SAFERTOS is delivered with a Design Assurance Pack (DAP) which contains
every design artefact produced during the full development life cycle.
The DAP ensures an easy route to achieving certification of SAFERTOS once
integrated into a Safety Critical device.
For medical applications
SAFERTOS is supplied with a Design History File
(DHF). The DHF has been independently validated for compliance with
FDA510(k) Class III medical device standards and EN62304. SAFERTOS
provides developers with a responsive, deterministic embedded RTOS,
containing features that assist in the development of Medical Devices.
SAFERTOS enables dual and multicore/processor medical device designers
to create seamless, mixed safety criticality designs quickly and
efficiently. With its imperceptible boot time SAFERTOS is ideally suited
for use on the primary core, allowing the system to boot and configure
itself securely before enabling other cores.
Common SAFERTOS applications:
Liver Perfusion Machines
Ventricular Assist Devices
SAFERTOS for Industrial
SAFERTOS was initially certified to the Industrial safety standard
IEC 61508 SIL3 by TÜV SÜD in 2007. Since then, WHIS has routinely
re-certified SAFERTOS to IEC 61508 on many different
IEC 61508 is a generic Industrial safety standard supporting the design,
development and operation of electrical, electronic, and programmable
electronic systems. Different industries (see figure) have created their
own sector specific standards based on IEC 61508.
All SAFERTOS ports delivered with a DAP comply with the
requirements of IEC 61508 SIL 3. SAFERTOS and the DAP also support
certification to the domain specific adaptations of IEC 61508, with
compliance demonstrated by the use of cross-referencing matrixes and/or
Relationship to FreeRTOS
SAFERTOS is based on the functional model of FreeRTOS, however
SAFERTOS is not FreeRTOS. SAFERTOS has been re-engineered
by the WHIS team of safety experts to provide a safe and secure
RTOS. The WHIS engineers took the FreeRTOS functional model, subjected
it to a full HAZOP, identified all areas of weakness within the functional
model and API, and generated a set of safety requirements. The resulting
functional and safety requirements sets were put through an IEC 61508-3
SIL 3 development life cycle, the highest possible for a software only
component, creating the SAFERTOS code base and DAP.