Klein-Winternheim, Germany, November 15th, 2022 – SYSGO has responded to the increased cybersecurity threat level: Separation Kernel PikeOS 5.1.3. has attained the most widely accepted security certification standard Common Criteria (CC), also known as ISO 15408, at level EAL 5+ for the leading application processor architectures ARMv8, x86-64 and PPC. The higher EAL level assures that the PikeOS was designed semiformally and checked against vulnerabilities that are increasingly complex to exploit. System architects and developers of embedded software benefit from this high level of assurance and may have strong certainty in PikeOS’ security measures against sabotage and data theft. Target markets for SYSGO’s real-time operating system and hypervisor PikeOS can be found in any safety and cybersecurity critical devices and infrastructure, especially in avionics, defense, automotive, rail, medical, industrial or space sector.
Typical applications are IoT-connected cars, construction and agricultural machines, trains, airplanes, and drones of any autonomy level – including any automated guided vehicles – as well as connected real-time controls inside the infrastructures of these devices. In Industry 4.0 factories, EAL 5+ certified PikeOS is also used for connected stationary machines – with or without functional safety – as well as for collaborative robots and autonomous logistic vehicles. OEMs deploy CC level EAL 5+certified OSes for example for perimeter protection with trusted functions for access control, digital signature, secure gateway and secure communication but also for zero-trust architectures.
Although PikeOS has a comparatively small code base and thus offers little attack surface, the certified feature set stands out to comparable products. MILS-based (Multiple Independent Levels of Security) PikeOS is the only OS that offers highest certification standards for safety as well as cybersecurity for the same product and the same code base. With its rich security feature base, customers do not only profit from the separation of partitions (spatial and temporal), but also form the controlled information flow, access to control and availability of resources. In addition, intrusion detection, data protection, and any other type of trusted computing are also among the supported features. This makes PikeOS an ideal choice as the foundation for many use cases such as a secure gateway, secure connectivity, over the air (OTA) software updates, data protection or secure routers.
“The PikeOS real-time operating system and hypervisor provide our customers with one of the highest levels of security achievable for embedded operating systems and hypervisor technology. Whether to reinforce the in-depth cybersecurity of embedded systems subject to other constraints like safety, or to leverage on the strong security properties of PikeOS for cybersecurity embedded devices handling various security level of data, PikeOS is a unique choice to accelerate the definition of the security architecture and the compliancy to various security standards. Moving towards cybersecured execution platforms, SYSGO also provide a comprehensive set of additional security features like secure boot, Trusted Execution Environment, Intrusion Detection Systems or Secure routing capability,” said Etienne Butery, CEO of SYSGO.
The Common Criteria (CC) level EAL 5+ compliant certification kit delivered by SYSGO helps reduce security certification time of an embedded device based on PikeOS. Customers can use the artifacts for their certification processes in Avionics DO-356A/ED-203A (Airworthiness Security Methods and Considerations), Automotive (ISO/SAE 21434), Railway (CLC/TS 50701) and Defense.
More information about PikeOS, its new CC EAL 5+ certification and the entire ecosystem including the integrated development environment CODEO can be found at https://www.sysgo.com/pikeos
SYSGO is the leading European manufacturer of embedded software solutions such as the real-time operating system and hypervisor PikeOS and the embedded industrial-grade Linux ELinOS. Since 1991, SYSGO has been supporting customers in the aerospace, automotive, railway and IIoT industries in the development of safety-critical applications. SYSGO was the first company worldwide to achieve an EN50128 SIL4 railway certification for its multi-core capable real-time operating system and hypervisor PikeOS®. The PikeOS® separation kernel version 5.1.3 meets the Common Criteria at EAL 5+ for x86 64-bit, ARMv8, or PowerPC. The current PikeOS version 5.1 is certified according to DO-178C DAL-A, the highest avionic safety level and according to the strictest industry safety standards such as IEC 61508, EN 50128, EN 50657 and ISO 26262, thus enabling application development according to the “Safe & Secure by Design” principle. For industrial embedded systems, SYSGO also offers ELinOS, a Linux distribution with real-time extensions for embedded systems. Furthermore, solutions such as the railway development platform (SAFe-VX) and the Secure Automotive Connectivity Platform (SACoP) for secure data transfer in, with and between automobiles are available.
SYSGO works closely with its customers such as Airbus, Thales, Continental and many more, throughout the entire product life cycle and supports them in the formal certification of software according to international standards for functional and IT security. SYSGO is headquartered in Klein-Winternheim near Frankfurt, has subsidiaries in France and the Czech Republic and maintains a worldwide sales network. The company is ISO 9001:2015 and ISO27001:2017 certified and part of the European Thales Group.
For further information visit https://www.sysgo.com/