remains that our industry moves slowly. Obstacles must be overcome before we can claim that edge computing has evolved from theories and experiments to true industrial deployment. The resolution of the mismatched and (potentially insecure) interface between the worlds of Informational and Operational Technologies (IT and OT) is key to the application of edge computing on a wider scale.
Topics: embedded systems development software
11 min read
What is Cache Coloring and How Does it Work?
_______________
There are substantial challenges in building secure and safe systems on multicore processors (MCPs). Last level cache contention is undoubtedly the largest source of multicore interference, and a significant challenge for real-time systems. Here we discuss a proposed solution, called cache coloring. Opinions on cache coloring are mixed, sometimes extreme, and the implementation can be difficult and risky. This article aims to demystify cache coloring by clarifying exactly how it works. We hope that the example using a real Intel processor and accurate diagrams allows you to grasp cache coloring without getting lost in lines, sets and ways.
Topics: Multicore Safety TC-16/51 CAST-32A Certification MCP embedded systems hardware development hardware interference software certifications DO-178
6 min read
On reference architectures
What is a reference architecture?
The term “architecture” seems to be in ever increasing use in its technological context. As an extrapolation from the construction term that Frank Lloyd Wright would have been familiar with, its definition as the “overall design of a computing system and the logical and physical interrelationships between its components” is intuitively obvious. The fact that the architecture specifies the hardware, software, access methods and protocols used throughout the system comes as a surprise to no-one.
Topics: Multicore Systems Architecture architecture CVEs embedded systems development Open Group Open Standards separation kernel hypervisors virtualization Reference Architecture
4 min read
Intel’s first DO-254 hardware certification evidence – it’s on a MultiCore
WELL DONE, INTEL®!
Over the years I’ve read lots of datasheets. They can sometimes be heavy on marketing buzzwords and prone to sweeping statements that oversell their solutions and gloss over gaps. I read this new Solution Brief from Intel and it stopped me in my tracks. This is the best datasheet I have seen in years. This document lays out the flight safety evidence pack (FSEP) that Intel has created for their Denverton processor. They explain in plain language why the pack was created, for whom and the exact safety standard it applies to. For years Intel have closely guarded their intellectual property which has hampered the use of their processors in aviation. This FSEP overturns that reputation. But there is more: Intel goes further and targets this evidence pack at achieving safety certification of a multi-core processor. Multicore certification is the Holy Grail of the aviation safety industry—a goal everyone is working toward, but at the time of writing, remains unachieved.
5 min read
Conformance vs Compliance – What's in a Word?
Anyone who travels with a laptop soon develops a bittersweet relationship with international power adaptor plugs. Sure, they turn your homeland plug into something that approximates to what’s needed. But we’re all too familiar with the questionable connections, the weight that pulls away from the wall, and the bulk that baulks adjacent sockets. Adaptor plugs do a job, but they’re compromised. Compromise is also a familiar bedfellow for safety critical software development lifecycle is littered with similar compromises. But not all of them are quite so obvious.
25 min read
3 min read
Best Real-Time Operating System (RTOS) Vendors (2020)
_______________
Lynx Software Technologies has built and supported real-time operating systems (RTOSes) since 1988. We have witnessed hardware and embedded software technologies evolve and have supported our customers through the design, development, integration, certification, deployment, and support of software systems across mission-critical applications in avionics, industrial, automotive, medical, and other markets. We talk with many different companies across these markets every year. Over time, we have learned that— depending on the type of system being built—our technologies and products may not always provide the best fit. And that’s OK.
We want you to choose Lynx products because they make the most sense for your project and understanding your options is critical to that process.
It is not uncommon for companies to ask us, "If we were to not use your products, who would you recommend?" Therefore, with our customers in mind—and with a sincere respect to the companies listed below—here is a list of who we regard as our most solid competitors in the safety-critical embedded systems space, in alphabetical order.
Topics: Safety Certification rtos embedded systems real-time Technical Blog
19 min read
What Is A Separation Kernel?
_______________
Having built both separation kernels and real-time operating systems—and supported customers using both across a wide range of industries—we are familiar with the pros and cons of each software technology, as well as their security, safety, reliability, and adaptability impact on complex system designs. Yet despite providing strong security and safety benefits and being the foundation of some of the world’s largest mission-critical systems, separation kernels remain largely unknown and poorly understood. In this article, we hope to:
- Bring some clarity to the topic of separation kernels vs. real-time operating systems (RTOSes) and embedded hypervisors
- Discuss the benefits and drawbacks of using a separation kernel as the software foundation of your embedded systems design
- Introduce LynxSecure®, our own separation kernel
Topics: Safety Certification MCP Least Privilege Systems Architecture Security Trusted Codebase architecture linux rtos embedded systems hardware vulnerabilities development real-time LynxSecure separation kernel hypervisors virtualization
3 min read
4 min read
TC-16/51: Adding Bottom Up Interference Analysis for MCPs
_______________
I hadn't heard of "bottom up" avionics certification before I read FAA's TC-16/51. But now, looking back at it, I think the authors from Thales Avionics, including Xavier Jean, PhD, proposed a big change in perspective. In their own words, here's their proposal to add "bottom up" analysis to aircraft safety certifications on Multi-Core Processors (MCP):
Topics: Multi-core Avionics FAA Safety TC-16/51 CAST-32A Certification MCP Systems Architecture rtos embedded systems partitioning hardware development real-time Technical Blog
20 min read
What Are the Problems with Embedded Linux?
_______________
Topics: linux embedded linux rtos embedded systems development
5 min read
Lynx & ENSCO Demonstrate Avionics Solutions at DSEI JAPAN 2019
_______________
The most formidable challenges of modern avionics development programs are often centered around the safety certification process and the corresponding requirements and costs. Equally as challenging to any large development program are the design and implementation phases where the software application comes to life as it is realized on the target system environment. These phases can be compromised by:
Topics: Multi-core Avionics Demo Lynx MOSA.ic™ FAA Safety Certification MCP Systems Architecture embedded systems development real-time
7 min read
Overarching Properties: An Alternative to DO-178
_______________
Overarching Properties—an alternative design assurance approach to DO-178C—marks the biggest change in airborne software safety certification since DO-178B was unveiled in 1992. Intended to be more efficient and flexible than DO-178C, the approach was introduced as DO-178C and the Overarching Properties Initiative during FAA Chief Scientist George Romanski’s keynote address at the High Integrity Software Conference in Bristol, United Kingdom (UK).
Topics: Avionics FAA Safety Certification
20 min read
What Are the Most Popular Real-Time Operating Systems?
WHO ARE WE?
Lynx Software Technologies has built and supported real-time operating systems (RTOSes) since 1988. We have witnessed hardware and embedded software technologies evolve and have supported our customers through the design, development, integration, certification, deployment, and support of software systems across mission-critical applications in AVIONICS, INDUSTRIAL, AUTOMOTIVE, UNMANNED SYSTEMS, DEFENSE, SECURE LAPTOPS, CRITICAL INFRASTRUCTURE, and other markets.
Topics: Multicore linux rtos embedded systems development real-time
20 min read
Do You Need a Real-Time Operating System?
_______________
Do Real-Time Operating Systems (RTOSes) consistently provide the most effective platform for realizing your embedded software system design? Most RTOS vendors seem to think so, frequently citing RTOS benefits while rarely discussing the disadvantages. Too often, the question "Do You Need an RTOS?" is interpreted, "Which RTOS Do You Need?"
Topics: Multicore Systems Architecture rtos embedded systems development real-time
9 min read
Embedded Best Practices at Arm Tech-con
_______________
Lynx participated in this year’s Arm TechCon with a booth in the expo hall, where we demoed Lynx MOSA.ic and its components — LynxSecure®, Buildroot Linux, LynxOS-178®, and Lynx Simple Applications (which are bare-metal apps). It was great to see people walk down the hallways and stop in the aisle to examine the Automotive demo and Industrial demos.
The concepts behind the demos apply across multiple industries and use cases; we simply chose to highlight these concepts in the context of these two markets for the purpose of putting together the demos. For more information on the Automotive demo, you can read Chris Barlow's blog post. Below you can see a close-up of the architectural graphic shown on the notebook’s screen:
Topics: Demo Multicore Safety MCP Least Privilege Systems Architecture Arm Tech Con Security Trusted Codebase embedded systems partitioning privilege escalation development real-time Technical Blog
16 min read
How to Choose a Real-Time Operating System
_______________
Choosing an RTOS is not as simple as choosing a car. We know about cars; we know their strengths and weaknesses and we intuitively understand compromises like performance vs practicality or luxury vs price. We see all kinds of vehicles on the road, so the range of available cars is obvious. When choosing an RTOS, the middle ground is crowded—dozens of general-purpose RTOSes with broadly similar characteristics compete. They all have a scheduler, services, libraries, middleware, technical support, and graphical tools. Any one of them could genuinely do a good job and so choosing between them is a mixture of quantitative metrics (like features and price) and qualitative measures (like past-experience, personal-preference, and reputation).
Topics: Multi-core Avionics Lynx MOSA.ic™ Multicore Safety MCP Systems Architecture Security linux embedded linux rtos embedded systems development real-time
11 min read
What Are POSIX Processes and Virtual Memory?
_______________
Topics: embedded systems development POSIX®
6 min read
Realizing modern Automotive Software Environments
_______________
The complexity of today’s automobiles is increasing with every new model on the market. A modern car can contain hundreds of electronic control units and with connectivity and autonomy becoming commonplace, this is increasing dramatically as we enter the 2020s. Many of these systems up until a few years ago have safely run on microcontrollers on an unsecured vehicle network, and this has been fine; the networks were ‘air-gapped’ from the rest of the world, and the risk of a malicious attacker causing any kind of danger to a car’s occupants by directly plugging in a new device was as likely as someone cutting the brake lines. The automotive industry on the whole were happy with this risk.
Topics: Multi-core Demo Lynx MOSA.ic™ Safety Certification MCP Systems Architecture rtos embedded systems partitioning development real-time Technical Blog Automotive
6 min read
3 min read
Multi-core cache allocation technology (CAT) demo
_______________
This week saw LYNX’s cache partitioning feature for Lynx MOSA.ic™ demonstrated for the first time at the Collins Aerospace Embedded Computing Conference in Cedar Rapids, Iowa. Cache partitioning is a new feature of Lynx MOSA.ic™ released in September 2019 and based on Intel’s Cache Allocation Technology (CAT) CPU hardware feature.
Topics: Multi-core Avionics Demo Cache-partitioning Lynx MOSA.ic™ Cache Allocation Technology embedded systems partitioning development Technical Blog
12 min read
What is the Cost of a Board Support Package?
_______________
Topics: Multicore Certification MCP embedded systems TCO hardware development BSPs board support costs
4 min read
Field Notes: Sept 2019 Face™ TIM
_______________
Last week I was able to spend several days at the Open Group Future Airborne Capability Environment (FACE™) Technical Interchange Meeting (TIM) and consortium meetings. For those who are not familiar with either the Open Group or FACE™, the Open Group is a global consortium of hundreds of tool vendors, systems integrators, academics, researchers, and consultants aimed at developing open, vendor-neutral technology standards and certifications for various industries, including Defense & Aerospace.
Topics: Multi-core Avionics Future Airborne Capabilities Environment (FACE™) FACE TIM Technical Blog Open Group Open Systems Open Standards Standards
9 min read
What Are the Benefits of POSIX for Embedded Systems?
_______________
Lynx Software Technologies is committed to open standards. POSIX®—an open standard based on UNIX operating systems and their APIs—brings a powerful set of features and capabilities to the table for embedded application development, resulting in benefits to software vendors such as ourselves as well as to our customers. The following list is a brief set of answers to the question “What are the benefits of POSIX” to our customers—the builders of complex safety- and security-critical embedded software systems.
Topics: embedded systems TCO TTM development POSIX®
4 min read
What is a Reusable Software Component?
_______________
A DO-178B/C Reusable Software Component (RSC) is a software collection that is recognized as meeting the requirements of RTCA/DO-178B/C and that may be used on more than one project without having to regenerate certification artifacts.
The FAA grants RSC acceptance as part of a normal certification process, provided that the applicant complies with the guidance policy defined in FAA Advisory Circular AC 20-148. The acceptance allows future users of the DO-178B/C RSC to deploy the software without the added cost and risk of re-certification. This applies to components such as operating systems and networking protocols, that can then be reused (in unadulterated form) across hardware platforms.
Topics: Avionics Multicore FAA Safety Certification MCP Trusted Codebase architecture rtos embedded systems TCO TTM partitioning development real-time POSIX® costs rsc reusable software
8 min read
CAST-32A: Significance and Implications
_______________
CAST-32A presents the coordinated position of avionics certification authorities regarding Multi-Core Processors (MCPs). While today’s aerospace ecosystem could benefit from the use of MCPs, before CAST-32A was published, FAA/EASA had not yet devised a means to obtain certification credit for safety-critical software deployed to an MCP. Toward that end, the CAST-32A position paper identifies topics of concern that could impact the safety, performance, and integrity of DO-178C aviation software deployed to MCP(s). For each topic, the paper provides a rationale that explains why these topics are of concern and proposes objectives to address the concern. (CAST-32A, “Purpose”, p. 3)
