Rust core library partly polished for industrial safety spec
(2025/12/04)
- Reference: 1764810672
- News link: https://www.theregister.co.uk/2025/12/04/rust_core_library_partly_polished/
- Source link:
Memory-safe Rust code can now be more broadly applied in devices that require electronic system safety, at least as measured by International Electrotechnical Commission (IEC) standards.
The latest update to [1]Ferrocene , an open source Rust compiler toolchain for safety-and mission-critical systems, comes with IEC 61508 (SIL 2) certification for portions of the core library.
"Rust is impractical to run in embedded or safety-critical environments without core, and core can't be certified without rigorous validation using toolchains like Ferrocene," said Florian Gilcher, managing director at Ferrous Systems, in a [2]blog post . "This release reaffirms our commitment to providing modern Rust compilers – and now certified libraries – to meet the needs of the safety-critical world."
[3]
Stamping out memory safety bugs has become a priority for those concerned with [4]the security of public and private sector systems . But developing for embedded systems still largely involves the use of C or C++ code, which face [5]memory safety [6]challenges – an issue that a new C/C++ compiler called [7]Fil-C may address .
[8]
[9]
The certification of a portion of the Rust core library has the potential to bring more Rust code to regulated industries. The programming language's strong memory safety guarantees should help reduce memory-related errors and improve the stability of associated applications, assuming [10]new bugs aren't introduced along the way.
[11]Linux 6.18 arrives as the year's final drop and likely next LTS
[12]CPython may go Rusty, but older platforms risk getting iced out
[13]Linus Torvalds is OK with vibe coding as long as it's not used for anything that matters
[14]Ubuntu 25.10's Rusty sudo holes quickly welded shut
SIL represents [15]Safety Integrity Level , a measure of system safety performance. It summarizes the probability of failure on demand, where SIL 4 represents the most dependable and SIL 1 represents the least.
The SIL 4 designation is appropriate for systems that require maximum reliability because failures have the potential for mass casualties – think nuclear reactor controls or railway systems. SIL 3 tends to be applied to systems that pose a high risk during failure, such as chemical engineering kit, medical devices, or [16]oxygen sensors . SIL 2 might be applied to industrial robots. And SIL 1 would work for CCTV cameras or building lighting.
Certification firm [17]TÜV SÜD has already blessed the Ferrocene toolchain for safety-focused development based on ISO 26262 (ASIL D), IEC 61508 (SIL 3), and IEC 62304 (Class C). The outfit also supports qualification efforts to reach assurance levels SIL 4 and DO-178C (DAL C).
[18]
With the help of partners [19]Sonair and [20]Kiteshield , Ferrocene devs have certified a substantial subset of the core [21]library so that it meets the IEC 61508 (SIL 2) standard.
The Ferrocene-certified core subset provides developers with access to types and functions such as: Option, Clone, str, pointers, and most primitives, such as slices. It's intended to be used for qualified development targets like x86_64 Linux, x86_64 or Armv8-A QNX Neutrino, or RTOS on Armv8-A or Armv7E-M.
Sonair is using Ferrocene for acoustic detection and ranging (ADAR) in robots sporting Armv8-A and an Armv7E-M subsystem. Kiteshield is developing a Rust-based Ultra-Wideband safety system for mining that's designed to prevent collisions between manually operated and autonomous machinery. ®
Get our [22]Tech Resources
[1] https://ferrocene.dev/en
[2] https://ferrous-systems.com/blog/ferrocene-libcore-news-release/
[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2aTEVaCgTh0tCvRuoCOFKjAAAAFE&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[4] https://www.theregister.com/2025/06/27/cisa_nsa_call_formemory_safe_languages/
[5] https://www.theregister.com/2025/09/16/safe_c_proposal_ditched/
[6] https://www.theregister.com/2025/03/02/c_creator_calls_for_action/
[7] https://www.theregister.com/2025/11/05/djb_tries_filc_and_approves/
[8] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aTEVaCgTh0tCvRuoCOFKjAAAAFE&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[9] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33aTEVaCgTh0tCvRuoCOFKjAAAAFE&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[10] https://www.theregister.com/2025/11/13/ubuntu_rust_sudo_hole/
[11] https://www.theregister.com/2025/12/03/kernel_version_618/
[12] https://www.theregister.com/2025/11/19/cpython_may_use_rust/
[13] https://www.theregister.com/2025/11/18/linus_torvalds_vibe_coding/
[14] https://www.theregister.com/2025/11/13/ubuntu_rust_sudo_hole/
[15] https://www.ektos.net/articles/safety-integrity-levels-sil-what-they-are-and-how-to-calculate-them/
[16] https://www.n2ors.com/oxygen-sensors-n2-ors-sil-3/
[17] https://www.tuvsud.com/en-us
[18] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aTEVaCgTh0tCvRuoCOFKjAAAAFE&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[19] https://www.sonair.com/
[20] https://mobilarisindustrialsolutions.se/news/introducing-kite-shield-enabling-safe-and-effective-coexistence-of-automated-and-manned-machines/
[21] https://public-docs.ferrocene.dev/main/core/index.html
[22] https://whitepapers.theregister.com/
The latest update to [1]Ferrocene , an open source Rust compiler toolchain for safety-and mission-critical systems, comes with IEC 61508 (SIL 2) certification for portions of the core library.
"Rust is impractical to run in embedded or safety-critical environments without core, and core can't be certified without rigorous validation using toolchains like Ferrocene," said Florian Gilcher, managing director at Ferrous Systems, in a [2]blog post . "This release reaffirms our commitment to providing modern Rust compilers – and now certified libraries – to meet the needs of the safety-critical world."
[3]
Stamping out memory safety bugs has become a priority for those concerned with [4]the security of public and private sector systems . But developing for embedded systems still largely involves the use of C or C++ code, which face [5]memory safety [6]challenges – an issue that a new C/C++ compiler called [7]Fil-C may address .
[8]
[9]
The certification of a portion of the Rust core library has the potential to bring more Rust code to regulated industries. The programming language's strong memory safety guarantees should help reduce memory-related errors and improve the stability of associated applications, assuming [10]new bugs aren't introduced along the way.
[11]Linux 6.18 arrives as the year's final drop and likely next LTS
[12]CPython may go Rusty, but older platforms risk getting iced out
[13]Linus Torvalds is OK with vibe coding as long as it's not used for anything that matters
[14]Ubuntu 25.10's Rusty sudo holes quickly welded shut
SIL represents [15]Safety Integrity Level , a measure of system safety performance. It summarizes the probability of failure on demand, where SIL 4 represents the most dependable and SIL 1 represents the least.
The SIL 4 designation is appropriate for systems that require maximum reliability because failures have the potential for mass casualties – think nuclear reactor controls or railway systems. SIL 3 tends to be applied to systems that pose a high risk during failure, such as chemical engineering kit, medical devices, or [16]oxygen sensors . SIL 2 might be applied to industrial robots. And SIL 1 would work for CCTV cameras or building lighting.
Certification firm [17]TÜV SÜD has already blessed the Ferrocene toolchain for safety-focused development based on ISO 26262 (ASIL D), IEC 61508 (SIL 3), and IEC 62304 (Class C). The outfit also supports qualification efforts to reach assurance levels SIL 4 and DO-178C (DAL C).
[18]
With the help of partners [19]Sonair and [20]Kiteshield , Ferrocene devs have certified a substantial subset of the core [21]library so that it meets the IEC 61508 (SIL 2) standard.
The Ferrocene-certified core subset provides developers with access to types and functions such as: Option, Clone, str, pointers, and most primitives, such as slices. It's intended to be used for qualified development targets like x86_64 Linux, x86_64 or Armv8-A QNX Neutrino, or RTOS on Armv8-A or Armv7E-M.
Sonair is using Ferrocene for acoustic detection and ranging (ADAR) in robots sporting Armv8-A and an Armv7E-M subsystem. Kiteshield is developing a Rust-based Ultra-Wideband safety system for mining that's designed to prevent collisions between manually operated and autonomous machinery. ®
Get our [22]Tech Resources
[1] https://ferrocene.dev/en
[2] https://ferrous-systems.com/blog/ferrocene-libcore-news-release/
[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2aTEVaCgTh0tCvRuoCOFKjAAAAFE&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[4] https://www.theregister.com/2025/06/27/cisa_nsa_call_formemory_safe_languages/
[5] https://www.theregister.com/2025/09/16/safe_c_proposal_ditched/
[6] https://www.theregister.com/2025/03/02/c_creator_calls_for_action/
[7] https://www.theregister.com/2025/11/05/djb_tries_filc_and_approves/
[8] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aTEVaCgTh0tCvRuoCOFKjAAAAFE&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[9] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33aTEVaCgTh0tCvRuoCOFKjAAAAFE&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[10] https://www.theregister.com/2025/11/13/ubuntu_rust_sudo_hole/
[11] https://www.theregister.com/2025/12/03/kernel_version_618/
[12] https://www.theregister.com/2025/11/19/cpython_may_use_rust/
[13] https://www.theregister.com/2025/11/18/linus_torvalds_vibe_coding/
[14] https://www.theregister.com/2025/11/13/ubuntu_rust_sudo_hole/
[15] https://www.ektos.net/articles/safety-integrity-levels-sil-what-they-are-and-how-to-calculate-them/
[16] https://www.n2ors.com/oxygen-sensors-n2-ors-sil-3/
[17] https://www.tuvsud.com/en-us
[18] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/front&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aTEVaCgTh0tCvRuoCOFKjAAAAFE&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[19] https://www.sonair.com/
[20] https://mobilarisindustrialsolutions.se/news/introducing-kite-shield-enabling-safe-and-effective-coexistence-of-automated-and-manned-machines/
[21] https://public-docs.ferrocene.dev/main/core/index.html
[22] https://whitepapers.theregister.com/