Embedded Platforms Align With Cyber Resilience Regulation

Safety-critical devices increasingly require both deterministic behavior and regulatory cybersecurity compliance, particularly in aerospace, defense and industrial edge computing. At Embedded World 2026 (March 10–12, Nuremberg, Germany), SYSGO will demonstrate an embedded software stack built around PikeOS and ELinOS designed for regulated connected systems.

Real-time orchestration under virtualization
A central demonstration will show a redundant edge platform executing containerized workloads while maintaining deterministic timing. The setup will combine PikeOS virtualization with Kubernetes orchestration to run mixed-criticality applications concurrently on the same hardware.

The example system will use a mechanical marble-run scenario to visualize coordinated execution. The technical focus will be the interaction between container orchestration and a real-time hypervisor: workloads can be deployed dynamically while time-critical tasks retain bounded execution behavior. This approach will target industrial edge control and robotics nodes that must integrate IT-style deployment with real-time guarantees in a digital supply chain.

Combining GPU compute with certified separation
A second platform will integrate general-purpose GPU acceleration with certifiable virtualization. The architecture will isolate workloads of different criticality levels while enabling high-performance compute for AI processing.

The design will support avionics, defense and edge-AI processing where sensor fusion or perception algorithms run alongside safety-relevant control software. Separation mechanisms will ensure that faults or overload in high-compute workloads do not propagate into certified partitions.

Preparing systems for the Cyber Resilience Act
The software stack will address requirements of the EU Cyber Resilience Act by incorporating secure-by-design architecture principles and lifecycle vulnerability management. Long-term maintainability and deterministic execution will be treated as system properties rather than add-on features.

Combining PikeOS, ELinOS and associated security services will allow device manufacturers to implement compliance without redesigning hardware platforms. Certification-oriented system structuring and update management will be integrated into the operating environment, linking cybersecurity processes with functional safety engineering.

Safety and security as a single architecture
The demonstrations will emphasize an embedded architecture where performance isolation, security enforcement and certification readiness coexist in one system design. Instead of separating safety and IT domains across different hardware, virtualization will partition them within a unified platform, allowing regulated embedded devices to support connectivity while maintaining predictable behavior.

www.sysgo.com