Safe systems with Linux

In this insightful talk, we explore the critical challenges faced by Linux distribution providers as they deploy systems with varying criticality constraints. As security fixes are implemented, it is essential to ensure that these updates do not introduce regressions in customer products that prioritize safety. The key question arises: How can providers establish a consistent linkage between code, tests, and the requirements that the code satisfies?

This presentation delves into the open-source tools available specifically for Linux that support traceability, enabling compliance with industry standards such as ASPICE, ISO 26262, and ISO 21434. We will address the complexities of requirements tracking, documentation, testing, and artifact sharing within the Linux kernel ecosystem.

Historically, functionality has been added to the kernel with requirements communicated through email justifications rather than formalized in kernel documentation. This lack of consistency poses challenges for ensuring that tests contributed for the code align with their underlying requirements. Our discussion will highlight these issues and propose solutions for improving documentation practices.

Additionally, we will summarize key findings from the "Safe Systems with Linux" micro-conference at Linux Plumbers, shedding light on collaborative efforts aimed at enhancing safety and security within the Linux community.

Join us for this engaging session as we tackle these pressing topics and work towards a more robust framework for safety-critical applications in Linux systems!