Abstract
In recent years a common trend in the safety-critical industry has been whether or not a general-purpose and open-source operating system like Linux could be employed in safety-critical products and be certified according to standards like ISO26262.
This talk provides a safety integrity qualification approach for Linux composed of Linux Kernel, user space libraries (e.g. libc) and user-space components (e.g. init processes), up to ASIL B according to ISO26262:2018. In this approach, Linux is considered as SEooC within an assumed architecture that provides a set of safety use cases. The safety use cases are handling the Linux kernel safety functionality and assumed technical safety requirements that are created to handle kernel safety hazards.
To ensure the implementation of safety requirements, additional measures for Linux are derived through the incorporation of both avoidance and monitoring mechanisms. These measures can be integrated either within the Linux Kernel or externally around it. By adopting this approach, we can concentrate the qualification effort on specific parts of the Linux kernel or, as much as possible, on external elements, rather than applying the qualification process to the entire kernel.
Speaker Bio
Bryan Huntsman
Bryan Huntsman is Senior Director of Tegra System Software at NVIDIA, leading Linux development for NVIDIA’s AI-powered SoCs. With prior leadership roles at Qualcomm and a board seat at Linaro, he brings deep expertise in embedded systems and open-source collaboration. Bryan’s work bridges upstream innovation and production platforms across automotive, robotics, and next-gen compute.