The invidis Yearbook is the digital-signage industry's flagship annual. In its 2026 chapter on signage operating systems, it describes SpinetiX DSOS in a single, precise sentence — and it is worth reading closely.
"The Swiss firm Spinetix has its own Digital Signage Operating System (DSOS) that is tuned specifically to its in-house line of solid-state media players. It is a 'hardened' OS, with all of the non-essential services that can junk up an operating system stripped away, making it all but immune to security vulnerabilities."
Source: invidis Yearbook 2026 — NextGen Signage, operating-systems chapter.
An assessment, not a slogan
The phrase that matters is the last one: "all but immune to security vulnerabilities." It reads as the reviewer's own assessment. A few lines earlier the same chapter describes a competing player only as "touted as 'un-hackable'" — that is, repeating the manufacturer's marketing at arm's length. For DSOS the qualifier is dropped and the security property is stated plainly. The wording is editorial, drawn from the analyst's reading of the architecture rather than from a company profile.
The same conclusion, reached from the outside
None of this is new to anyone who has read our security page. DSOS is a purpose-built, minimal operating system: no Windows, no Android, no general-purpose browser stack, no app store — and therefore little inherited attack surface, with a zero-CVE record since 2007. What is useful here is the convergence: an independent reviewer, describing the platform in his own words, arrives at the same place we do.
| What we publish | The Yearbook's wording |
|---|---|
| Built on Yocto Linux, stripped to the bare minimum | "non-essential services that can junk up an operating system stripped away" |
| No Windows, no Android, no attack surface | "a 'hardened' OS" |
| Zero CVE since 2007 | "all but immune to security vulnerabilities" |
For a buyer's cybersecurity team, third-party agreement on the core claim is more persuasive than any datasheet. It is the difference between a vendor saying a platform is secure and a reviewer concluding that it is.
Built deliberately, for buyers who can tell the difference
That conclusion follows from how the platform is built. DSOS was designed as a single-purpose appliance OS from the start, not a general-purpose system hardened after the fact. The security properties the Yearbook describes are a consequence of that decision, made two decades ago and held to since.
The same principle runs through how we deliver. With 123CMS, a customer runs the estate on their own branded, data-sovereign CMS — built around their business rather than adapted from a generic console. A platform is hardest to fault when it is built on purpose, for people who know what they are looking at.