THE LINUX FOUNDATION PROJECTS
Category

Blog

Aug 01

Watch Now: Safety-Critical Software Summit Videos @ OSSummit NA

By Blog, Safety-Critical Software Summit

Open Source Summit North America, which happened on June 23-25 in  Denver, Colorado, had a total of 1,535 in-person attendees (47% hold technical positions) that represented 732 organizations. This year’s event featured vibrant conversations in the Safety-Critical Software track, sponsored by ELISA Project member Honda.

Safety-critical systems — whether in automotive, industrial, medical, or aerospace — are increasingly adopting open source technologies. The sessions in this dedicated track tackled real-world challenges and shared solutions around functional safety, tool qualification, compliance, and certifiability of open source software.

Highlights included:

  • Panel discussions on bridging the gap between open source innovation and safety assurance

  • Technical deep dives into applying safety analysis methods to Linux-based systems

  • Case studies from the ELISA Project working groups showcasing progress in automotive, medical, and industrial domains

The videos can be found on the Open Source Summit North America playlist on the ELISA Project YouTube channel.

Many thanks to all the ELISA Project contributors and collaborators who presented, facilitated hallway conversations, and helped guide newcomers through the complexities of using Linux in safety-critical environments including: Stefano Stabellini (AMD), Carolyn Zech (Amazon Web Services (AWS)), Philipp Ahmann (ETAS), Gabriele Paolini (Red Hat), Rinat Shagisultanov and Troy Sabin (InfoMagnus), Hasan Yasar (Software Engineering Institute | Carnegie Mellon University), Chuck Wolber (The Boeing Company), Kate Stewart (The Linux Foundation), Masato Endo (Toyota Motor Corporation) and Wolfgang Gehring, (Mercedes Benz Tech Innovation).

Community Momentum

The Safety-Critical Software track continues to grow — a reflection of the increasing demand for transparent, collaborative development in safety-focused industries. With representatives from leading companies, standards bodies, and the open source community, the track served as a bridge between traditionally siloed sectors.

This momentum builds on ELISA’s mission: to make it easier for developers and companies to build and certify Linux-based safety applications by providing guidance, tools, and domain-specific working groups.

What’s Next?

We’re excited to continue the conversations sparked at OSSummit through our public working groups, monthly meetings and upcoming events. Join the ELISA Project at Open Source Summit Europe, happening on August 25-27 in Amsterdam, at the Safety-Critical Software Summit. Check out the schedule or visit the ELISA Project ambassadors and leaders at the booth #29. Learn more here.

Learn more about the conference or register for it at the main Open Source Summit Europe page.

For more ELISA Project updates, subscribe to the LinkedIn page, Youtube Channel or join the community on our new Discord channel!

Jul 16

ELISA Community is Moving to Discord

By Blog

We are excited to announce that the ELISA Project now has a Discord server available for our community to engage in real-time conversations, complementing our existing mailing lists.

Why Discord?

In recent years, more open source communities have made the move to Discord. Projects under the Linux Foundation such as Zephyr, LF Decentralized Trust, and Dronecode have launched thriving servers that support everything from casual discussion to working group coordination. Discord allows us to organize conversations into dedicated channels by topic, which makes collaboration more focused and efficient. While it is primarily a text-based platform, it also supports high-quality voice and video calls. This gives us the flexibility to host spontaneous or scheduled meetings whenever needed.

The move to Discord comes directly from community feedback. Several contributors such as those participating in Linux Features WG and the BASIL project and those involved in newer efforts like the Space Grade Linux SIG — voiced the need for a faster, more flexible space to collaborate. Email still plays a role for formal updates, but Discord offers a lower barrier for discussion, questions, and real time problem solving. We believe this new space will help us move faster and work more openly.

What can you expect from the ELISA Discord server

The server is organized around how our community works. Each Working Group, SIG, and project like BASIL has its own dedicated channel to keep discussions focused. We will post announcements, event details, and major project updates here, alongside regular activity from contributors.

This is also a space for informal conversations. You can ask questions, share early ideas, or just connect with other members of the community. Whether you are contributing to the kernel or simply exploring safety-critical Linux, you will find others here ready to collaborate.

The server has a basic set of community rules to help keep things respectful and productive. You will be asked to accept these when you join. Moderators are available to help with questions and to ensure the server stays welcoming and useful.

How to join

Joining is easy:

  1. Visit https://chat.elisa.tech/
  2. Click Accept Invite
  3. Review and accept the server rules.
  4. You’re In. Start exploring channels and join the conversation.
Jul 09
ELISA project at the Open source summit, Europe 2025

ELISA Project at Open Source Summit Europe 2025

By Blog, Industry Conference, Safety-Critical Software Summit

Open Source Summit is the premier event for open source developers, technologists, and community leaders to collaborate, share information, solve problems, and gain knowledge, furthering open source innovation and ensuring a sustainable open source ecosystem. It is the gathering place for open-source code and community contributors.

Why Attend

  • Connect with the people shaping open source
  • Learn from maintainers, architects, and industry leaders
  • Discover new technologies and real-world solutions
  • Collaborate on ideas that move projects forward
  • Grow your skills, your network, and your career

ELISA Project at OSS Europe

We are excited to announce that the ELISA (Enabling Linux in Safety Applications) Project will be participating in the upcoming Open Source Summit Europe, taking place August 25-27, 2025 in Amsterdam, Netherlands.

As a proud Bronze Sponsor of this year’s event, ELISA will also be part of the Safety-Critical Software Summit, one of the focused tracks within Open Source Summit Europe

This is a key opportunity to connect with developers, system architects, functional safety experts, and open source contributors working at the intersection of Linux and safety-critical systems.

What to Expect from ELISA Project at Open Source Summit Europe?

Yes, we have a booth and we would love to see you there!
Stop by Booth #29 to:

  • Learn more about ELISA’s mission and progress
  • See how Linux can support safety-critical systems across industries
  • Explore tools, processes, and working group initiatives
  • Check out live demos
  • Meet with project members, contributors and users
  • Pick up your favourite ELISA branded giveaways

And if you have been following ELISA for a while, you may have noticed we have refreshed our logo!
Come by the booth to grab special edition stickers and updated designs featuring the new logo. Quantities are limited, so be sure to stop by early!

Whether you are in automotive, industrial, medical, or another safety-focused domain, this is a great opportunity to ask questions and see how ELISA might support your work.

ELISA Talks and Sessions

The ELISA Project will also be featured in the Safety Critical Software track sessions. You can find the full schedule information here.

This track explores the intersection of open source and safety standards, covering best practices for regulatory compliance, security updates, and safety engineering. Sessions will delve into requirements traceability, quality assessments, safety analysis methodologies, and technical development for safety-critical systems.

Join the ELISA Community

If you are interested in functional safety or contributing to the project, we would love to have you involved. Learn more.

👋 See You in Amsterdam

The ELISA Project is proud to be part of Open Source Summit Europe 2025 and the growing conversation around safety-critical open source systems. From booth activities to in-depth technical talks, this is a great opportunity to learn, connect, and collaborate.

Don’t forget to stop by Booth #29, attend our talks at the Safety-Critical Software Summit, and meet the people behind the project.

We look forward to seeing you in Amsterdam!

Jul 09
Arduino Portenta X8 as a Community Reference Hardware for Safe Systems – Highlights from the ELISA Project Workshop

Arduino Portenta X8 as a Community Reference Hardware for Safe Systems – Highlights from the ELISA Project Workshop

By Blog, Workshop

At the ELISA Project Workshop held May 7-9, 2025, in Lund, Sweden, co-hosted with Volvo Cars, Arduino co-founder and Head of Research at Malmö University, David Cuartielles shared an insightful session on using the Portenta X8 as a reference hardware platform for building safe and secure embedded Linux systems.

In his presentation, David walked through Arduino’s journey into Linux-capable hardware, the motivations behind creating the Portenta X8, and how it came to be through European-funded research projects. With industrial-grade capabilities, real-time microcontroller support, and built-in fleet management, the Portenta X8 stands out as a robust platform for prototyping secure and sustainable embedded Linux systems.

David also shared his insights into sustainability challenges in hardware manufacturing, highlighting Arduino’s ongoing research into biocompatible PCBs using PLA-flax substrates. The talk offers insights into balancing innovation with ecological responsibility, and how that might impact Linux-compatible hardware in the future.

To learn more, watch the session here. Slides available here.

Jun 11
ELISA Project workshop 2025 - Lund, Sweden

Recap of the ELISA Project Workshop 2025: Lund, Sweden

By Blog, Workshop

The ELISA Project’s workshop in Lund, Sweden brought together project members, contributors, and ecosystem partners for three days of focused collaboration and planning. From May 7 – 9, attendees convened at the Volvo Cars Lund Office to advance safety-critical Linux development and map out future goals.

On the afternoon of May 7, the workshop kicked off with welcome note by Philipp Ahmann (ETAS GmbH), Kate Stewart (Linux Foundation), and Robert Fekete (Volvo Cars), followed by an “Ask Me Anything” panel on ELISA and OSS safety applications featuring Philipp Ahmann and Gabriele Paoloni (Red Hat). David Cuartielles then demonstrated the Arduino Portenta X8 as community reference hardware for safe systems, and a cross-community case study highlighted collaboration with AGL, Eclipse S-Core, KernelCI, Xen, Zephyr, and more. The day closed with discussions on ELISA’s interaction with adjacent communities including Eclipse, Linaro, Rust, SPDX, and Yocto before an offsite dinner at Stäket.

Day 2 began with a comparison of Safety Linux vs. Safe(ty) Linux led by Philipp Ahmann and Paul Albertella (Codethink). Olivier Charrier (Wind River) and Alessandro Carminati (Red Hat) then explored hardware-level integration in the Linux kernel. After lunch, a series of special topics covered PX4Space (Pedro Roque, KTH), SPDX Safety Profile (Nicole Pappler, AlektoMetis), Safe Continuous Deployment (Håkan Sivencrona, Volvo Cars), and Resilient Safety Analysis (Igor Stoppa, NVIDIA). The afternoon sessions on KernelCI, BASIL & Testing (Luigi Pellecchia, Gustavo Padovan) and Requirements Traceability (Kate Stewart, Gabriele Paoloni) concluded with an engaging networking session.

On the morning of May 9, attendees discussed the Trustable Software Framework (Paul Albertella, Daniel Krippner) and examined Rust’s role in safety-critical applications. The final session on Best Practices Standard, presented by Philipp Ahmann, Gabriele Paoloni, and Olivier Charrier, distilled key takeaways and action items for ELISA’s roadmap. The workshop ended with stronger community connections and a clear plan for the project’s next steps.

We extend our thanks to Volvo Cars Lund for hosting, to all speakers and participants for their insights, and to the ELISA Project community for making this gathering a success. 

Videos from the workshop are now available on the YouTube channel of the ELISA Project. Watch the full playlist here.

Slides can be accessed here at the ELISA Project directory.

Keep an eye out for details on the next in-person workshop and virtual participation options here!

May 28

Criteria and Process for Evaluating Open-Source Documentation

By Ambassadors, Blog, Seminar Series

As the open source and safety (and security) communities collaborate more closely, there’s an opportunity to build trust by showcasing how open source development aligns with key safety principles. As part of the ELISA Seminar series, Pete Brink, Principal Consultant at UL Solutions and ELISA Project ambassador, recently presented the process designed to adapt to a variety of projects and contexts, including evaluation criteria.

This video aims to introduce a flexible, practical framework for evaluating documentation that supports trustworthiness in development practices. The goal is to empower teams to highlight their commitment to quality and safety in a way that works for them. Watch here:


The ELISA Seminar Series focuses on hot topics related to ELISA’s mission to define and maintain a common set of elements, processes and tools that can be incorporated into Linux-based, safety-critical systems amenable to safety certification. Speakers are members, contributors and thought leaders from the ELISA Project and surrounding communities. Each seminar comprises a 45-minute presentation and a 15-minute Q&A, and it’s free to attend. You can watch all videos on the ELISA Project Youtube Channel ELISA Seminar Series Playlist here.

For more ELISA Project updates, subscribe to @ProjectElisa or our LinkedIn page or our Youtube Channel.

May 21

How open projects rethink safety culture

By Blog, Workshop

Written by Paul Albertella, ELISA Project TSC member, Chair for Open Source Engineering Process Working Group and Consultant at Codethink

This blog originally ran on the Codethink website. For more content like this, click here.

In 2016, Codethink started out on a journey to discover how open source software can be safely used to build safety-critical systems — that is, in products where people might be harmed if the software fails to do its job correctly.

Free / libre open source software (FLOSS) projects like Linux have clearly demonstrated the value of collaboration in public when creating software that is — amongst many other things — trusted as the backbone of the web and millions of smart phones. FLOSS projects have also established the essential role of transparency and rapid software updates in dealing with cybersecurity threats. When it comes to safety, however, the difficulties of making a case for using FLOSS in a solution have long been a frustrating obstacle for product developers.

Immediately following Codethink’s announcement about our latest milestone in this journey, I took part in two workshops focussing on safety and open source. This gave me the opportunity to talk about the Trustable Software Framework (TSF) and how we are using it in our development of CTRL OS. I also learnt more from other open source projects about their approaches to creating software where trustability is as important.

The workshops were hosted by Volvo Cars in the Swedish city of Lund, and our hosts also provided several enthusiastic participants. The events were organised by two open source projects that have common goals and challenges, but approach these from different perspectives and with different focuses. The Eclipse SDV project aims to build an automotive software stack to provide “an open technology platform for the software-defined vehicle of the future”. In contrast, the ELISA project is concerned with the use of Linux-based operating systems for safety applications in a range of different domains.

Image of Lund University Library

Day 1

Markus Bechter from BMW started the Eclipse SDV workshop by describing the approach to safety being developed for the Eclipse S-CORE or Safe Open Vehicle Core project. The intent is to establish a common set of development processes for components of this project, making the software amenable to safety certification using the ISO 26262 Automotive Safety Standard.

The Trustable Software Framework project was recently accepted into the Eclipse Foundation, so I gave the next presentation. TSF approaches the challenge of using FLOSS in safety more broadly: how can we make a case for using software that has not been developed following a process that conforms to an applicable safety standard? Since this describes the vast majority of existing FLOSS, including many of the tools and dependencies that S-CORE plans to use, an answer to this question is sorely needed, and TSF provides a methodology for making such a case.

After lunch, it was time to welcome a new set of participants and start the ELISA workshop. This began with an introduction to the project for newcomers (see my retrospective from last year’s workshop if you are also new to the project), followed by an Ask Me Anything discussion. Then we had a fascinating talk from David Cuartielles, a founder of the Arduino project who was recently honoured in the European Open Source Awards. After telling us about the latest Arduino (the Portenta x8) and the features of the boards that are relevant for trust, he went on to talk about a topic that he is passionate about: the DESIRE4EU project, which is exploring how to make printed circuit boards that are recyclable, in support of the European sustainable electronics goal.

The rest of the day focussed on the efforts of the ELISA Systems working group to describe and build systems involving Linux in combination with two other FLOSS components: the Zephyr RTOS and the Xen Hypervisor. This led naturally into a discussion of ELISA’s interactions with other adjacent open source communities.

Image of a presentation

Day 2

Philipp Ahmann and I started the second day with a discussion exploring some common misapprehensions about Linux and safety. We talked about some of the ‘routes’ to certification in the safety standards for pre-existing software, and why these are difficult to apply to open source software. We also explained why the notion of creating a ‘safe’ Linux is misleading, because safety can only really be understood in terms of a system, as opposed to an intrinsic property of a component. This led into discussions of various system models involving Linux, the use of complete redundant systems as part of a larger system design, and the role of hardware components in this, which was a perfect segue to the next session.

Olivier Charrier talked about the role of hardware integration in safety, describing how the responsibilities for achieving specific safety objectives as part of a system design are typically assigned to hardware and software components, and then refined or re-defined in a series of iterations to address the identified gaps. Alessandro Carminati then shared the results of a Linux Features working group investigation to build and analyse a minimal Linux configuration and identify a core set of features that must be considered for any Linux-based system.

After lunch we had a series of ‘special topic’ talks, beginning with interesting talks on PX4SPace — a flight control solution for drones that is being used to build robotic space vehicle solutions — and the SPDX Safety Profile, which extends the SPDX 3.0 ‘knowledge graph’ to include metadata relating to development processes for safety.

Håkan Sivencrona from Volvo then talked about Safe Continuous Deployment, emphasising the importance of building development processes that deliver an ongoing stream of ‘safe’ software deliveries using DevOps principles, not just one ‘blessed’ release that is never expected to change. Igor Stoppa’s talk on “Resilient Safety Analysis and Qualification” sparked a lively discussion, as he argued that any safety analysis of Linux must be based on a detailed understanding of the code, and that this might be a reason not to rely on more complex features or extensions of the kernel.

We then had a talk by Gustavo Padovan of the Kernel CI project, which recently became an associate member of ELISA. He explained that a key goal of the project is to enable projects and organisations testing the kernel to share their results with the wider kernel community by providing a common framework for reporting results. Recent developments include kci.dev, a command line tool enabling developers and maintainers to interact with Kernel CI, and a YAML config file format to enable Linux subsystems to share tailored test case executions for maintainers and the wider community.

The rest of the day focussed on requirements management and traceability, looking first at ELISA’s BASIL tool, and then at an initiative with the Linux Tracing subsystem to develop a low-level requirements specification approach. The latter involved documenting detailed requirements for each function in the kernel, which would be intended to support complete reimplementation of the functionality without reference to the code. One participant noted that this approach might enable the kernel to be re-written in Rust!

Image of a street lamp in Lund

Day 3

I kicked off the last day by reprising my presentation about the TSF from the Eclipse workshop for the ELISA attendees. Once again, the enthusiastic engagement and insightful questions from the participants were very gratifying, and Daniel Krippner helped to illustrate how the framework may be applied in practice by talking through his use of it as part of the Eclipse uProtocol project. Daniel and I followed this with a quick discussion of how Rust is becoming increasingly relevant in the safety sphere, and how this may be relevant for ELISA.

The workshop wrapped up with a discussion on the Open Source Best Practices Standard, an initiative that was launched earlier this year. It included a live survey collecting input from the audience about their awareness of existing standards and suggestions for projects to be considered for examples of best practices.

Key Takeaways

I’ve attended numerous ELISA workshops since the first one in 2019, and it was wonderful to note how many passionate and enthusiastic newcomers we had attending this time. We also had participants from a variety of different backgrounds, including academics from the local university and engineers from the rail, medical and aeronautics industries, as well as the always-prevalent automotive specialists.

ELISA’s increasing engagement with other open source communities, including those from the Eclipse Foundation and Linux Foundation projects, is also good to see. The growing interest in safety-related topics in these communities, building on the already well-established awareness of cybersecurity topics, is also encouraging. After the enthusiastic reception that my talks had last week, I am hopeful that the Trustable Software Framework can help to continue this trend, giving all open source projects a way to start engaging with these topics and to share their thinking and strategies for building trust with other projects and communities.

Stay tuned here for links to the videos and presentations.

Additional Resources:

May 14

Automated Testing Summit (ATS) 2025

By Blog, Industry Conference

In March, the ELISA Project welcomed KernelCI, a community-based open source distributed test automation system focused on building a collaborative ecosystem around upstream kernel development, to our ecosystem. The primary goal of KernelCI is to use an open testing philosophy to ensure the quality, stability and long-term maintenance of the Linux kernel. The Project is currently working on improved LTS kernel testing and validation; consolidation of existing testing initiatives; quality-of-life improvements to the current service; expanded compute resources; and increased pool of hardware to be tested. Learn more about why they joined the project here.

KernelCI will be hosting the Automated Testing Summit (ATS) 2025 on Thursday, June 26 from 9 am – 5 pm in Denver, Colorado, as part of  Open Source Summit North America. The Automated Testing Summit is a technical conference focused on the key challenges, tools, and infrastructure involved in testing and quality assurance for the Linux ecosystem — with an emphasis on upstream kernel development, embedded systems, cloud environments and CI integration.

Modern software stacks grow increasingly complex and heterogeneous. Ensuring their stability requires scalable, reproducible, and automated testing solutions that can operate across diverse hardware platforms, kernel versions, and integration layers. ATS brings together engineers working on KernelCI, test frameworks, lab automation, CI/CD pipelines, fuzzing, performance analysis, and more.

The event is a platform for in-depth technical talks, demos, and collaboration sessions that tackle real-world problems in automated testing. Topics range from designing interoperable systems for sharing test results, to debugging kernel regressions across distributed hardware labs.

ATS is currently accepting speaking proposals. Submit a proposal here by Sunday, May 18.

How to Register: Pre-registration is required.

To register to attend in-person at Automated Testing Summit 2025, add it to your Open Source Summit North America registration.

To register to attend virtually, please register here.

 

Apr 09

New Initiative Seeks to Establish Open Source Software Best Practices Standard

By Blog, Industry Partners, Linux Foundation, News

In an era of rapid digital transformation, open source software has become the backbone of technological innovation across industries. The Linux Foundation Europe is proud to partner with Enabling Linux in Safety Applications (ELISA) Project to support an initiative, aimed at addressing a critical challenge in the software ecosystem. As the demand for open source software into regulated and safety-critical systems increases (e.g. in aerospace, automotive, and medical industries), the need for a robust, standardized approach to evaluate its quality and security has never been more urgent. This initiative promises to reshape how we assess and integrate open source software into mission-critical environments. Learn more in this blog article authored by Philipp Ahmann (ETAS GmbH) and Gabriele Paoloni (Red Hat).

An innovative new project is underway to establish a standardized approach for evaluating the quality and security of open source software (OSS). The increasing reliance on OSS in regulated and standards-driven sectors (like aerospace, automotive, and medical industries ) necessitates a robust framework for determining OSS trustworthiness. This project aims towards just this.

Current quality standards are often inadequate to the unique development processes of OSS, creating a significant barrier to the adoption of OSS in regulated industries.

This initiative will address this gap by:

  1. analyzing existing OSS development practices
  2. identifying key performance indicators (KPIs), and
  3. creating a framework to evaluate how well OSS projects align in front of the objectives safety & security standards as well as regulations.

The evaluation will be based on the project’s (open source) development practices.  Such a framework will be crucial for both quality management demanded by safety standards and the growing requests on software quality of cyber-resilience regulations (such as the Cybersecurity Resilience Act – CRA). The resulting standard will also support initiatives aimed at increasing the security and reliability of open-source operating systems.

Your Input is Crucial

To ensure this project accurately reflects the needs and realities of the OSS community, and the demands of regulated industries, we invite you to participate in a short survey. Your feedback will directly influence the development of this vital new standard. The survey will cover various aspects of OSS development, focusing on both safety and security, aiming to identify best practices and establish measurable KPIs. The deadline to submit your feedback is May 31, 2025.

About the Project:

The goal of this project is to evaluate and document established open source development best practices and to provide an assessment guide for the user to rate the quality of open source projects. This increases trust in open source software for the adoption in regulated industries, e.g. for safety critical systems.

image2-2

This shall be achieved via 3 project phases:

  • Phase 1: Analyzing existing literature, OSS projects, and relevant standards, including emerging cyber-resilience frameworks.
  • Phase 2: Defining a framework of OSS good practices and KPIs for both safety and security.
  • Phase 3: Testing and refining the framework through pilot projects.

The project welcomes collaboration with academia, public sector organizations, OSS communities, foundations, and industry leaders across various sectors. By working together, we can create a quality standard that provides means to demonstrate the technical and process capabilities of OSS projects, enabling their adoption within a company-specific development framework for safety-critical and cyber-resilient systems, thereby paving the way for innovation while upholding the highest levels of safety and security.

SUPPORTING QUOTES:

While e.g. the European Commission and Japanese government are right starting to champion open source for software-defined vehicles (SDVs), a clear path to integrating OSS with existing automotive standards is crucial for realizing its full potential. ETAS  is committed to bridging this gap, ensuring that open source initiatives drive innovation without compromising safety, reliability, or established industry practices. We believe this approach is essential for fostering true digital sovereignty and competitiveness within the automotive sector. – Philipp Ahmann, Sr. OSS Community Manager at ETAS GmbH

As indicated above, there is an increasing usage of OSS in regulated and standards-driven sectors. Setting up a convergence between the OSS quality and security processes with regulations and standards definitions becomes a must and this activity needs to take place on both sides of the equation to find an agreement. The project initiative described here would be the OSS part, matching the regulatory part also started in the different sectors, like the new revision of the ISO-26262 with the introduction of the ISO/PAS 8926 for the Automotive sector, and the EUROCAE WG-117 SG-2 related to “COTS, Open Source and Service History” for the Avionics sector. – Olivier Charrier, Principal Technologist – Functional Safety at Wind River Systems

With open source as the basis for every commercial product offering, Red Hat is invested in the quality and security of related open source software. This investment is substantiated by all Red Hat customers’ success stories, including but not limited to, deployments of Red Hat products into mission critical systems (such as finance, defense, telco and space industries). For this reason Red Hat fully supports this project and is looking forward to having an innovative and suitable approach to rate open source software quality; thus aiming to accelerate and simplify OSS evaluation for use in mission-critical systems or regulated industries. – Gabriele Paoloni, Sr PE | Open Source Community Technical Leader at Red Hat

Apr 03

Schedule for Safety-Critical Software 2025 Now Live

By Announcement, Blog, Safety-Critical Software Summit

Open Source Summit North America, happening on June 23-25 in Denver, Colorado, is the premier event for open source developers, technologists, and community leaders to collaborate, share information, solve problems, and gain knowledge, furthering open source innovation and ensuring a sustainable open source ecosystem. It is the gathering place for open-source code and community contributors. One of the tracks includes, Safety-Critical Software, which will feature several ELISA-project related sessions.

The Safety-Critical Software track will take place on Wednesday, June 25. It explores the intersection of open source and safety standards, covering best practices for regulatory compliance, security updates, and safety engineering. Check out the sessions below, which dive into requirements traceability, quality assessments, safety analysis methodologies, and technical development for safety-critical systems.

11 – 11:40 am: The Xen Safety Concept, a Major Milestone Toward Certification – Stefano Stabellini, AMD

Over the past decade, the Xen community has worked tirelessly to develop key features that now form a top-tier automotive solution. Xen’s most important role remains that of an enforcer, ensuring strict isolation between domains so that the execution of one domain remains unaffected by others. As one of the system’s most critical components, Xen is well suited for the highest levels of safety certification.

Since 2023, AMD, in collaboration with the Xen community, has been working to make Xen safety-certifiable according to the ISO 26262 and IEC 61508 safety standards. A major milestone was achieved in Q4 2024 when we obtained Safety Concept Approval from the safety assessors. They reviewed Xen and our safety plans and confirmed compliance with the relevant standards. This is a critical milestone on the road to Xen safety, demonstrating that Xen can be safety-certified.

This presentation will provide detailed insights into the Safety Concept, the activities involved in its development, and the review process. Additionally, it will offer an in-depth update on our journey toward achieving Xen safety certification.

11:55-12:30 pm:  Verifying the Rust Standard Library – Rahul Kumar, Amazon Web Services

The Rust programming language is experiencing rapid adoption in critical infrastructure and systems programming, propelled by its memory safety guarantees and developer productivity advantages. Significant technology policies, such as the US National Cyber Strategy, explicitly endorse Rust as a pathway to memory-safe software. Unsafe code blocks, however, can circumvent Rust’s compile-time guarantees. To address this disparity, AWS has collaborated with the Rust Foundation on the Rust Standard Library Verification project, whose objective is to formally verify the safety of the Rust standard library. We are actively integrating automated verification into the Rust Library release process, thereby ensuring continuous safety validation across releases.

Our presentation will elucidate the structural framework and rationale underpinning our verification contest. We will demonstrate our current progress, showcasing successful verification examples and discussing the diverse open-source tools employed in the verification process. We will conclude with our prioritized areas for 2025 and practical ways for the Rust community to actively participate in this pivotal security initiative.

2:10 – 2:50 pm: Building a Safe and Open Vehicle Core With Open Source – Philipp Ahmann, Etas GmbH (BOSCH)
Recently the Safe Open Vehicle Core (S-Core) project was started as a collaborative code-first project between automotive OEMs and Tier suppliers developing a safety-certifiable middleware stack for high-performance ECUs in software-defined vehicles. Targeting the non-differentiating core functionality, S-Core middleware software sits between the hardware abstraction layer and the platform API accessed by vehicle function applications. Compatible with POSIX-based OSes like Automotive Grade Linux and complementary to the ELISA project, S-Core focuses on achieving ISO 26262, ASPICE, and ISO 21434 compliance.

This presentation details S-Core’s development process, scope, status, and timeline, highlighting its integration within the broader automotive safety and SDV landscape. The author further showcases the project’s work towards robust and automated development through a docs-as-code approach utilizing open-source tools such as ReStructuredText, Sphinx-Needs, Bazel, and PlantUML

 

3:05 – 3:45 pm: Software Supply Chain for the SDV Future — Logistics, Cybersecurity and Compliance – Hasan Yasar, Software Engineering Institute | Carnegie Mellon University

The shift towards software-defined vehicles (SDVs) is set to profoundly impact Original Equipment Manufacturers (OEMs) and their supply chains. As vehicles become increasingly defined by software and connectivity, OEMs face a new era of software supply chain logistics that emphasizes agility, cybersecurity, and regulatory compliance. This presentation examines how SDV technology affects each stage of the OEM supply chain, from sourcing and logistics to manufacturing and data-driven optimization. Critical to this transformation is the secure management of software and data flows across the supply chain, with a focus on cybersecurity strategies to counter software-based vulnerabilities. Additionally, the presentation explores how data analytics can be leveraged to streamline logistics and ensure compliance with rapidly evolving regulations.
4:20 – 5 pm: Continuous Compliance in Open Source: Safety Assurance Through SBOM-Driven Traceability in ELISA – Rinat Shagisultanov & Troy Sabin, InfoMagnus, LLC
As open-source adoption expands into safety-critical domains, ensuring continuous compliance is a growing challenge. This session, grounded in the ELISA (Enabling Linux in Safety Applications) project, explores how SBOM-driven traceability can bridge the gap between open-source development and regulatory safety requirements. We’ll cover how SPDX 3.x, automated CI/CD workflows, and tools like ELISA’s BASIL enable traceability between compliance requirements, validation tests, and software components. Attendees will gain insights into best practices for managing SBOM evolution, mitigating risks in change impact analysis, and integrating compliance automation into modern DevOps pipelines. Whether you’re in open-source governance or safety-critical software engineering, this session provides actionable strategies to align compliance with innovation.

Other ELISA-related sessions include:

 

Monday, June 23 at 3:35-4:15: Documenting the Design of the Linux Kernel – Chuck Wolber, The Boeing Company; Kate Stewart, The Linux Foundaiton; Gabriele Paoloni, Red Hat

As part of a broader effort to document the architecture and design of the Linux Kernel, we propose a method to formally describe low level developer intent in the form of testable expectations (i.e. requirements). This will provide a fact based foundation for pass/fail test development, test validation via code coverage tools, support optional traceability to higher level design, and enable tool development for process automation.

This talk is a continuation of the proposal for Linux Kernel Requirements that formally originated at the 2024 Linux Plumbers Safe Systems with Linux Mini-conference, and further updated at the December 2024 ELISA Workshop at Goddard Space Center.

This edition will present the current state of the requirement template design, provide examples of Linux kernel source code instrumented with low level requirements, present technical explanations for template design decisions, and provide an opportunity for feedback from the developer community.

 

Monday, June 23 at 2:25 – 3:05 pm: Panel Discussion: Driving Automotive Transformation With Open Source – Philipp Ahmann, Etas GmbH (BOSCH); Kate Stewart, The Linux Foundation; Masato Endo, Toyota Motor Corporation; Wolfgang Gehring, Mercedes Benz Tech Innovation

Open source software has long been utilized in automotive systems, yet the industry is experiencing a renewed focus on its strategic utilization also sparked by the so called Software Defined Vehicle. The establishment of OSPOs across numerous OEMs and Tier suppliers further signals this shift.

This panel digs into the motivations and implications of this trend. The panelist will explore the historical context of OSS in automotive, contrasting it with the current OSPO-driven approach. Key discussion points include the rationale for OSPO creation, the specific challenges they tackle – particularly in light of global sanctions, increasing connectivity demands, and the imperative for cyber resilience – and the anticipated impact on the automotive software landscape with regulated safety-critical Software Defined Vehicle systems.

Wednesday, June 25 at 11:55 am – 12:35 pm: Developing a Community-Driven Standard for Open Source Software Quality – Philipp Ahmann, Etas GmbH (BOSCH) & Gabriele Paoloni, Red Hat

Established quality standards, designed for traditional V-Model ( requirements driven) development, are inadequate for evaluating and supporting code-driven, CI/CD-based nature of modern (open source) software. This hinders OSS adoption in regulated industries, particularly for safety-critical systems. This session introduces a novel standard proposal specifically designed to assess OSS process capabilities by documenting open source best practices and providing a practical assessment guide. It aims to bridge the gap between OSS development practices and the needs of regulated industries, fostering greater trust and enabling wider adoption.

This session outlines the three phases from research to execution for establishing the standard, drawing on relevant academic research and showcasing exemplary open source projects with established best practices. The authors will also explore existing scoring initiatives and some quality metrics. The session concludes with a roadmap for collaborative development of the standard and a call to action for community participation.

Learn more about the conference on the main event site here or register by April 7 for the early bird discount here.