MOSAic for Industrial BG -005

LYNX MOSAic for Industrial - PNG 03 - white


LYNX MOSA.ic for Industrial is a software development and integration framework for building robust connected industrial solutions at the mission critical edge. 

  • Choose from various open source, 3rd-party, and real-time operating systems 
  • Leverage hardware virtualization for security, safety, and scalability
  • Rapidly design, develop, and deploy complex connected systems 
  • Mix high and low levels of criticality on a single SoC

LYNX MOSA.ic for Industrial is designed to help system architects address the challenges of bringing the IT and OT worlds together on the factory floor so that machines can make better decisions, more quickly. Introduced in the middle of 2020, it features a bundle of Lynx and 3rd party software technologies and system integrations which have been proven to operate together in a secure, deterministic way.


LYNX MOSA.ic for Industrial – like all LYNX MOSA.ic products – is founded on our secure-by-design, lightweight hypervisor, LynxSecure. At its core, LynxSecure enables simpler software systems by harnessing CPU virtualization to partition systems into components. Simplicity and increased security are achieved by subdividing your chosen hardware platform into smaller compute platforms, eliminating the need for an operating system (OS) or traditional  hypervisor to act as a global resource manager (and single point of failure). A truly distributed, least-privilege architecture, LYNX MOSA.ic is naturally resilient to advanced persistent threats and side channel attacks.


LYNX MOSA.ic™ for Industrial Architecture v5

For additional videos and information regarding the LYNX MOSA.ic for Industrial product — including access to detailed informational videos — please register by filling out the form below.None of your information will be shared with anyone outside of Lynx and we will NOT spam your inbox or flood your voicemail. Expect (1) a confirmation email and password within 1 business day and (2) a follow-up phone call to learn more about your project.


From mission critical embedded systems
to the mission critical edge 

The Mission Critical Edge is born out of the incorporation of requirements typical of embedded computing (security, real-time and safe, deterministic behaviors), into modern networked, virtualized, containerized lifecycle management and data and intelligence rich computing.
This convergence is not easy and is often uncomfortable, it is a clash of cultures and even generations, but is absolutely unavoidable, since physical systems meet the computing and digital world only based on time sensitive exchanges, which need to be predictable to be safe, and should not be exposed to possibly catastrophic cyber-attacks...



Windows compatibility (x86 hardware only)

Access to broad set of proven applications


Direct support for broad range of industry interfaces and equipment to ingest data from legacy equipment

LynxSecure separation kernel

Guaranteed isolation of virtual machines which ensures the behavior of a specific application cannot cause another to crash/misbehave

System immutability

Once system boots, system cannot be reconfigured, which translates to increased system uptime and reliability

Fine-grained system control of hardware resources

Guaranteed real-time determinism of key subsystems, coupled with increased security

Microsoft Azure IoT Edge connectivity

Harness existing cloud services into legacy platforms

Kubernetes orchestration

Provide functionality updates to deployed equipment


3-Dimensional Architecture Comparison

Traditional RTOS platforms vs LYNX MOSAic



LYNX MOSA.ic was announced as a software framework in 2019. It is founded on the LynxSecure® separation kernel hypervisor and enables a number of other Lynx products and third-party products to be combined in a way where applications are given fine grained control over specific CPU and memory resources. In contrast to traditional RTOS platforms, where hardware control, real-time scheduling, security, multimedia, and application runtime services are integrated into a common stack servicing all applications on all CPU cores, LYNX MOSA.ic allows system architects to subdivide systems into smaller, independent stacks which include only the dependencies required. Lynx has used this framework to create specific products for specific applications. 



As a true separation kernel, LynxSecure is often defined by what it isn't, as much as by what it is. With LynxSecure there is no system configuration change after startup. This means no hardware re-mapping, device assignment, memory allocation, or changes to security or scheduling policies. With LynxSecure, the system architect can rely on the following facts:

  • Guest software CPU cycles are guaranteed
  • LynxSecure executable is secure
    • No means to load any app. or modify the LynxSecure executable
    • Guests cannot access LynxSecure memory
    • No shared kernel memory between guests and/or LynxSecure
  • Guest-to-Guest communications are secure
    • Resources and security policies defined at boot
    • User-space, zero copy memory for security-policy enforced guest-guest communications
    • Data does not pass through LynxSecure
  • Communication (using FIFOs, Ethernet or device emulation) between guest operating systems is highly regulated
    • LynxSecure provides a protected, secure channel of communication using a message passing API
    • Message transmission is generally asynchronous and unidirectional for security concerns.
    • The security policy defines the authorized communication between two different guests and can be defined as unidirectional or bi-directional