IDE tools Compilers and Debuggers
Safety-critical software must satisfy strict international standards. Specifically, every line of code that controls aircraft, vehicles, medical devices, industrial machinery, or trains must be developed under a qualified toolchain with full traceability. Sightsys is Israel’s official distributor of safety-critical embedded development and testing tools. Specifically, we represent IAR Systems, SEGGER, SYSGO, AbsInt, Axivion, QA Systems Cantata, Solid Sands, Embedded Office, Cypherbridge, and others — covering the complete certification stack from qualified compilers and TÜV-certified RTOS to provable WCET analysis, sound runtime error detection, MC/DC unit testing, and embedded cybersecurity.
Safety Standards Sightsys Tools Support
Different industries follow different standards. Conveniently, Sightsys’s portfolio covers every major international safety and security standard:
- ISO 26262 — automotive functional safety (ASIL A, B, C, D)
- DO-178C / ED-12C — airborne software (DAL A, B, C, D, E)
- DO-254 — airborne electronic hardware
- ARINC 653 — partitioned avionics architecture
- IEC 62304 — medical device software (Class A, B, C)
- IEC 61508 — functional safety of E/E/PE systems (SIL 1-4)
- EN 50128 — railway software (SW-SIL 0-4)
- IEC 60730 — automatic controls for household appliances
- Common Criteria EAL 5+ — security evaluation for defense systems
- MISRA-C and MISRA-C++ — coding standards for safety-critical C/C++
- AUTOSAR C++ — automotive C++ coding standard
- CWE, CERT-C, CERT-C++ — security rule sets
Toolchain Coverage Matrix
The table below maps each Sightsys safety-critical product to its role in a typical qualified toolchain:
| Product | Role in Safety Toolchain | Highest Standard Coverage |
|---|---|---|
| IAR Embedded Workbench (Functional Safety) | Qualified compiler & IDE | ASIL D / DAL A / Class C / SIL 3 |
| SEGGER embOS-Safe | TÜV-certified RTOS | ASIL D / Class C / SIL 3 / SW-SIL 4 |
| SYSGO PikeOS | Safety hypervisor + ARINC 653 + Cache Coloring | DAL A / ASIL D / EAL 5+ |
| AbsInt aiT WCET Analyzer | Sound worst-case execution time analysis | DO-178C TQL-1 / ASIL D / SIL 4 |
| AbsInt Astrée | Sound runtime error detection | DAL A / ASIL D / Class C |
| AbsInt StackAnalyzer | Provable maximum stack usage | DAL A / ASIL D |
| AbsInt CompCert | Formally verified C compiler | DAL A / EAL 5+ |
| Embedded Office Flexible Safety RTOS | Pre-certified deterministic kernel | ASIL D / Class C / SIL 3 |
| SafeRTOS | TÜV-pre-qualified FreeRTOS migration path | ASIL D / Class C / SIL 3 / DAL A |
| Axivion Suite | MISRA-C, AUTOSAR C++, architecture verification | ASIL D / DAL A / Class C |
| QA Systems Cantata | Unit/integration testing with MC/DC coverage | ASIL D / DAL A / Class C |
| Solid Sands SuperTest + SuperGuard | Compiler & C library qualification | TCL3 / TQL-1 evidence |
| Cypherbridge | Embedded cybersecurity (TLS, SSL, IPsec, SSH) | FDA Premarket / UN R155 |
Detailed Product Coverage
IAR Embedded Workbench — Functional Safety Edition
The compiler is the foundation of every safety-critical build. Accordingly, IAR’s Functional Safety Edition is TÜV SÜD-qualified for ISO 26262 ASIL D, DO-178C DAL A, IEC 62304 Class C, IEC 61508 SIL 3, and EN 50128 SW-SIL 4. Furthermore, every license ships with the complete safety package — compiler, IDE, safety manual, validation report, defect tracking record, and qualification kit. Notably, IAR’s long-term support (LTS) editions match the multi-year lifecycles of certified safety products that often remain in production for 10+ years.
SEGGER embOS-Safe — TÜV-Certified RTOS
SEGGER embOS-Safe is the pre-certified safety version of embOS. Importantly, the microkernel holds independent TÜV certification for ISO 26262 ASIL D, IEC 62304 Class C, IEC 61508 SIL 3, EN 50128 SW-SIL 4, and IEC 60730. Every license ships with the complete certification kit ready for FDA, EASA, and notified-body audit. Read the full embOS-Safe page →
SYSGO PikeOS — Safety Hypervisor with Cache Coloring
Modern safety-critical systems increasingly run mixed-criticality workloads on a single SoC. For example, a Linux-based HMI may coexist with an ASIL D motion controller. SYSGO PikeOS provides hardware-enforced partition isolation certified to DO-178C DAL A, ISO 26262 ASIL D, IEC 61508 SIL 3, EN 50128 SW-SIL 4, and Common Criteria EAL 5+. Notably, PikeOS uniquely implements Cache Coloring — a hardware-aware memory mapping technique that prevents cache-line interference between partitions on multi-core processors. As a result, worst-case execution time (WCET) becomes tightly bounded across cores. Read the full PikeOS page →
AbsInt aiT WCET Analyzer — Provable Worst-Case Execution Time
DO-178C, ED-12C, and ISO 26262 all demand provable upper bounds on task execution time. Unfortunately, testing alone cannot deliver this proof on modern processors with caches, branch predictors, and out-of-order pipelines. Fortunately, the AbsInt aiT WCET analyzer uses abstract interpretation to compute mathematically sound WCET bounds straight from the binary. As a result, aiT delivers a tight, provable upper bound that no testing campaign could ever produce — and certification authorities accept it as compliant evidence.
Notably, aiT supports multi-core WCET analysis on Arm Cortex-A/R/M, PowerPC, Infineon AURIX TriCore, Renesas RH850, MIPS, and SPARC/LEON. Furthermore, when paired with SYSGO PikeOS Cache Coloring, interference drops at the hardware level — therefore, aiT’s bounds become significantly tighter. Importantly, aiT ships with tool qualification kits for DO-178C TQL-1, ISO 26262 TCL3, IEC 61508 SIL 4, EN 50128 SW-SIL 4, and IEC 62304 Class C.
AbsInt Astrée — Sound Runtime Error Detection
Astrée is a sound parametric static analyzer that proves the absence of runtime errors and data races. Specifically, Astrée flags program defects from unspecified or undefined behavior in C and C++, defects from invalid concurrent behavior, and properties relevant for functional safety. Importantly, “sound” means Astrée never misses a possible error — no false negatives — which is exactly what DO-178C DAL A and ED-12C demand.
Astrée proves the absence of division by zero, integer/floating-point overflow, out-of-bounds array access, invalid pointer dereference, buffer overflow, reads from uninitialized variables, data races, deadlocks, and MISRA-C/CWE violations. Famously, Astrée verifies the flight control software of the Airbus A340 and A380 — widely regarded as the highest-assurance code in commercial aviation. Furthermore, Astrée serves nuclear, automotive ASIL D, railway, and space programs around the world.
AbsInt StackAnalyzer — Provable Maximum Stack Usage
Stack overflow is one of the most insidious failure modes in embedded software. Specifically, it shows up as random memory corruption rather than a clean crash. As a result, stack bugs often pass pre-release testing only to fail in production. Conveniently, StackAnalyzer proves the maximum stack depth your application can ever reach, again using sound static analysis on the binary executable. Therefore, you can size your stack with full confidence and generate the certification evidence DO-178C and ISO 26262 require. Importantly, StackAnalyzer correctly handles recursive calls, function pointers, interrupt nesting, and RTOS task stacks for FreeRTOS, embOS-Safe, SafeRTOS, PikeOS, and others.
AbsInt CompCert — Formally Verified C Compiler
CompCert is the world’s first commercially supported C compiler with formally proven correctness. Specifically, the compilation process carries a mathematical proof — written and checked in the Coq proof assistant — that the generated machine code preserves the semantics of the source code. As a result, CompCert eliminates an entire class of compiler-introduced bugs. Notably, CompCert is the right choice for the highest-assurance avionics, defense, and security-critical code where compiler bugs simply cannot be tolerated. Furthermore, the formal proof significantly reduces the certification burden for the compilation step itself.
Embedded Office Flexible Safety RTOS
For teams seeking an alternative to embOS-Safe, Embedded Office’s Flexible Safety RTOS delivers constant context-switch times regardless of task count, hardware-enforced memory protection via MPU/MMU, and built-in hardware monitoring. Additionally, the kernel holds assessments for ISO 26262 ASIL D, IEC 62304 Class C, IEC 61508 SIL 3, and EN 50128 compliance and ships with full certification documentation.
SafeRTOS — TÜV-Pre-Qualified FreeRTOS Path
For Israeli teams already using FreeRTOS in prototypes, SafeRTOS from WITTENSTEIN High Integrity Systems provides a TÜV-pre-qualified migration path with minimal code changes. Importantly, SafeRTOS is qualified for ISO 26262 ASIL D, IEC 62304 Class C, IEC 61508 SIL 3, DO-178C, and EN 50128.
Axivion Suite — Static Analysis with Architecture Verification
Coding standard compliance is mandatory in safety-critical software. Notably, Axivion enforces MISRA-C, MISRA-C++, AUTOSAR C++, and CWE rule sets — while also verifying that your software architecture stays consistent with its design. Furthermore, Axivion catches cyclic dependencies, unauthorized module interactions, and undefined behavior. Additionally, Axivion is pre-qualified for ISO 26262 ASIL D, DO-178C DAL A, IEC 62304 Class C, and IEC 61508 SIL 3.
QA Systems Cantata — MC/DC Coverage Unit Testing
ISO 26262 ASIL D, DO-178C DAL A, IEC 62304 Class C, and EN 50128 SW-SIL 4 all require Modified Condition/Decision Coverage (MC/DC) for safety-critical functions. Therefore, Cantata automates unit and integration testing for embedded C/C++ with full MC/DC coverage. Importantly, Cantata is TÜV-qualified for the highest assurance levels and runs on host or target hardware. Furthermore, Cantata generates audit-ready coverage reports for FDA, EASA, and notified-body submission.
Solid Sands SuperTest + SuperGuard — Compiler Qualification
Every safety standard requires evidence that the compiler itself does not introduce bugs. Conveniently, SuperTest validates GCC, IAR, Clang, and proprietary compilers against ISO C/C++ specifications. Similarly, SuperGuard does the same for the C standard library. Together, they generate the test reports and traceability evidence required for tool qualification under ISO 26262 TCL3, DO-178C TQL-1, IEC 62304, IEC 61508, and EN 50128.
Cypherbridge — Embedded Cybersecurity Stack
Modern safety-critical devices increasingly need secure communications — over-the-air updates, cloud telemetry, and inter-device authentication. Specifically, Cypherbridge provides production-ready embedded TLS 1.3, DTLS, SSH, VPN, and IPsec/IKEv2 libraries optimized for resource-constrained safety-critical devices. Furthermore, the stack supports the cryptographic primitives required by FDA Premarket Cybersecurity Guidance, UN R155 automotive cybersecurity, and emerging EU NIS2 requirements.
Industry Verticals We Support
Automotive — ISO 26262 ASIL D
ADAS controllers, EV battery management, infotainment gateways, and powertrain ECUs all demand ISO 26262 evidence. Specifically, Israeli automotive teams combine IAR + embOS-Safe + AbsInt aiT/Astrée + Axivion + Cantata + Kvaser for the complete ASIL D toolchain. Read the full Automotive page →
Avionics — DO-178C DAL A
Flight control, mission computers, sensor fusion, and certifiable UAV platforms demand DO-178C DAL A evidence. Notably, the AbsInt aiT WCET analyzer + Astrée + PikeOS + IAR combination is the proven stack for Israeli aerospace exports. Read the full Avionics page →
Medical Devices — IEC 62304 Class C
Surgical robotics, diagnostic imaging, patient monitoring, life-support equipment, drug delivery, and IVD all run on IEC 62304-classified software. Conveniently, the IAR + embOS-Safe + Axivion + Cantata + Astrée + Cypherbridge stack covers FDA 510(k), De Novo, PMA, and CE MDR submissions. Read the full Medical Device page →
Industrial Machinery — IEC 61508 SIL 3
Programmable safety controllers, industrial robots, collaborative machinery, and process automation all require IEC 61508 evidence. Importantly, embOS-Safe + Flexible Safety RTOS + AbsInt + Axivion + Cantata cover the typical SIL 3 toolchain.
Railway — EN 50128 SW-SIL 4
Communications-Based Train Control (CBTC), interlocking, and on-board train management demand EN 50128 SW-SIL 4 evidence. Specifically, PikeOS + AbsInt aiT/Astrée + Cantata cover the proven railway stack.