The idea for this posting started when I read New approaches to dominate in embedded development article. Then I found some ther related articles and here is the result: long article.
Embedded devices, or embedded systems, are specialized computer systems that constitute components of larger electromechanical systems with which they interface. The advent of low-cost wireless connectivity is altering many things in embedded development: With a connection to the Internet, an embedded device can gain access to essentially unlimited processing power and memory in cloud service – and at the same time you need to worry about communication issues like breaks connections, latency and security issues.
Those issues are espcecially in the center of the development of popular Internet of Things device and adding connectivity to existing embedded systems. All this means that the whole nature of the embedded development effort is going to change. A new generation of programmers are already making more and more embedded systems. Rather than living and breathing C/C++, the new generation prefers more high-level, abstract languages (like Java, Python, JavaScript etc.). Instead of trying to craft each design to optimize for cost, code size, and performance, the new generation wants to create application code that is separate from an underlying platform that handles all the routine details. Memory is cheap, so code size is only a minor issue in many applications.
Historically, a typical embedded system has been designed as a control-dominated system using only a state-oriented model, such as FSMs. However, the trend in embedded systems design in recent years has been towards highly distributed architectures with support for concurrency, data and control flow, and scalable distributed computations. For example computer networks, modern industrial control systems, electronics in modern car,Internet of Things system fall to this category. This implies that a different approach is necessary.
Companies are also marketing to embedded developers in new ways. Ultra-low cost development boards to woo makers, hobbyists, students, and entrepreneurs on a shoestring budget to a processor architecture for prototyping and experimentation have already become common.If you look under the hood of any connected embedded consumer or mobile device, in addition to the OS you will find a variety of middleware applications. As hardware becomes powerful and cheap enough that the inefficiencies of platform-based products become moot. Leaders with Embedded systems development lifecycle management solutions speak out on new approaches available today in developing advanced products and systems.
Traditional approaches
C/C++
Tradionally embedded developers have been living and breathing C/C++. For a variety of reasons, the vast majority of embedded toolchains are designed to support C as the primary language. If you want to write embedded software for more than just a few hobbyist platforms, your going to need to learn C. Very many embedded systems operating systems, including Linux Kernel, are written using C language. C can be translated very easily and literally to assembly, which allows programmers to do low level things without the restrictions of assembly. When you need to optimize for cost, code size, and performance the typical choice of language is C. Still C is today used for maximum efficiency instead of C++.
C++ is very much alike C, with more features, and lots of good stuff, while not having many drawbacks, except fror it complexity. The had been for years suspicion C++ is somehow unsuitable for use in small embedded systems. At some time many 8- and 16-bit processors were lacking a C++ compiler, that may be a concern, but there are now 32-bit microcontrollers available for under a dollar supported by mature C++ compilers.Today C++ is used a lot more in embedded systems. There are many factors that may contribute to this, including more powerful processors, more challenging applications, and more familiarity with object-oriented languages.
And if you use suitable C++ subset for coding, you can make applications that work even on quite tiny processors, let the Arduino system be an example of that: You’re writing in C/C++, using a library of functions with a fairly consistent API. There is no “Arduino language” and your “.ino” files are three lines away from being standard C++.
Today C++ has not displaced C. Both of the languages are widely used, sometimes even within one system – for example in embedded Linux system that runs C++ application. When you write a C or C++ programs for modern Embedded Linux you typically use GCC compiler toolchain to do compilation and make file to manage compilation process.
Most organization put considerable focus on software quality, but software security is different. When the security is very much talked about topic todays embedded systems, the security of the programs written using C/C++ becomes sometimes a debated subject. Embedded development presents the challenge of coding in a language that’s inherently insecure; and quality assurance does little to ensure security. The truth is that majority of today’s Internet connected systems have their networking fuctionality written using C even of the actual application layer is written using some other methods.
Java
Java is a general-purpose computer programming language that is concurrent, class-based and object-oriented.The language derives much of its syntax from C and C++, but it has fewer low-level facilities than either of them. Java is intended to let application developers “write once, run anywhere” (WORA), meaning that compiled Java code can run on all platforms that support Java without the need for recompilation.Java applications are typically compiled to bytecode that can run on any Java virtual machine (JVM) regardless of computer architecture. Java is one of the most popular programming languages in use, particularly for client-server web applications. In addition to those it is widely used in mobile phones (Java apps in feature phones, ) and some embedded applications. Some common examples include SIM cards, VOIP phones, Blu-ray Disc players, televisions, utility meters, healthcare gateways, industrial controls, and countless other devices.
Some experts point out that Java is still a viable option for IoT programming. Think of the industrial Internet as the merger of embedded software development and the enterprise. In that area, Java has a number of key advantages: first is skills – there are lots of Java developers out there, and that is an important factor when selecting technology. Second is maturity and stability – when you have devices which are going to be remotely managed and provisioned for a decade, Java’s stability and care about backwards compatibility become very important. Third is the scale of the Java ecosystem – thousands of companies already base their business on Java, ranging from Gemalto using JavaCard on their SIM cards to the largest of the enterprise software vendors.
Although in the past some differences existed between embedded Java and traditional PC based Java solutions, the only difference now is that embedded Java code in these embedded systems is mainly contained in constrained memory, such as flash memory. A complete convergence has taken place since 2010, and now Java software components running on large systems can run directly with no recompilation at all on design-to-cost mass-production devices (consumers, industrial, white goods, healthcare, metering, smart markets in general,…) Java for embedded devices (Java Embedded) is generally integrated by the device manufacturers. It is NOT available for download or installation by consumers. Originally Java was tightly controlled by Sun (now Oracle), but in 2007 Sun relicensed most of its Java technologies under the GNU General Public License. Others have also developed alternative implementations of these Sun technologies, such as the GNU Compiler for Java (bytecode compiler), GNU Classpath (standard libraries), and IcedTea-Web (browser plugin for applets).
My feelings with Java is that if your embedded systems platform supports Java and you know hot to code Java, then it could be a good tool. If your platform does not have ready Java support, adding it could be quite a bit of work.
Increasing trends
Databases
Embedded databases are coming more and more to the embedded devices. If you look under the hood of any connected embedded consumer or mobile device, in addition to the OS you will find a variety of middleware applications. One of the most important and most ubiquitous of these is the embedded database. An embedded database system is a database management system (DBMS) which is tightly integrated with an application software that requires access to stored data, such that the database system is “hidden” from the application’s end-user and requires little or no ongoing maintenance.
There are many possible databases. First choice is what kind of database you need. The main choices are SQL databases and simpler key-storage databases (also called NoSQL).
SQLite is the Database chosen by virtually all mobile operating systems. For example Android and iOS ship with SQLite. It is also built into for example Firefox web browser. It is also often used with PHP. So SQLite is probably a pretty safe bet if you need relational database for an embedded system that needs to support SQL commands and does not need to store huge amounts of data (no need to modify database with millions of lines of data).
If you do not need relational database and you need very high performance, you need probably to look somewhere else.Berkeley DB (BDB) is a software library intended to provide a high-performance embedded database for key/value data. Berkeley DB is written in Cwith API bindings for many languages. BDB stores arbitrary key/data pairs as byte arrays. There also many other key/value database systems.
RTA (Run Time Access) gives easy runtime access to your program’s internal structures, arrays, and linked-lists as tables in a database. When using RTA, your UI programs think they are talking to a PostgreSQL database (PostgreSQL bindings for C and PHP work, as does command line tool psql), but instead of normal database file you are actually accessing internals of your software.
Software quality
Building quality into embedded software doesn’t happen by accident. Quality must be built-in from the beginning. Software startup checklist gives quality a head start article is a checklist for embedded software developers to make sure they kick-off their embedded software implementation phase the right way, with quality in mind
Safety
Traditional methods for achieving safety properties mostly originate from hardware-dominated systems. Nowdays more and more functionality is built using software – including safety critical functions. Software-intensive embedded systems require new approaches for safety. Embedded Software Can Kill But Are We Designing Safely?
IEC, FDA, FAA, NHTSA, SAE, IEEE, MISRA, and other professional agencies and societies work to create safety standards for engineering design. But are we following them? A survey of embedded design practices leads to some disturbing inferences about safety.Barr Group’s recent annual Embedded Systems Safety & Security Survey indicate that we all need to be concerned: Only 67 percent are designing to relevant safety standards, while 22 percent stated that they are not—and 11 percent did not even know if they were designing to a standard or not.
If you were the user of a safety-critical embedded device and learned that the designers had not followed best practices and safety standards in the design of the device, how worried would you be? I know I would be anxious, and quite frankly. This is quite disturbing.
Security
The advent of low-cost wireless connectivity is altering many things in embedded development – it has added to your list of worries need to worry about communication issues like breaks connections, latency and security issues. Understanding security is one thing; applying that understanding in a complete and consistent fashion to meet security goals is quite another. Embedded development presents the challenge of coding in a language that’s inherently insecure; and quality assurance does little to ensure security.
Developing Secure Embedded Software white paper explains why some commonly used approaches to security typically fail:
MISCONCEPTION 1: SECURITY BY OBSCURITY IS A VALID STRATEGY
MISCONCEPTION 2: SECURITY FEATURES EQUAL SECURE SOFTWARE
MISCONCEPTION 3: RELIABILITY AND SAFETY EQUAL SECURITY
MISCONCEPTION 4: DEFENSIVE PROGRAMMING GUARANTEES SECURITY
Some techniques for building security to embedded systems:
Use secure communications protocols and use VPN to secure communications
The use of Public Key Infrastructure (PKI) for boot-time and code authentication
Establishing a “chain of trust”
Process separation to partition critical code and memory spaces
Leveraging safety-certified code
Hardware enforced system partitioning with a trusted execution environment
Plan the system so that it can be easily and safely upgraded when needed
Flood of new languages
Rather than living and breathing C/C++, the new generation prefers more high-level, abstract languages (like Java, Python, JavaScript etc.). So there is a huge push to use interpreted and scripting also in embedded systems. Increased hardware performance on embedded devices combined with embedded Linux has made the use of many scripting languages good tools for implementing different parts of embedded applications (for example web user interface). Nowadays it is common to find embedded hardware devices, based on Raspberry Pi for instance, that are accessible via a network, run Linux and come with Apache and PHP installed on the device. There are also many other relevant languages
One workable solution, especially for embedded Linux systems is that part of the activities organized by totetuettu is a C program instead of scripting languages (Scripting). This enables editing operation simply script files by editing without the need to turn the whole system software again. Scripting languages are also tools that can be implemented, for example, a Web user interface more easily than with C / C ++ language. An empirical study found scripting languages (such as Python) more productive than conventional languages (such as C and Java) for a programming problem involving string manipulation and search in a dictionary.
Scripting languages have been around for a couple of decades Linux and Unix server world standard tools. the proliferation of embedded Linux and resources to merge systems (memory, processor power) growth has made them a very viable tool for many embedded systems – for example, industrial systems, telecommunications equipment, IoT gateway, etc . Some of the command language is suitable for up well even in quite small embedded environments.
I have used with embedded systems successfully mm. Bash, AWK, PHP, Python and Lua scripting languages. It works really well and is really easy to make custom code quickly .It doesn’t require a complicated IDE; all you really need is a terminal – but if you want there are many IDEs that can be used. High-level, dynamically typed languages, such as Python, Ruby and JavaScript. They’re easy—and even fun—to use. They lend themselves to code that easily can be reused and maintained.
There are some thing that needs to be considered when using scripting languages. Sometimes lack of static checking vs a regular compiler can cause problems to be thrown at run-time. But it is better off practicing “strong testing” than relying on strong typing. Other ownsides of these languages is that they tend to execute more slowly than static languages like C/C++, but for very many aplications they are more than adequate. Once you know your way around dynamic languages, as well the frameworks built in them, you get a sense of what runs quickly and what doesn’t.
Bash and other shell scipting
Shell commands are the native language of any Linux system. With the thousands of commands available for the command line user, how can you remember them all? The answer is, you don’t. The real power of the computer is its ability to do the work for you – the power of the shell script is the way to easily to automate things by writing scripts. Shell scripts are collections of Linux command line commands that are stored in a file. The shell can read this file and act on the commands as if they were typed at the keyboard.In addition to that shell also provides a variety of useful programming features that you are familar on other programming langauge (if, for, regex, etc..). Your scripts can be truly powerful. Creating a script extremely straight forward: It can be created by opening a separate editor such or you can do it through a terminal editor such as VI (or preferably some else more user friendly terminal editor). Many things on modern Linux systems rely on using scripts (for example starting and stopping different Linux services at right way).
The most common type of shell script is a bash script. Bash is a commonly used scripting language for shell scripts. In BASH scripts (shell scripts written in BASH) users can use more than just BASH to write the script. There are commands that allow users to embed other scripting languages into a BASH script.
There are also other shells. For example many small embedded systems use BusyBox. BusyBox providesis software that provides several stripped-down Unix tools in a single executable file (more than 300 common command). It runs in a variety of POSIX environments such as Linux, Android and FreeeBSD. BusyBox become the de facto standard core user space toolset for embedded Linux devices and Linux distribution installers.
Shell scripting is a very powerful tool that I used a lot in Linux systems, both embedded systems and servers.
Lua
Lua is a lightweight cross-platform multi-paradigm programming language designed primarily for embedded systems and clients. Lua was originally designed in 1993 as a language for extending software applications to meet the increasing demand for customization at the time. It provided the basic facilities of most procedural programming languages. Lua is intended to be embedded into other applications, and provides a C API for this purpose.
Lua has found many uses in many fields. For example in video game development, Lua is widely used as a scripting language by game programmers. Wireshark network packet analyzer allows protocol dissectors and post-dissector taps to be written in Lua – this is a good way to analyze your custom protocols.
There are also many embedded applications. LuCI, the default web interface for OpenWrt, is written primarily in Lua. NodeMCU is an open source hardware platform, which can run Lua directly on the ESP8266 Wi-Fi SoC. I have tested NodeMcu and found it very nice system.
PHP
PHP is a server-side HTML embedded scripting language. It provides web developers with a full suite of tools for building dynamic websites but can also be used as a general-purpose programming language. Nowadays it is common to find embedded hardware devices, based on Raspberry Pi for instance, that are accessible via a network, run Linux and come with Apache and PHP installed on the device. So on such enviroment is a good idea to take advantage of those built-in features for the applications they are good – for building web user interface. PHP is often embedded into HTML code, or it can be used in combination with various web template systems, web content management system and web frameworks. PHP code is usually processed by a PHP interpreter implemented as a module in the web server or as a Common Gateway Interface (CGI) executable.
Python
Python is a widely used high-level, general-purpose, interpreted, dynamic programming language. Its design philosophy emphasizes code readability. Python interpreters are available for installation on many operating systems, allowing Python code execution on a wide variety of systems. Many operating systems include Python as a standard component; the language ships for example with most Linux distributions.
Python is a multi-paradigm programming language: object-oriented programming and structured programming are fully supported, and there are a number of language features which support functional programming and aspect-oriented programming, Many other paradigms are supported using extensions, including design by contract and logic programming.
Python is a remarkably powerful dynamic programming language that is used in a wide variety of application domains. Since 2003, Python has consistently ranked in the top ten most popular programming languages as measured by the TIOBE Programming Community Index. Large organizations that make use of Python include Google, Yahoo!, CERN, NASA. Python is used successfully in thousands of real world business applications around globally, including many large and mission-critical systems such as YouTube.com and Google.com.
Python was designed to be highly extensible. Libraries like NumPy, SciPy and Matplotlib allow the effective use of Python in scientific computing. Python is intended to be a highly readable language. Python can also be embedded in existing applications and hasbeen successfully embedded in a number of software products as a scripting language. Python can serve as a scripting language for web applications, e.g., via mod_wsgi for the Apache web server.
Python can be used in embedded, small or minimal hardware devices. Some modern embedded devices have enough memory and a fast enough CPU to run a typical Linux-based environment, for example, and running CPython on such devices is mostly a matter of compilation (or cross-compilation) and tuning. Various efforts have been made to make CPython more usable for embedded applications.
For more limited embedded devices, a re-engineered or adapted version of CPython, might be appropriate. Examples of such implementations include the following: PyMite, Tiny Python, Viper. Sometimes the embedded environment is just too restrictive to support a Python virtual machine. In such cases, various Python tools can be employed for prototyping, with the eventual application or system code being generated and deployed on the device. Also MicroPython and tinypy have been ported Python to various small microcontrollers and architectures. Real world applications include Telit GSM/GPRS modules that allow writing the controlling application directly in a high-level open-sourced language: Python.
Python on embedded platforms? It is quick to develop apps, quick to debug – really easy to make custom code quickly. Sometimes lack of static checking vs a regular compiler can cause problems to be thrown at run-time. To avoid those try to have 100% test coverage. pychecker is a very useful too also which will catch quite a lot of common errors. The only downsides for embedded work is that sometimes python can be slow and sometimes it uses a lot of memory (relatively speaking). An empirical study found scripting languages (such as Python) more productive than conventional languages (such as C and Java) for a programming problem involving string manipulation and search in a dictionary. Memory consumption was often “better than Java and not much worse than C or C++”.
JavaScript and node.js
JavaScript is a very popular high-level language. Love it or hate it, JavaScript is a popular programming language for many, mainly because it’s so incredibly easy to learn. JavaScript’s reputation for providing users with beautiful, interactive websites isn’t where its usefulness ends. Nowadays, it’s also used to create mobile applications, cross-platform desktop software, and thanks to Node.js, it’s even capable of creating and running servers and databases! There is huge community of developers. JavaScript is a high-level language.
Its event-driven architecture fits perfectly with how the world operates – we live in an event-driven world. This event-driven modality is also efficient when it comes to sensors.
Regardless of the obvious benefits, there is still, understandably, some debate as to whether JavaScript is really up to the task to replace traditional C/C++ software in Internet connected embedded systems.
It doesn’t require a complicated IDE; all you really need is a terminal.
JavaScript is a high-level language. While this usually means that it’s more human-readable and therefore more user-friendly, the downside is that this can also make it somewhat slower. Being slower definitely means that it may not be suitable for situations where timing and speed are critical.
JavaScript is already in embedded boards. You can run JavaScipt on Raspberry Pi and BeagleBone. There are also severa other popular JavaScript-enabled development boards to help get you started: The Espruino is a small microcontroller that runs JavaScript. The Tessel 2 is a development board that comes with integrated wi-fi, an ethernet port, two USB ports, and companion source library downloadable via the Node Package Manager. The Kinoma Create, dubbed the “JavaScript powered Internet of Things construction kit.”The best part is that, depending on the needs of your device, you can even compile your JavaScript code into C!
JavaScript for embedded systems is still in its infancy, but we suspect that some major advancements are on the horizon.We for example see a surprising amount of projects using Node.js.Node.js is an open-source, cross-platform runtime environment for developing server-side Web applications. Node.js has an event-driven architecture capable of asynchronous I/O that allows highly scalable servers without using threading, by using a simplified model of event-driven programming that uses callbacks to signal the completion of a task. The runtime environment interprets JavaScript using Google‘s V8 JavaScript engine.Node.js allows the creation of Web servers and networking tools using JavaScript and a collection of “modules” that handle various core functionality. Node.js’ package ecosystem, npm, is the largest ecosystem of open source libraries in the world. Modern desktop IDEs provide editing and debugging features specifically for Node.js applications
JXcore is a fork of Node.js targeting mobile devices and IoTs. JXcore is a framework for developing applications for mobile and embedded devices using JavaScript and leveraging the Node ecosystem (110,000 modules and counting)!
Why is it worth exploring node.js development in an embedded environment? JavaScript is a widely known language that was designed to deal with user interaction in a browser.The reasons to use Node.js for hardware are simple: it’s standardized, event driven, and has very high productivity: it’s dynamically typed, which makes it faster to write — perfectly suited for getting a hardware prototype out the door. For building a complete end-to-end IoT system, JavaScript is very portable programming system. Typically an IoT projects require “things” to communicate with other “things” or applications. The huge number of modules available in Node.js makes it easier to generate interfaces – For example, the HTTP module allows you to create easily an HTTP server that can easily map the GET
method specific URLs to your software function calls. If your embedded platform has ready made Node.js support available, you should definately consider using it.
Future trends
According to New approaches to dominate in embedded development article there will be several camps of embedded development in the future:
One camp will be the traditional embedded developer, working as always to craft designs for specific applications that require the fine tuning. These are most likely to be high-performance, low-volume systems or else fixed-function, high-volume systems where cost is everything.
Another camp might be the embedded developer who is creating a platform on which other developers will build applications. These platforms might be general-purpose designs like the Arduino, or specialty designs such as a virtual PLC system.
This third camp is likely to become huge: Traditional embedded development cannot produce new designs in the quantities and at the rate needed to deliver the 50 billion IoT devices predicted by 2020.
Transition will take time. The enviroment is different than computer and mobile world. There are too many application areas with too widely varying requirements for a one-size-fits-all platform to arise.
Sources
Most important information sources:
New approaches to dominate in embedded development
A New Approach for Distributed Computing in Embedded Systems
New Approaches to Systems Engineering and Embedded Software Development
Embracing Java for the Internet of Things
Embedded Linux – Shell Scripting 101
Embedded Linux – Shell Scripting 102
Embedding Other Languages in BASH Scripts
PHP Integration with Embedded Hardware Device Sensors – PHP Classes blog
JavaScript: The Perfect Language for the Internet of Things (IoT)
Anyone using Python for embedded projects?
JavaScript: The Perfect Language for the Internet of Things (IoT)
MICROCONTROLLERS AND NODE.JS, NATURALLY
Node.JS Appliances on Embedded Linux Devices
The smartest way to program smart things: Node.js
Embedded Software Can Kill But Are We Designing Safely?
DEVELOPING SECURE EMBEDDED SOFTWARE
1,667 Comments
Tomi Engdahl says:
https://go.snyk.io/state-of-open-source-security-report-2023.html?utm_campaign=sooss-2023&utm_medium=paid-email&utm_source=security-week&utm_content=state-of-open-source-security-report-2023
Tomi Engdahl says:
Edge Security in an Insecure World
https://www.mouser.com/empowering-innovation/more-topics/ai?utm_source=endeavor&utm_medium=display&utm_campaign=ed-personifai-eit-ai-#article2-ai
As the cost of embedded networked devices falls—consider the Raspberry Pi as one example—they become ubiquitous. But, a hidden cost in this proliferation is that these devices can lack security and therefore be exploited. Without the investment in security, devices can leak private information—such as video, images, or audio—or become part of a botnet that wreaks havoc around the world.
Tomi Engdahl says:
Engineers Look to Adopt a More Sustainable Approach to Electronic Design
Oct. 5, 2023
Avnet’s latest customer survey found that customer demand is driving engineers to embrace more of a “design for sustainability” ethos.
https://www.electronicdesign.com/resources/industry-insights/article/21275020/electronic-design-engineers-look-to-adopt-a-more-sustainable-approach-to-electronic-design?o_eid=7211D2691390C9R&oly_enc_id=7211D2691390C9R&rdx.identpull=omeda|7211D2691390C9R&utm_campaign=CPS231012165&utm_medium=email&utm_source=EG+ED+Connected+Solutions
Tomi Engdahl says:
Securing Your Software Supply Chain: Recognize the Risks and Solutions
Sept. 28, 2023
As software risk impacts organizations’ bottom lines, the prevalence of developers using open-source software in their projects poses software supply-chain challenges. This article breaks down the potential risks and protections that can be put in place.
https://www.electronicdesign.com/technologies/embedded/software/article/21274575/synopsys-securing-your-software-supply-chain-recognize-the-risks-and-solutions?o_eid=7211D2691390C9R&oly_enc_id=7211D2691390C9R&rdx.identpull=omeda|7211D2691390C9R&utm_campaign=CPS231012160&utm_medium=email&utm_source=EG+ED+Auto+Electronics
Tomi Engdahl says:
https://www.electronicdesign.com/technologies/communications/iot/article/21178993/laird-connectivity-11-myths-about-smart-utilities-iot-and-antenna-strategies?o_eid=7211D2691390C9R&oly_enc_id=7211D2691390C9R&rdx.identpull=omeda|7211D2691390C9R&utm_campaign=CPS231012165&utm_medium=email&utm_source=EG+ED+Connected+Solutions
Tomi Engdahl says:
https://www.digikey.com/en/product-highlight/a/analog-devices/max66250-max66301-nfc-secure-authenticators-and-coprocessors?dclid=CMje-feH_4EDFUnhmgodAEgJ4w
Tomi Engdahl says:
https://www.mouser.com/empowering-innovation/more-topics/designing-for-security?utm_source=endeavor&utm_medium=display&utm_campaign=ed-personifai-eit2022#blog-security
Tomi Engdahl says:
Toteutuuko hurja ennustus: haittaohjelma tappaa ihmisen ensi vuonna?
https://etn.fi/index.php?option=com_content&view=article&id=15426&via=n&datum=2023-10-11_14:09:17&mottagare=31202
Tomi Engdahl says:
Suositulle 32-bittiselle lisättiin suojamoduuli
https://etn.fi/index.php?option=com_content&view=article&id=15424&via=n&datum=2023-10-11_14:09:17&mottagare=31202
Microchip on julkistanut uuden 32-bittisten PIC32CZ CA -mikro-ohjainten perheen. Siruilta löytyy 300 megahertsin kellolla toimiva Arm Cortex-M7 -prosessori, integroitu laitteistopohjainen HSM-turvamoduuli ja laaja valikoima liitäntöjä ja flash-muistivariaatioita.
Tomi Engdahl says:
EMBEDDED OPEN-SOURCE SOLUTIONS
Open-source electronic engineering can help you aggregate and integrate the various sets of IP that you need to create your own solution for any given application.
https://www.electronicdesign.com/magazine/51698
Tomi Engdahl says:
Ensimmäiset kyberturvalliset kännykkämoduulit markkinoille
https://etn.fi/index.php/13-news/15455-ensimmaeiset-kyberturvalliset-kaennykkaemoduulit-markkinoille
Kesällä 2025 voimaantuleva EU:n radiolaitedirektiivi eli RED asettaa kovia vaatimuksia myös radiokomponenttien kyberturvallisuudelle. Sveitsiläinen u-blox on nyt ensimmäisenä esitellyt kännykkäverkon moduulit, jotka on sertifioitu ETSIn EN 303 645 -kyberturvallisuutta määrittelevien vaatimusten mukaisesti.
RED-direktiivi päivittyy ensi vuonna 3.3 d/e/f -määrityksillä. Niiden mukaan radiolaitteiden pitää täyttää ETSI EN 303 645 -standardin vaatimukset, jotta laitteet saavat RED-kyberturvallisuussertifioinnin. U-blox on ensimmäinen valmistaja, jonka mobiiliverkkojen moduulit LTE Cat 1- ja LTE Cat 4 -yhteyksiin on sertifioitu. Kyse on LARA-R6- ja LARA-L6-moduuleista.
Tomi Engdahl says:
TI Developer Zone
Easily start embedded development on your desktop or in the cloud.
https://www.ti.com/design-development/ti-developer-zone.html?HQS=epd-der-procbr-epd_designresources_dev-asset-pp-electronicdesign_psfi_process_l1-wwe_awr&DCM=yes&dclid=COK11ZPYjoIDFQNGkQUdVfMQhA
Tomi Engdahl says:
Microcontrollers (MCUs) & processors
Scalable and efficient performance, from simple control to advanced data analytics
https://www.ti.com/microcontrollers-mcus-processors/overview.html?DCM=yes&dclid=CK7SpJHYjoIDFRZFHgIdgU8NfQ#technology?HQS=null-null-procbr-process_gen_microcontrollers-asset-pp-electronicdesign_psfi_process_l1-wwe_awr
Tomi Engdahl says:
How to Design for Longer IoT Battery Life with Emulation Software
Aug. 23, 2023
https://www.electronicdesign.com/technologies/test-measurement/article/21272339/keysight-technologies-how-to-design-for-longer-iot-battery-life-with-emulation-software?o_eid=7211D2691390C9R&oly_enc_id=7211D2691390C9R&rdx.identpull=omeda|7211D2691390C9R&utm_campaign=CPS231012151&utm_medium=email&utm_source=EG+ED+Analog+%26+Power+Source
Testing an IoT device at various charge levels is crucial due to varying battery characteristics, but it also creates multiple challenges. Using an emulated battery can help overcome those hurdles.
Tomi Engdahl says:
US Government Releases Security Guidance for Open Source Software in OT, ICS
CISA, FBI, NSA, and US Treasury published new guidance on improving the security of open source software in OT and ICS.
https://www.securityweek.com/us-government-releases-open-source-security-guidance-for-ot-ics/
Tomi Engdahl says:
https://www.cisa.gov/sites/default/files/2023-10/Fact_Sheet_Improving_OSS_in_OT_ICS_508c.pdf
Tomi Engdahl says:
https://www.securityweek.com/applying-ai-to-api-security/
Tomi Engdahl says:
https://www.phoenixcontact.com/en-pc/iec-62443-the-industrial-cybersecurity-standard
Tomi Engdahl says:
As cheap as the WCH CH32V003 MCU is, its approximately $0.10 price tag looks far less attractive when you need to start adding on external ICs for missing basic features, such as temperature measurement. This is a feature that’s commonly found on even basic STM32 MCUs. Fear not though, as shows, you can improvise a working solution by finding alternative sources……
ADDING TEMPERATURE SENSOR FUNCTIONALITY TO THE CH32V003 MCU
https://hackaday.com/2023/11/05/adding-temperature-sensor-functionality-to-the-ch32v003-mcu/?fbclid=IwAR2dOIIZdrismzRC7J1jrFToDKqfhsGWoqGABGYhI6SrefqJ-6rNSM7B56w
Tomi Engdahl says:
https://www.alten.fi/2023/10/16/monet-arkiset-laitteet-sisaltavat-sulautettuja-jarjestelmia-tama-teknologia-voi-edistaa-jopa-aivoterveytta/
Sulautetut järjestelmät yhdistävät mekaniikkaa, elektroniikkaa ja ohjelmistoja täsmällisesti määritellyn tehtävän suorittamiseen. Käyttökohteita on valtavasti – tavallisesta tietokoneen hiirestä tai auton kaasupolkimesta teollisuusrobotteihin ja vaativiin lääkinnällisiin laitteisiin.
Tomi Engdahl says:
https://www.uusiteknologia.fi/2023/11/01/nykyelektroniikan-suunnittelukoulu-plus-osa-4-sulautetut-ohjain-ja-fpga-ratkaisut-tyokaluineen/
Tomi Engdahl says:
https://hackaday.com/2023/11/01/raspberry-pi-os-in-place-upgrades-not-for-the-faint-hearted/
Tomi Engdahl says:
https://hackernoon.com/the-world-is-ready-for-a-new-type-of-operating-system
Tomi Engdahl says:
Microsoft Opens Its Azure RTOS, Spins the Project Out Under an Open License as Eclipse ThreadX
https://www.hackster.io/news/microsoft-opens-its-azure-rtos-spins-the-project-out-under-an-open-license-as-eclipse-threadx-025f7cfc5e6d
From ThreadX to Azure RTOS ThreadX to Azure RTOS and now Eclipse ThreadX, this real-time operating system has had a heck of a journey.
https://threadx.io/
Azure RTOS Is Now
Eclipse ThreadX
A Vendor-Neutral, Open Source,
Safety Certified RTOS
Tomi Engdahl says:
Radxa Reveals Another Pocketful of Processing Power
News
By Les Pounder published November 15, 2023
Tiny board made for Ethernet
https://www.tomshardware.com/news/radxa-reveals-pocketful-of-processing-power
Fresh on the tail of the Raspberry Pi Zero 2 W alternative — the Radxa Zero 3 W — is a new variant of the Zero 3W that does away with wireless connectivity in favor of good ol’ Ethernet: the Radxa Zero 3E.
Tomi Engdahl says:
The folks at Raspberry Pi are riding on a bit of a wave at the moment, with the launch of the Pi 5 with its PCIe and RP1 peripheral chip, the huge success of the RP2040 microcontroller, and the supply chain issues that dogged the Pi 4 and Compute Module 4 during and after the pandemic finally working themselves out. But as always there are plenty of would-be competitors snapping at their heels, so has posed the question of……
WHAT IT TAKES TO MAKE A RASPBERRY PI KILLER
https://hackaday.com/2023/11/25/what-it-takes-to-make-a-raspberry-pi-killer/?fbclid=IwAR05KuEZPbCWrU-trWAqgPZXNsCcQdZg5ksmI4u0J1yoSVD9iLPcgKjhf8w
It’s a well-observed analysis of the world of small Linux SBCs, on hardware, software, community, and price, and we find ourselves pretty much in agreement with it. The Pi hardware has quirks and is rarely the best on paper when compared to the competition, but they win hands-down on distribution support and community. In a sense what you really buy when you get a PI is this, because Raspberry Pi OS will run on it for the reasonable future. Rival makers would do well to read his piece, because we sense that if one of them tried to give the Pi a run for its money away from the hardware it would make for a much better SBC ecosystem. Take a look at his Compute Module comparison below the break.
so the upshot is… It takes everything that raspberry pi has done in terms of development, hardware peripherals, drivers, support, pricing and community since its release to create a pi ‘killer’, which, despite their best efforts (or lack of) no other manufacturer has managed to do, to date.
Tomi Engdahl says:
Microchip lisäsi turvaa PIC-ohjaimella
https://etn.fi/index.php/13-news/15614-microchip-lisaesi-turvaa-pic-ohjaimella
Microchip on esitellyt uuden PIC-ohjainten perheen, jossa on parannettu koodin suojausta. PIC18-Q24 MCU-perheessä on otettu käyttöön PDID-ominaisuus (Programming and Debugging Interface Disable), joka estää asiattoman pääsyn ohjaimen liitäntään.
Yhä useammat arkipäiväiset tavarat yhdistetään pilveen matkapuhelimista ja ajoneuvoista älykkäisiin termostaatteihin ja kodinkoneisiin. Tämän liitettävyyden lisääntyessä tarve piiritason kehittyneisiin suojauksiin kasvaa. Suojauksen pitää turvata sekä laiteohjelmisto että kriittinen data.
Sulautetun järjestelmän laitteen haitallisen uudelleenohjelmoinnin uhan torjumiseksi PIC18-Q24-ohjaimilla otetaan käyttöön PDID-esto. Kun tämä parannettu koodin suojausominaisuus on käytössä, se estää pääsyn ohjaimen ohjelmointi/virheenkorjausliitäntään. Tämä estää luvattomat yritykset lukea, muokata tai poistaa laiteohjelmistoa.
Tomi Engdahl says:
Tulevaisuuden koti tulee, oletko valmis?
https://etn.fi/index.php/tekniset-artikkelit/15600-tulevaisuuden-koti-tulee-oletko-valmis
Uusi langaton standardi näyttää auttavan lunastamaan älykkään kodin lupaukset. Se myös tarjoaa kuluttajille turvallisempia, luotettavampia ja saumattomimpia yhteyksiä ja sitä myötä parempia kokemuksia. Standardi on nimeltään Matter.
Tomi Engdahl says:
Suosittu ThreadX tulee avoimesti kaikkien käyttöön
https://etn.fi/index.php/13-news/15611-suosittu-threadx-tulee-avoimesti-kaikkien-kaeyttoeoen
Microsoft on julkaissut ThreadX-reaaliaikakäyttöjärjestelmän avoimena lähdekoodina Eclipse Foundationin kautta. Microsoft on omistanut klassisiin RTOSeihin kuuluvan ThreadX:n vuodesta 2019.
Ensi vuoden alusta lukien ThreadX_ää saa käyttää MIT-lisenssillä. Sama koskee koodikirjastoja Net X Duo, File X, GUIX, USB X ja Level X. 32-bittinen Thread X -käyttöjärjestelmä on olemassa yli 12 miljardissa kohteessa maailmanlaajuisesti. Yksi versio on sertifioitu turvallisuuden kannalta kriittisiin sovelluksiin.
Microsoftin mukaan avoimena lähdekoodina ThreadX avautuu käytettäväksi kaikille. Myös päivitykset ja parannukset nopeutuvat ja kehitysprosessista tulee läpinäkyvämpi. Avoimena koodina alusta löytänee paremmin potentiaalisia uusia käyttäjiä.
Tomi Engdahl says:
Tekoälyltä suojautuminen vaatii uusia työkaluja
https://etn.fi/index.php/13-news/15612-tekoaelyltae-suojautuminen-vaatii-uusia-tyoekaluja
Turvallisiin IoT-laitteisiin ja niiden kehitykseen keskittyvä Foundries.io ennustaa, että valtion sääntely ja markkinaosuuden menettämisen riski saavat sulautettujen laitteiden OEM-valmistajat omaksumaan tiukat uudet käytännöt suojaamiseen. Ne takaavat päästä päähän -turvallisuuden kaikkien tuotteiden käyttöiän ajan.
Foundries.io perustettiin lokakuussa 2017, jolloin kyberturvallisuushuolet rajoittuivat enimmäkseen pilvilaskenta-alustoille. Sulautettujen sovellusten kehityskäytännöt eivät juurikaan kiinnittäneet huomiota jatkuvan ylläpidon ja turvallisuuden tarpeeseen.
Nykyään pilvipohjaisten sovellusten kehittäminen ja tekoälyn käyttötapaukset pakottavat sulautetut kehittäjät ottamaan kyberturvallisuuden paljon vakavammin. Foundries.io odottaa, että sulautettujen laitteiden OEM-valmistajat kohtaavat yhä enemmän tietoturvauhkia seuraavien vuosien aikana vuosikymmenen loppuun mennessä.
Vihamielisempää ympäristöä ruokkivat geopoliittiset jännitteet ja konfliktit valtioiden kanssa, jotka käyttävät kyberturvallisuutta sotilaallisena ja poliittisena aseena. Turvallisuuskuvaa vaikeuttaa myös tekoälypohjaisten ohjelmistotyökalujen ilmaantuminen, joilla voidaan luoda ja muokata uusia haittaohjelmien muotoja suurella nopeudella.
Samaan aikaan Foundries.io:n johtoryhmän mukaan epävarmaa alkuperää olevien avoimen lähdekoodin ohjelmistopakettien (OSS) lisääntyvä käyttö tarjoaa kyberhyökkääjille lisäportteja suojaamattomien sulautettujen tuotteiden haavoittuvuuksiin.
Vastauksena näyttää siltä, että käyttöön otetaan uusia lainsäädäntö- ja turvallisuusstandardeja, mukaan lukien EU:n ja Yhdysvaltojen hallitusten jo ilmoittamat toimenpiteet: EU:n kyberkestävyyslaki sekä Valkoisen talon ja kongressin kansallinen kyberturvallisuusstrategia. Samaan aikaan kuluttajien huolet yksityisyydestä ja kasvava tietoisuus tietoturvaloukkausten taloudellisista ja maineeseen liittyvistä kustannuksista antavat OEM-valmistajille vahvemman kannustimen investoida aikaa ja rahaa kyberpuolustuksensa vahvistamiseen.
Tomi Engdahl says:
Ilmainen työkalu laskee sulautetun projektin kustannukset
https://etn.fi/index.php/13-news/15613-ilmainen-tyoekalu-laskee-sulautetun-projektin-kustannukset
Sulautetussa projektissa kehitysajan hallinta on erittäin tärkeää kustannusten hallinnan ja tuotteen oikea-aikaisen toimituksen varmistamiseksi. Ruotsalainen IAR on esitellyt TCO-laskimen (Total Cost of Ownership), joka paljastaa, kuinka kaupalliset työkalut voivat alkukustannuksistaan huolimatta olla taloudellisesti kannattavampia kuin freeware-vaihtoehdot.
IAR:n mukaan kaupalliset kehitystyökalut auttavat erityisesti projektien aikatauluissa pysymisen ja tuotekehityksen kokonaiskustannusten minimoimisessa. Laskin on ilmainen ja vapaasti suunnittelijoiden käytettävissä.
TCO-laskenta kattaa sellaiset tekijät kuin työkalun erityispiirteet, tiimin koon, projektin monimutkaisuuden ja organisaation tavoitteet. Tämä kattava lähestymistapa helpottaa tietoon perustuvien päätösten tekemistä työkalujen valinnasta ja ylläpidosta, mikä on ratkaisevan tärkeää sulautettujen ohjelmistotyökalujen tehokkaan hallinnan kannalta.
Tomi Engdahl says:
Täysin turvallista mikro-ohjainta ei ole
https://etn.fi/index.php/13-news/15618-taeysin-turvallista-mikro-ohjainta-ei-ole
Tomi Engdahl says:
https://www.perforce.com/resources/qac/misra-c-cpp
Tomi Engdahl says:
A GUIDE TO MISRA C CODING STANDARDS
MISRA C and MISRA C++
https://www.perforce.com/resources/qac/misra-c-cpp
Tomi Engdahl says:
https://www.uusiteknologia.fi/2023/11/08/nykyelektroniikan-suunnittelukoulu-plus-osa-5-sulautettujen-ja-iotn-tietoturva/
Tomi Engdahl says:
https://uapi-group.org/specifications/specs/unified_kernel_image/
A Unified Kernel Image (UKI) is a combination of an UEFI boot stub program, a Linux kernel image, an initrd, and further resources in a single UEFI PE file. This file can either be directly invoked by the UEFI firmware (which is useful in particular in some cloud/Confidential Computing environments) or through a boot loader (which is generally useful to allow multiple kernel versions with interactive or automatic selection of version to boot into).
Tomi Engdahl says:
https://qa.fwupd.org/
The Linux Vendor Firmware Service is a secure portal which allows hardware vendors to upload firmware updates.
This site is used by all major Linux distributions to provide metadata for clients such as fwupdmgr and GNOME Software.
There is no charge to vendors for the hosting or distribution of content. Consulting companies can offer advice and help you get on the LVFS.
Tomi Engdahl says:
New systemd update will bring Windows’ infamous Blue Screen of Death to Linux
Systemd is used by Debian, Arch, Fedora, Ubuntu, and many downstream distros.
https://arstechnica.com/gadgets/2023/12/linux-distros-are-about-to-get-a-killer-windows-feature-the-blue-screen-of-death/
Windows’ infamous “Blue Screen of Death” is a bit of a punchline. People have made a hobby of spotting them out in the wild, and in some circles, they remain a byword for the supposed flakiness and instability of PCs. To this day, networked PCs in macOS are represented by beige CRT monitors displaying a BSOD.
But the BSOD is supposed to be a diagnostic tool, an informational screen that technicians can use to begin homing in on the problem that caused the crash in the first place; that old Windows’ BSOD error codes were often so broad and vague as to be useless doesn’t make the idea a bad one. Today, version 255 of the Linux systemd project honors that original intent by adding a systemd-bsod component that generates a full-screen display of some error messages when a Linux system crashes.
Tomi Engdahl says:
https://github.com/systemd/systemd/releases/tag/v255
Tomi Engdahl says:
https://etn.fi/index.php/tekniset-artikkelit/804-yocto-projekti-sulautettua-linuxia-helposti
Tomi Engdahl says:
https://www.futureelectronics.com/blog/article/key-components-to-enable-and-enhance-iot-based-asset-tracking/
Tomi Engdahl says:
https://www.xda-developers.com/best-single-board-computer/
Tomi Engdahl says:
Microflex MCUs – Tiny USB development boards based on ESP32-S3, ESP32-S2, ESP32-C3, ESP32-C6, or Raspberry Pi RP2040 (Crowdfunding)
SB Components is back with yet another crowdfunding campaign this time with the Microflex MCUs USB development boards all with the same tiny form factor and offered with a choice of five microcontrollers namely Raspberry Pi RP2040, ESP32-S3, ESP32-S2, ESP32-C3, or ESP32-C6.
https://www.cnx-software.com/2023/12/12/microflex-mcu-tiny-usb-development-boards-esp32-s3-esp32-s2-esp32-c3-esp32-c6-raspberry-pi-rp2040/
Tomi Engdahl says:
https://hackaday.com/2023/12/11/raspberry-pi-changes-hats/
Tomi says:
https://etn.fi/index.php/13-news/15800-congatec-tuo-hypervisorin-kaikille-x86-korteilleen
https://etn.fi/index.php/13-news/15799-maailman-nopein-flash-tuli-autoihin
Tomi Engdahl says:
https://github.com/eclipse-threadx
Tomi Engdahl says:
Simon Monk Puts Three Popular Microcontroller Boards Head-to-Head in an ADC Showdown
A Wemos LOLIN32 Lite, a Raspberry Pi Pico, and an Arduino UNO Rev3 walk into Monk’s lab — and a winner emerges.
https://www.hackster.io/news/simon-monk-puts-three-popular-microcontroller-boards-head-to-head-in-an-adc-showdown-06411e288bf9
Tomi Engdahl says:
http://www.doctormonk.com/2024/01/comparingadcs.html
Tomi Engdahl says:
OpenWrt, now 20 years old, is crafting its own future-proof reference hardware
There are, as you might expect, a few disagreements about what’s most important.
https://arstechnica.com/gadgets/2024/01/openwrt-now-20-years-old-is-crafting-its-own-future-proof-reference-hardware/
Tomi Engdahl says:
https://www.cnx-software.com/2024/01/12/openwrt-one-ap-24-xy-router-board-openwrt-banana-pi/