Safety Certification Challenges

From Xen
Revision as of 11:09, 5 April 2018 by Lars.kurth (talk | contribs) (Lars.kurth moved page Certifications to Safety Certification: Make title clearer)

This page captures the efforts to certify Xen on ARM for ISO 26262 ASIL B. Discussions happen during the regular Xen on ARM Community Calls organized on xen-devel by Stefano Stabellini and Julien Grall.

We have identified the following requirements, all of them need an owner:

  1. Code style requirements, a subset of MISRA
    Next step: find public documents that describe the code style requirements and publish them to xen-devel.
  2. Create a subset of functions that need to go through certifications
    Next step: create a small Kconfig for Xen as a reference, using Renesas Rcar as starting point. Start a discussion on which features we need to have. For instance real time schedulers might be required in some configurations but not all.
  3. Understand how to address dom0: we need a plan for a non-Linux dom0. It looks like FreeRTOS could be a good option.
    Next step: Find out more information about FreeRTOS on Xen. Reach out to people that worked on it (Dornerworks? Galois?).
  4. Create artifacts, such as docs, fault analysis, prove fault tolerance, safety management docs, document development processes.
    Next step: find a company or a certification body that would guide us through the process.