PXROS-HR: Advanced Real-Time Operating System for TriCore and AURIX
PXROS-HR is a high-reliability real-time operating system (RTOS) designed specifically for Infineon's TriCore and AURIX microcontrollers. With a modern micro-kernel architecture and object-oriented design, PXROS-HR is built to meet the strict demands of multi-core embedded systems in automotive and industrial applications.
The latest version of PXROS-HR brings enhanced encapsulation and robustness through fine-grained hardware protection mechanisms, leveraging the advanced features of the AURIX architecture. This approach ensures safe separation of tasks and fault containment across system components.
Certified Safety for Automotive Applications
PXROS-HR is officially certified for functional safety. Developed by HighTec, it has been approved for safety-related use up to SIL 3 (IEC 61508) and ASIL D (ISO 26262) — the highest integrity levels required in automotive and industrial systems.
The certification, issued by TÜV Nord, confirms that PXROS-HR is fit for use in critical systems such as powertrain, braking, and ADAS, where safety and reliability are non-negotiable. This simplifies compliance for automotive developers working under ISO 26262 standards.
Designed for Modern Multi-Core Systems
PXROS-HR is optimized for multi-core AURIX MCUs, supporting both symmetric and asymmetric multiprocessing. It allows tasks to be executed in isolated capsules, enhancing system reliability and protecting against unintended interference. Tasks and interrupt handlers are separated and controlled using the AURIX MPU (Memory Protection Unit), ensuring that illegal memory access is detected and contained instantly at runtime.
With support for dynamic reconfiguration, developers can reload and debug tasks during operation—without halting the running system. This enables the integration of safety and non-safety applications on the same hardware platform, while maintaining strict boundaries and preventing error propagation.
Encapsulation, Interrupt Transparency and System Control
One of the key principles of PXROS-HR is encapsulation—each task operates within its own space and communicates through message objects and signals. The kernel never locks interrupts, allowing full interrupt transparency and ultra-fast response times. This makes PXROS-HR ideal for systems that require deterministic real-time behavior and efficient interrupt handling.
Handlers (interrupt service routines) are tightly linked to their corresponding tasks and can use selected PXROS services, such as sending events. The system ensures these services are executed at the correct point in time, without adding overhead at the interrupt level.
Memory and Resource Management
PXROS-HR includes a robust resource management system based on quotas. Each task has access to its own memory and object pools, preventing global bottlenecks and ensuring that local failures do not impact overall system performance. All objects—such as mailboxes, messages, and memory blocks—can be created and released dynamically during runtime, as long as free objects are available in the system pool.
This approach supports partially dynamic systems where memory usage is tightly controlled, supporting high-reliability applications.
Communication and Safety Through the MPU
Communication between tasks and handlers is based on message passing and events, not shared memory. Message content is protected by the MPU, ensuring that only one task has access at any given time. When messages are exchanged via mailboxes, ownership is transferred, enabling secure and traceable task interactions.
This method guarantees data integrity and simplifies certification, as the RTOS enforces strict access control at runtime using the hardware’s built-in memory protection features.
Timing and Event Control
As an event-driven micro-kernel, PXROS-HR does not rely on periodic system ticks. It uses delay jobs as software timers, triggered after a defined number of application-defined ticks. This gives developers full control over timing granularity and allows efficient scheduling of functions without interrupting critical system operations.
PXROS-HR also supports time slicing where needed, providing flexibility between deterministic execution and fairness among tasks.
Built for Performance and Safety
Unlike older generation RTOS platforms that compromise between safety and performance, PXROS-HR takes full advantage of modern processing power available in TriCore-based MCUs. It allows real-time task switching, atomic resource transfer, and error isolation—all with minimal overhead.
This clean and efficient architecture enables the implementation of safety concepts such as redundancy, voting, and functional diversity, even in time-sensitive applications.
Training and Support
HighTec provides dedicated training programs, including 2-day on-site courses for PXROS-HR, with optional modules on MCAL and SafeTlib integration. For teams new to PXROS-HR, interactive web presentations and Q&A sessions are also available, offering a hands-on overview and practical guidance for fast adoption.
Conclusion
PXROS-HR is a next-generation RTOS built for the future of automotive and industrial embedded systems. With its certified safety, robust memory protection, and fine-grained task isolation, it enables developers to build high-performance, safety-critical systems on TriCore and AURIX with confidence. Whether you’re developing a complex ECU or a high-integrity industrial controller, PXROS-HR provides the reliability and flexibility needed to succeed.
ITEC is the official representative of HighTec in Israel, providing local access to PXROS-HR – a high-reliability RTOS for Infineon's TriCore and AURIX microcontrollers.
