• Japanese
  • Korean
  • Chinese
Cover Image

Safety & Security: Embedded Software Engineering Market Technologies & Statistics

Intelligent-connected mobile devices driving significant growth in embedded software market

The design of highly sophisticated systems has become the norm - with the complexity of both software and hardware platforms continuing to advance. VDC continues to find significant growth around intelligent, smart-connected mobile devices.

The average embedded system/device continues to require greater amounts of software to serve the requirements of both suppliers and end users. Among many other functions, today's embedded systems demand more sophisticated system interfaces, increasingly complex graphical elements as well as advanced wired and wireless communication capabilities.

While more complex system features often necessitate additional processing resources and potentially more advanced hardware in order to enable new capabilities, software design and test has become a critical part of the embedded system engineering lifecycle.

As a result of a greater overall focus on software as means to enable increased functionality, a large number of embedded systems manufacturers are currently dedicating more of their resources to software engineering tasks. As such, these companies are highly motivated to improve their software engineering efficiency and are also looking for ways to initiate the software design and verification process earlier within the system engineering cycle, rather than wait until the hardware elements have been fully engineered.

Within the greater context of the embedded market are two complex topics . safety and security.

It is difficult these days not to find articles, whitepapers, or webinar announcements, in any of the major industry publications, web portals, and embedded software solution and silicon providers' web sites. The discussion around safety-critical is embedded, however, while a general search of the web might indicate to some that most of the discussion on security centers around the enterprise and desktop domains, it is clear that in the last year or so the dialog and buzz around security and embedded devices has ratcheted up.

Strategic Issues, Trends & Market Drivers

New functionality demands are driving the complexity of device/system development

Controlling software development costs and Security and the Common Criteria time to market.

  • For many years, operating system software for safety-critical systems has been developed in-house or proprietary due to the developer's perceived risk in lack of control and in-depth understanding of the behavior of COTS software.
  • New functionality demands are driving the complexity of device/system development, the volume of software that needs to be developed and tested, and the proof required for certification.
  • The increasing availability of COTS products for operating systems and tools can offer developers a range of choices for safety-oriented software solutions.

Migration to more sophisticated processor architectures.

  • Complexity of processor architectures, especially multicore, increases unpredictability as a result of the lack of availability of mature diagnostic tools or understanding by embedded engineers.
  • Virtualization - Growing need to securely separate critical processes/applications from user-facing functionality in safety - and security-critical devices.
  • Embedded hypervisors (sometimes referred to as microvisors) have emerged as one of the primary software technologies associated with enabling embedded virtualization.

The Common Criteria for Information Technology Security Evaluation (Common Criteria/CC) was created in 1999 by a number of governments as a means to agree on a set or framework of security criteria for Information Technology products.

  • Since the introduction of the Common Criteria there have been outside parties that have looked at the US implementation and raised some concerns including:
  • The process is very costly and depending on the evaluation assurance level being claimed can have an extended time frame measured in years for certification approval.
  • Sunset of the Separation Kernel Protection Profile (SKPP) by the NSA, Information Assurance Directorate effective June 1, 2011.
  • A fast moving COTS market for commodity platforms has resulted in complexity and challenges to product assurance maintenance and costs.
  • These issues are compounded by a fast moving market for commercial products, especially processors, where an evaluated product can be obsolete even before certification.

Market Segmentation, Estimates & Forecasts

More software choices result in growing use of COTS technology; Security market may start small but expansion is imminent

Worldwide Shipments of Commercial
Safety Critical Software
Development, Runtime Technologies
& Related Services Through 2013

As a result of growing use of COTS technology, real-time operating system and tool vendors provide a compelling value proposition to developers through certifiable solutions that can reduce development and testing costs and schedules. This can be particularly advantageous to developers using design automation tools to model and specify the software, include production code generation tools, and generate the documentation required to support certification.

Over the forecast period VDC estimates moderate growth for this product category as OEMs developing safety-critical products will have more commercially available choices to leverage as a means to minimize project costs and schedule risks, control quality and reliability, and increase engineer productivity.

Is Security Important for the
Device / System Under
Development?

(Percent of Respondents)

Ubiquitous connectivity of systems has created security challenges that now has OEMs seeking out COTS solutions to meet their security requirements. The embedded operating system is one product area of growing interest from embedded engineers as a means to meet assurance to whatever level of security is defined for the device/system to be developed.

In 2010 VDC estimates the market to be small in scale for secure OS products as compared to the safety-critical COTS software products market. However, we expect that over the forecast period the market will expand significantly as engineering organizations look to secure OS certified solutions not as an afterthought but integrated into product development, as the foundation for delivering embedded system security.

About the Team

Christopher Rommel - Vice President.

Steve Balacco - Practice Director.

Andre Girard - Senior Analyst.

Jared Weiner - Analyst.

Table of Contents

Executive Summary

  • Page 8. Safety and security
  • Page 9. Safety
  • Page 10. Security
  • Page 11. Safety and security

Scope & Methodology

  • Page 13. Scope of VDC's research
  • Page 14. Scope
  • Page 15. Scope
  • Page 16. Methodology
  • Page 17. Definitions
  • Page 18. Definitions
  • Page 19. Definitions
  • Page 20. Definitions

Market Overview

  • Page 22. Embedded software market - significant growth around intelligent-connected mobile devices

Strategic Issues, Trends & Market Drivers

  • Page 24. New functionality demands are driving the complexity of device/system development
  • Page 25. The upcoming DO-178C standard is an update to the B version originally released in 1992
  • Page 26. Sunset of the Separation Kernel Protection Profile (SKPP) by the NSA
  • Page 27. Select VDC 2011 embedded engineer survey results follow
  • Page 28. Application security issues most important
  • Page 29. Security is important but almost one-quarter of respondents cite no proactive actions being taken
  • Page 30. Application type dictates requirement for device/system security
  • Page 31. Drivers/inhibitors to commercial market for safety and security technologies

Market Segmentation, Estimates & Forecasts

  • Page 33. Safety-critical software contributes to the function of a syste
  • Page 34. More software choices result in growing use of COTS technology that provide compelling value proposition to developers
  • Page 35. VDC expects OEMs to continue to leverage ISVs domain expertise for training and consultation
  • Page 36. Perpetual software licenses represent the largest and one of the most rapidly growing sources of revenue
  • Page 37. Revenue distribution across the geographic regions to be fairly static over the forecast period
  • Page 38. Asia-Pacific region expected to grow fastest with increasing focus on aviation, rail, and other industries in China/India
  • Page 39. Industries requiring safety-critical software are diverse
  • Page 40. The military/aerospace industry estimated largest market in 2010, expected slowest rate of growth over forecast period
  • Page 41. Medical device industry is heavily government regulated due to safety-critical nature of medical applications
  • Page 42. Ubiquitous connectivity and cyber-threats changing how engineers think about software security challenge to development project designs
  • Page 43. Security is a very broad topic
  • Page 44. OEM investments in professional services from suppliers with domain and certification expertise
  • Page 45. Run-time royalties very small source of revenue, OEMS primarily in design and development stages in 2010 timeframe
  • Page 46. Geographic segmentation of market and future growth largely defined by small number of embedded OS suppliers
  • Page 47. Asia-Pacific region expected to grow fastest with increasing focus for security in automotive, mobile phone, consumer electronics industries
  • Page 48. Security has traditionally been viewed as a requirement for government and/or military-based projects.
  • Page 49. Over forecast period expect increasing adoption that spans beyond military/aerospace systems to critical infrastructure and other commercial systems

Competitive Analysis & Position

  • Page 51. Safety-critical landscape fragmented - secure OS landscape compact
  • Page 52. Markets largely defined by suppliers long-history and significant presence in providing solutions and support for military/aerospace industry
  • Page 53. Wind River and Green Hills Software - neck in neck
  • Page 54. Military/aerospace projects driving safety-critical and security segments
  • Page 55. Further expansion beyond automotive critical to ETAS and dSPACE's future growth
  • Page 56. Model-based design, verification, and code generation tools for safety-critical embedded systems key offerings
  • Page 57. QNX Software has been a long-term trusted supplier of real-time operating systems to the embedded systems market

Summaries & Observations

  • Page 59. Summaries & observations
  • Page 60. Summaries & observations

LIST OF EXHIBITS

Safety & Security

  • Exhibit 1. Is Security Important for the Device/System Under Development? (Percent of Respondents, N = 489)
  • Exhibit 2. Types of Security Issues that are Important (Percent of Respondents)
  • Exhibit 3. Current Development Project Actions Taken to Limit Potential Security Issues (Percent of Respondents)
  • Exhibit 4. Confidence in Meeting Security Requirement for Product Under Development (Percent of Respondents)
  • Exhibit 5. Survey Respondents Segmented by the Target Industry/application of their Current Project (Percent of Respondents)
  • Exhibit 6. Worldwide Shipments of Commercial Safety Critical Software Development and Runtime Technologies & Related Services Through 2013 (Millions of Dollars)
  • Exhibit 7. Worldwide Shipments of Commercial Safety Critical Software Development and Runtime Technologies & Related Services, Segmented by Product Category (Percent of Dollars)
  • Exhibit 8. Worldwide Shipments of Commercial Safety Critical Software Development and Runtime Technologies & Related Services, Segmented by Product Category; 2010-2013 (Millions of Dollars)
  • Exhibit 9. Worldwide Shipments of Commercial Safety Critical Software Development and Runtime Technologies & Related Services, Segmented by Geographic Region (Percent of Dollars)
  • Exhibit 10. Worldwide Shipments of Commercial Safety Critical Software Development and Runtime Technologies & Related Services, Segmented by Geographic Region; 2010-2013 (Millions of Dollars)
  • Exhibit 11. Worldwide Shipments of Commercial Safety Critical Software Development and Runtime Technologies & Related Services, Segmented by Vertical Market (Percent of Dollars)
  • Exhibit 12. Worldwide Shipments of Commercial Safety Critical Software Development and Runtime Technologies & Related Services, Segmented by Vertical Market; 2010-2013 (Millions of Dollars)
  • Exhibit 13. Worldwide Shipments of Secure Commercial Common Criteria Operating Systems & Related Services Through 2013 (Millions of Dollars)
  • Exhibit 14. Worldwide Shipments of Secure Commercial Common Criteria Operating Systems & Related Services, Segmented by Product Category (Percent of Dollars)
  • Exhibit 15. Worldwide Shipments of Secure Commercial Common Criteria Operating Systems & Related Services, Segmented by Product Category; 2010-2013 (Millions of Dollars)
  • Exhibit 16. Worldwide Shipments of Secure Commercial Common Criteria Operating Systems & Related Services, Segmented by Geographic Region (Percent of Dollars)
  • Exhibit 17. Worldwide Shipments of Secure Commercial Common Criteria Operating Systems & Related Services, Segmented by Geographic Region; 2010-2013 (Millions of Dollars)
  • Exhibit 18. Worldwide Shipments of Secure Commercial Common Criteria Operating Systems & Related Services, Segmented by Vertical Market (Percent of Dollars)
  • Exhibit 19. Worldwide Shipments of Secure Commercial Common Criteria Operating Systems & Related Services, Segmented by Vertical Market; 2010-2013 (Millions of Dollars)
  • Exhibit 20. Worldwide Shipments of Commercial Safety Critical Software Development and Runtime Technologies & Related Services, Segmented by Leading Vendors (Percent of Dollars)
  • Exhibit 21. Worldwide Shipments of Secure Commercial Common Criteria Operating Systems & Related Services, Segmented by Leading Vendors (Percent of Dollars)

VENDOR PROFILES

  • ADACORE
  • COVERITY, INC.
  • DDC-I
  • DSPACE GMBH
  • ESTEREL TECHNOLOGIES, INC.
  • THE ETAS GROUP
  • GREEN HILLS SOFTWARE
  • IBM CORPORATION
  • LDRA LTD.
  • LYNUXWORKS, INC.
  • MATHWORKS, INC.
  • THE PROGRAMMING RESEARCH GROUP
  • QNX SOFTWARE SYSTEMS
  • SYSGO
  • WIND RIVER
Show More
Pricing
Get Notified
Email me when related reports are published