The Linux Foundation has launched a project to guarantee the security of critical systems using Linux. It’s called it ELISA (Enabling Linux in Safety Applications) and its objective is to create and certify applications and critical security systems based on Linux.
As there is no a clear method to certify Linux, until now it was very complicated to prove that a Linux-based system meets the requirements of critical systems. "The use of Linux for critical security applications allows to bring products to market faster and reduce the risk of critical design errors. The challenge has been the lack of clear documentation and the necessary tools to demonstrate that a Linux-based system complies with the security requirements necessary for certification, "explained Kate Stewart, Senior Director of Strategic Programs at the Foundation Linux
ELISA will work with certification authorities and standardization bodies in multiple industries to establish how Linux can be used as a component for security in critical systems. The project will also define and maintain a common set of elements, processes and tools that can be incorporated into Linux-based systems, critical for security, susceptible to security certification.
Robotic devices, medical devices, smart factories, autonomous driving systems... are some examples of critical systems that could take advantage of this new project.
Among the founding members of ELISA are companies such as Arm, BMW Car IT GmbH, KUKA, Linutronix and Toyota.
Source: Linux Foundation.