Your search keyword '"DO-178C"' showing total 103 results

1. Towards Continuous Certification of Software Systems for Aerospace

Author

Ribeiro, J. Eduardo Ferreira, van der Aalst, Wil, Series Editor, Ram, Sudha, Series Editor, Rosemann, Michael, Series Editor, Szyperski, Clemens, Series Editor, Guizzardi, Giancarlo, Series Editor, Marchesi, Lodovica, editor, Goldman, Alfredo, editor, Lunesu, Maria Ilaria, editor, Przybyłek, Adam, editor, Aguiar, Ademar, editor, Morgan, Lorraine, editor, Wang, Xiaofeng, editor, and Pinna, Andrea, editor

Published

2025

2. Weaving Agility in Safety-Critical Software Development for Aerospace: From Concerns to Opportunities

Author

J. Eduardo Ferreira Ribeiro, Joao Gabriel Silva, and Ademar Aguiar

Subjects

Agile, aerospace, DO-178C, FAA, safety-critical, software development, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Domain-specific standards and documents heavily regulate safety-critical systems. One example is the DO-178C standard for aerospace, which guides organizations to achieve system safety and evidence for their certification. Under such regulated contexts, most organizations use traditional development processes, in contrast to the massive adoption of Agile in the software industry. Among other benefits, Agile methods promise faster delivery and better flexibility to address customer needs. Adopting Agile methods and practices are possible in aerospace because the DO-178C standard does not prescribe concrete software development methods. In spite of that, Agile development is not used in DO-178C contexts. To help change that, our research aims to understand whether and how organizations engineering safety-critical software systems for aerospace may benefit from Agile methods and practices. We analyzed the DO-178C standard and confirm that it is compatible with Agile methods. Then, we present a systematic literature mapping of adopting Agile in software development for aerospace, where we identified significant concerns, recurrent issues, and several challenges. Some real industry aerospace projects provided us with important data and the perspective of domain experts about the pros and cons of Agile methods in this context. We conclude by proposing an agenda of research opportunities to improve safety-critical software development towards agility that we consider worthy of further research, application and confirmation in wider contexts.

Published

2024

3. Research on Software Test Coverage Analysis Methods Under DO-178C

Author

Chen, Shuang, Li, Kan, Editor-in-Chief, Li, Qingyong, Associate Editor, Fournier-Viger, Philippe, Series Editor, Hong, Wei-Chiang, Series Editor, Liang, Xun, Series Editor, Wang, Long, Series Editor, Xu, Xuesong, Series Editor, Chen, Charles, editor, Singh, Satya Narayan, editor, Saxena, Sandeep, editor, and Wheeb, Ali Hussein, editor

Published

2023

4. Airborne Software Quality Assurance and Management Based on DO-178C

Author

ZHOU Pei

Subjects

do-178c, airborne software, quality assurance, quality management, airworthiness, Motor vehicles. Aeronautics. Astronautics, TL1-4050

Abstract

DO-178C as an acceptable compliance standard for airborne software airworthiness,it is clearly required that the software quality assurance(SQA)process must be included in the airborne software integration process.Based on the software life cycle definition,process and data of airborne software,the implementation of the software quality assurance process is analyzed from three aspects of objectives,activities,and compliance review based on DO-178C. In combination with software project quality management techniques and tools,the DO-178C-based software quality management method is studied from the three processes of software quality management planning,software quality management and software quality control,and some practical engineering suggestions are given.The results show that,by combining software quality assurance and quality management,the evidence of airworthiness requirements are generated,the civilian airborne software meeting the requirements is provided,and the quality and continuous improvement measurement are effectively ensured.

Published

2021

5. Safety assessment methods for avionics software system

Author

Mao, Jiawen, Jia, Huamin, and Madani, Irfan

Subjects

Software safety, software development process, software safety assessment process, DO-178C, ARP4754A, functional hazard assessment, fault tree analysis, failure mode and effects analysis, formal method, NuSMV

Abstract

Nowadays, the avionics software has been becoming more and more critical for both civil and military aircraft. However, the software may become crazy sometimes and may cause the catastrophic result if any failure in software. Therefore, the software safety assessment is not only crucial to the specific software, but also for the system and aircraft. Although there are some industry standards as guidelines for development of software system, applications of these standards to practical software systems are still challenged and hard to operate in practice. This thesis tries to solve this problem. After analyses and summaries of the system safety assessment process and existing software safety assessment process in different fields, research wants to propose the systematic and comprehensive software safety assessment process and method for avionics software. The thesis presents the research process, and proposes one suitable avionics software safety assessment process. Meanwhile, thesis uses a real functional block in flight management system as a case study, and then conducts the software safety requirement assessment based on the proposed software safety assessment method. After analysis the result of case study, this proposed software safety assessment process and methods can quickly and correctly identify the software design errors. So, this analysis can use to prove the feasibility and validity of this proposed software safety assessment process and methods, which will help engineers modify every software design errors at the early stage in order to guarantee the software safety.

Published

2017

6. Model Based Approach for Design and Development of Avionics Display Application

Author

Santosh Kumar, P., Nanda, Manju, Rajshekhar Rao, P., Jose, Lovin K., Tsihrintzis, George A., Series Editor, Virvou, Maria, Series Editor, Jain, Lakhmi C., Series Editor, Satapathy, Suresh Chandra, editor, Raju, K. Srujan, editor, Shyamala, K., editor, Krishna, D. Rama, editor, and Favorskaya, Margarita N., editor

Published

2020

7. Enhancing Usability in Aerospace Software Development Processes Through Gamification

Author

Alexandersson, Joel, Choura, Lucia, Alexandersson, Joel, and Choura, Lucia

Abstract

This thesis explores the integration of gamification into the Software Development Process (SDP) at Saab, a defense and aerospace company. The thesis aims to address some of the complexities of the SDP standard used in the industry, DO-178C. The research primarily focuses on how gamification principles can enhance the usability of software development processes in aerospace. The method includes a pre-study, an inception phase, and two sprints, where a gamified tool is designed, implemented, and revised based on feedback from developers at Saab. The results of interviews after these sprints, along with insights from the inception phase, are discussed to evaluate the effectiveness and impact of the gamified tool. The findings indicate that gamification can make the SDP more approachable and engaging for developers, with elements like real-time progress tracking, quizzes, and certificates being well-received. However, the effectiveness of these gamification elements varies among individuals, underscoring the importance of tailoring these elements to user preferences and the specific context of aerospace software development. This research contributes to the understanding of gamification's role in improving SDP usability in the aerospace industry, highlighting the need for careful customization of gamification to individuals and the context. Although the study provides valuable insights, it also acknowledges limitations, including the hypothetical nature of the gamified tool used and the reliance on user feedback, suggesting future research should involve more practical implementations and a focus on long-term impacts on productivity and user satisfaction.

Published

2024

8. Reuse-Based Agile Development Process for Drone Software Systems.

Author

Hussein, Mahmoud and Nouacer, Réda

Subjects

AGILE software development, SYSTEMS software, COMPUTER software development, COMPUTER software

Abstract

Drones can perform air operations that are hard to be executed using manned aircrafts. The usage of drones in different domains brings significant environmental benefits and economic savings while decreasing risks to human life. Recently, a number of approaches have been introduced to support the development of drone software systems. However, developing customized drone software based on end-user needs is still a time consuming process. Such delay in software production does not match end-users expectations. Therefore, in the COMP4DRONES project (C4D, for short), we propose an agile-development process that is based on reuse to shorten the drone software development. In this process, based on the user requirements, a number of reusable components are selected from a repository that matches the user requirements. These components are then integrated to have a fully functioning drone system. This repository will be filled with reusable components that are being developed during the C4D project (i.e. the key enabling technologies for drones). [ABSTRACT FROM AUTHOR]

Published

2022

9. Application of a Process-Oriented Build Tool for Flight Controller Development Along a DO-178C/DO-331 Process

Author

Hochstrasser, Markus, Myschik, Stephan, Holzapfel, Florian, Barbosa, Simone Diniz Junqueira, Series Editor, Filipe, Joaquim, Series Editor, Kotenko, Igor, Series Editor, Sivalingam, Krishna M., Series Editor, Washio, Takashi, Series Editor, Yuan, Junsong, Series Editor, Zhou, Lizhu, Series Editor, Ghosh, Ashish, Series Editor, Hammoudi, Slimane, editor, Pires, Luís Ferreira, editor, and Selic, Bran, editor

Published

2019

10. 面向适航标准的机载软件测试验证方法综述.

Author

谭莉娟, 郑巍, 刘友林, 樊鑫, and 杨丰玉

Abstract

Copyright of Journal of Computer Engineering & Applications is the property of Beijing Journal of Computer Engineering & Applications Journal Co Ltd. and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2021

11. 面向适航标准的机载软件测试验证工具综述.

Author

刘友林, 郑巍, 谭莉娟, 樊鑫, and 杨丰玉

Abstract

Copyright of Journal of Computer Engineering & Applications is the property of Beijing Journal of Computer Engineering & Applications Journal Co Ltd. and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2021

12. Criteria for software to safety-critical complex certifiable systems development

Author

N. K. Gorelits, A. S. Gukova, and E. V. Peskov

Subjects

кт-178с, do-178c, разработка по, анализ по, выбор по, сертифицируемые системы, сложные системы, разработка сложных систем, авионика, кбо, процессы жц, жизненный цикл, управление конфигурацией, системная инженерия., Electronic computers. Computer science, QA75.5-76.95

Abstract

Nowadays there is an actual problem in aviation industry - how to make the development of complex safety-critical systems certifiable according to international and domestic standards and regulations like DO-178C, DO-254, ARP 4754A, ARP 4761 etc. In the article configuration management process from the development lifecycle of DO-178C is considered as the main source of criteria for the development tool selection. Selected criteria can be applied to software tool, which supports entire development lifecycle of aviation software, as well as to software tools supporting some individual lifecycle processes. The activities of configuration management process provide work with all project lifecycle data, its storage, integrity, security, manageability and information support for data exchange between the remaining lifecycle processes, maintenance of the history of changes etc. Compliance with the principles of the configuration management process allows project managers to control development, ensure the required quality and reliability of the product; also, its certifiability and the necessary level of confidence in security, reduce financial and time development costs. As example of using criteria one of the most widely known in industry software tool for requirements development and management was analyzed for compliance with the chosen criteria.

Published

2018

13. Certifiable onboard real-time operation system JetOS for Russian aircrafts design

Author

Yu. A. Solodelov and N. K. Gorelits

Subjects

операционная система реального времени, осрв, интегрированная модульная авионика, има, сертификация, do-178c, кт-178с, arinc 653, авионика, Electronic computers. Computer science, QA75.5-76.95

Abstract

JetOS is a prospective onboard real-time operating system (RTOS). Nowadays GosNIIAS develops JetOS in the scope of the research and development project. One of the most important tasks during JetOS development is to create the DO-178C certification kit, which will allow JetOS to be used for development and modification of avionics for civil aircraft. Today there is no operating system certified in accordance with DO-178C in Russia, therefore the JetOS creation is the matter of current importance. Using DO-178C requires the developer to have very strict development processes. The arrangement of processes that satisfy the DO-178C requirements is a very responsible and demanding task because of high expectations in the fields of safety and security. JetOS is being developed primarily for onboard equipment based on the integrated modular avionics (IMA). One of the key features of IMA is the ability to execute several functional applications on one target onboard module. The obvious consequence of this feature is a necessity to have a time and resource partitioning of applications. In avionics field application partition along with a host of other features is defined in ARINC 653 international standard, so its support is the significant requirement for JetOS. ARINC 653 defines application programming interface (API) and modes of operation for onboard functional software. JetOS supports the up-to-date version of ARINC 653 (2015) with supplementary services. JetOS also supports the safety-critical graphical library - OpenGL SC; the special implementation of the OpenGL SC library is being developed along with JetOS itself. OpenGL SC services are used to draw two-dimensional and three-dimensional pictures by onboard functional software. JetOS is a certifiable modular cyber-safe real-time operating system, which is designed in order to support several hardware architectures and to be easily adopted for different hardware boards. The scope of the JetOS project also includes creation of the tools necessary for functional software development, especially aircraft systems.

Published

2018

14. Assessment of the quality of the text of safety standards with industrial semantic technologies.

Author

de la Vara, Jose Luis, Bahamonde, Hector, and Ayora, Clara

Subjects

*SAFETY standards, *INDUSTRIAL safety, *PASSIVE voice, *REQUIREMENTS engineering, *IDENTIFICATION

Abstract

• We present an approach to assess the quality of the text of safety standards. • The approach is based on text quality analysis with RQA - Quality Studio. • The approach can detect issues such as imprecision, ambiguity, and inconsistency. • We also present the application of the approach to the DO-178C standard. • The application results show that the approach can be an effective means. Most safety-critical systems are subject to rigorous assurance processes to justify that the systems are dependable. These processes are typically conducted in compliance with safety standards, e.g., DO-178C for software in aerospace. This can be a prerequisite so that a system is allowed to operate. However, following these standards can be challenging in practice because of issues in their text such as imprecision, ambiguity, and inconsistency. These issues can hinder compliance, delaying it and making it more expensive, or even preventing it. As a solution, we aim to define means that aid in the identification of the issues and thus facilitate their resolution. We have developed an approach for assessment of the quality of the text of safety standards with RQA - Quality Studio, an industrial tool for requirements quality analysis with semantic technologies. The approach is based on the extraction of analysis units from a standard, on the specification and exploitation of ontologies, and on the reuse of metrics provided by RQA - Quality Studio to evaluate text quality. The approach has been applied on the DO-178C standard, assessing its text as a whole and its different main individual parts. The quality of most of the text of the standard can be regarded as high. The most frequent issues in DO-178C are the use of passive voice, of synonyms, and of imprecise modal verbs. To the best of our knowledge, this is the first study that provides a means for a broad and detailed assessment of the quality of the text of safety standards, leading to the identification of specific aspects that could be improved in the text and indicating the extent to which quality issues affect it. [ABSTRACT FROM AUTHOR]

Published

2024

15. A Framework for Assessing Safety Argumentation Confidence

Author

Wang, Rui, Guiochet, Jérémie, Motet, Gilles, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Crnkovic, Ivica, editor, and Troubitsyna, Elena, editor

Published

2016

16. Optimization of Generated Test Data for MC/DC

Author

El-Sayed, Ghada, Salama, Cherif, Wahba, Ayman, Fujita, Hamido, editor, and Guizzi, Guido, editor

Published

2015

17. Source-Code-to-Object-Code Traceability Analysis for Avionics Software: Don’t Trust Your Compiler

Author

Brauer, Jörg, Dahlweid, Markus, Pankrath, Tobias, Peleska, Jan, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Koornneef, Floor, editor, and van Gulijk, Coen, editor

Published

2015

18. Formal Modeling of Airborne Software High-Level Requirements Based on Knowledge Graph

Author

Wu, Wenjuan, Ma, Dianfu, Zhao, Yongwang, Zhao, Xianqi, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Kobsa, Alfred, Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Goebel, Randy, Series editor, Tanaka, Yuzuru, Series editor, Wahlster, Wolfgang, Series editor, Siekmann, Jörg, Series editor, Buchmann, Robert, editor, Kifor, Claudiu Vasile, editor, and Yu, Jian, editor

Published

2014

19. Enabling Cross-Domain Reuse of Tool Qualification Certification Artefacts

Author

Gallina, Barbara, Kashiyarandi, Shaghayegh, Zugsbratl, Karlheinz, Geven, Arjan, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Kobsa, Alfred, Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Bondavalli, Andrea, editor, Ceccarelli, Andrea, editor, and Ortmeier, Frank, editor

Published

2014

20. Towards Enabling Level 3A AI in Avionic Platforms

Author

Zaeske, Wanja Marlo Moritz, Brust, Clemens-Alexander, Lund, Andreas, and Durak, Umut

Subjects

Avionics||Resilience||ARINC 653||DO-178C||Fault-Tolerance, Fault-Tolerance, Resilience, DO-178C, Avionics, ARINC 653

Abstract

The role of AI evolves from human assistance over human/machine collaboration towards fully autonomous systems. As the push towards more autonomy subsequently removes the reliance on a human overseeing the system, means of self supervision must be provided to enable safe operations. This work explores dynamic reconfiguration to provide resilience to unforeseen environmental conditions that exceed the systems capabilities, but also against normal faults. We focus on providing the means for this in an ARINC 653 compliant environment, since we target avionics platforms. Scheduling and communication are two major aspects of dynamic reconfiguration. Hence, we discuss multiple respective implementation approaches. The third pillar of reconfiguration, the process of deciding when to reconfigure is also investigated. Combining these yields the building blocks for a self-supervising system.

Published

2023

21. OOT, DO-178C and SPARK

Author

Chapman, Roderick, Jennings, Trevor, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Romanovsky, Alexander, editor, and Vardanega, Tullio, editor

Published

2011

22. Position Paper: DO-178C/ED-12C and Object-Orientation for Critical Systems

Author

Daniels, Dewi, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Romanovsky, Alexander, editor, and Vardanega, Tullio, editor

Published

2011

23. Applying agile methods to aircraft embedded software: an experimental analysis.

Author

Mirachi, Samoel, Costa Guerra, Valdir, Cunha, Adilson Marques, Dias, Luiz Alberto Vieira, and Villani, Emilia

Subjects

AGILE software development, EMBEDDED computer systems, AIRPLANE cockpits, COMMERCIAL aeronautics software, REAL-time computing

Abstract

This paper discusses the applicability of agile methods to aircraft embedded software development. It presents the main results of an experiment that combines agile practices from Scrum with model-based development and distributed development. The experiment consists of the development of an aircraft cockpit display system divided in five distributed teams. Three features are analysed and quantified, using the output artefacts of each team: the artefacts' quality, the adherence to agile methods, and the adherence to standard DO-178C. The main conclusion of the experiment is that there is a high correlation between the adherence to agile methods and the artefacts' quality, motivating the use of agile methods in aircraft industry. Also, the experiment evinced that agile methods does not specifically address the integration of distributed teams and the hardware/software integration. This lacuna affects the artefacts' quality. The results of the experiment emphasize the importance of concentrating future work in the proposal of specific agile practices for these activities. [ABSTRACT FROM AUTHOR]

Published

2017

24. Checklists for compliance to DO-178C and DO-278A standards.

Author

Jiménez, José Andrés, Merodio, José Amelio Medina, and Sanz, Luis Fernández

Subjects

*SOFTWARE reliability, *COMPUTATIONAL complexity, *FEATURE extraction, *STANDARD deviations, *COMPUTER systems

Abstract

The growth and complexity of airborne systems requires the elaboration of specific standards for software certification, mainly due to the characteristics of safety and reliability. As a consequence it is also necessary to improve the corresponding verification processes including the techniques that facilitate checking compliance with these required features. The goal of this paper is to analyse and develop a guide to implement the use of checklists as a formal inspection technique in the verification of compliance to all aspects referred by standards DO-178C and DO-278A. We have analysed in detail the normative under study and we have generated a set of checklists with a distributed application along the identified verification processes. These checklists have subsequently been validated from two points of view: one as a part of the usual process and another through the opinion of experts in the field. [ABSTRACT FROM AUTHOR]

Published

2017

25. Static Data and Control Coupling Analysis

Author

Kästner, Daniel, Mauborgne, Laurent, Wilhelm, Stephan, Mallon, Christoph, Ferdinand, Christian, and Kästner, Daniel

Subjects

software architecture, data coupling, control coupling, DO-178C, static analysis, program slicing, interference analysis, abstract interpretation, taint analysis, [INFO.INFO-ES] Computer Science [cs]/Embedded Systems, [INFO.INFO-PL] Computer Science [cs]/Programming Languages [cs.PL]

Abstract

All current safety norms require determining the data and control flow in the source code and making sure that it is compliant to the intended control and data flow as defined in the software architecture. In traditional static code analysis, data accesses via pointer variables and control flow by function pointer calls might be missed. Using sound static analysis based on abstract interpretation, it is possible to guarantee the absence of runtime errors that could cause memory corruption and control flow corruption. Furthermore, it is possible to guarantee that in the analysis, all data and function pointer targets are considered and that the possible data and control coupling is fully captured. In this article we propose a comprehensive methodology for statically computing a safe approximation of the data and control coupling between software components. Our approach incorporates global static data and control flow analysis, taint analysis and program slicing. It can detect critical data and control flow errors and allows to complement traditional code coverage criteria by the degree of data and control coupling covered by the testing process, helping to identify relevant previously untested scenarios. It can also demonstrate freedom of spacial interference between software components at the source code level.

Published

2022

26. DO-178C Certification of General-Purpose GPU Software: Review of Existing Methods and Future Directions

Author

Matina Maria Trompouki, Leonidas Kosmidis, Universitat Politècnica de Catalunya. Departament d'Arquitectura de Computadors, Barcelona Supercomputing Center, and Universitat Politècnica de Catalunya. CAP - Grup de Computació d'Altes Prestacions

Subjects

Computer science, Informàtica::Enginyeria del software [Àrees temàtiques de la UPC], Aerospace electronics, Certification, computer.software_genre, Codes, Aviònica, DO-178C, Software, Avionics, Graphics, Digital avionics, Avionics -- Certification, Productivity, business.industry, Software architecture, Costs, Aeronàutica i espai::Aviònica [Àrees temàtiques de la UPC], Aviònica digital, Compiler, Enginyeria de programari, General-purpose computing on graphics processing units, Software engineering, business, Graphics processing units, computer, Software review

Abstract

—General-Purpose GPU software is considered for use in avionics to satisfy the increased computational requirements of future systems. Therefore, it needs to be certified following the DO-178C guidance as all airborne software. In this work, we review the existing methods in the literature, we analyse their advantages and disadvantages, and we discuss how they can be combined to obtain certification with lower effort and cost. Our focus is restricted on application-level software, under the premise that successful completion of verification of avionics graphics GPU software products has been demonstrated, so their GPU compiler has been considered acceptable for these already DO-178C certified products, or existing qualified GPU compilers exist. Finally, we discuss upcoming solutions for certified general purpose GPU computing . This work was performed within the Airbus TANIAGPU Project ADS (E/200) in collaboration with the project partners Airbus Defence and Space, Madrid, Spain and CoreAVI, Canada. It was also partially supported by the European Space Agency (ESA) through the GPU4S (GPU for Space) activity, the Spanish Ministry of Economy and Competitiveness under grants PID2019-107255GB and FJCI-2017-34095 (Spanish State Research Agency / http://dx.doi.org/10.13039/501100011033) and the HiPEAC Network of Excellence.

Published

2021

27. Analysis of Russian software supporting onboard systems development lifecycle in context of import substitution policy

Subjects

Computer science, business.industry, Software development, Information technology, ComputerApplications_COMPUTERSINOTHERSYSTEMS, Product data management, Certification, Engineering management, Software, Product lifecycle, DO-178C, General Earth and Planetary Sciences, Software analysis pattern, business, General Environmental Science

Abstract

Avionic industry in Russian Federation faces difficulties in organizing the reliable instrumental support of development processes. State-wide active direction on digitalization of the economy doesn’t facilitate the issue solving. The choice of software tools is an important component of success while developing complex certifiable software such as aircraft onboard systems. The same situation could be observed in other industries as well. Nowadays the Russian IT-market provides a sufficient amount of different software that can cover the development lifecycle processes of complex certifiable software for avionics in a varying degree. This article analyses the current situation on Russian software market and the impact of import substitution policy of Russian Federation on software developers and consumers – industrial enterprises. Details of regulation document DO-178C for onboard software development are considered to show the importance of correct choice of project’s instrumental landscape. Certain types of specialized software tools for development processes automating are considered. Authors identified the basic groups of tool functionality that provide support for the development lifecycle of onboard software. The Russian and foreign PLM (Product Lifecycle Management) and PDM (Product Data Management) systems and other software were examined for compliance with the necessary functionality. For comparative analysis the method based on additive verification of software by criteria was proposed. Research results allowed authors to make a conclusion about current Russian software level in comparison with worldwide analogues. Also some prospects of Russian software further evolution have received justification based on results of this research. Recommendations for the directions of software development and completion are given. The analysis, presented in the article, can be useful for avionic and other industries enterprises which need to choose some software for support the development lifecycle processes in new and ongoing projects of complex systems development. Also specialists who are interested in the current state of Russian IT industry can find some valuable information in this article.

Published

2020

28. CARD-RM: A Reference Model for Airborne Software.

Author

Marques, Johnny Cardoso, Yelisetty, Sarasuaty Megume Hayashi, Da Cunha, Adilson Marques, and Dias, Luiz Alberto Vieira

Abstract

This paper summarizes the preliminary aspects of a doctoral research that has been conducted at the Brazilian Aeronautics Institute of Technology (ITA). This research has the objective of developing the CARD-RM, a Certifiable, Agile, Reusable, and Disciplined Reference Model for airborne software. It aims to define a generic model that can be instantiated in each airborne software project, integrating agile practices, in order to improve efficiency without interference in DO-178C compliance. [ABSTRACT FROM PUBLISHER]

Published

2013

29. Adapting Software Product Lines for complex certifiable avionics software.

Author

Sozen, Neset and Merlo, Ettore

Abstract

In avionics, the size and complexity of softwareintensive systems increased considerably during recent years. Besides the size and the complexity, certification constraints also had negative impact on the cost and schedule of avionics software projects. Model-Driven Development (MDD) and Software Product Lines Engineering (SPLE) offer an opportunity to improve the avionics software development process, reduce the cost and improve the time to market. Complexity of avionics software and certification constraints pose several challenges to SPLE adoption. Software Product Lines (SPL) framework must provide bi-directional traceability between requirements and low level software assets (e.g. code and test), facilitate production of certification deliverables, allow validation on the target platform and provide code coverage. Also, SPL offer a scheme to manage the complexity of avionics software systems through variability management tools. [ABSTRACT FROM PUBLISHER]

Published

2012

30. ASTM F3269 - An Industry Standard on Run Time Assurance for Aircraft Systems

Author

Christoph Torens, Pranav Nagarajan, Suresh K. Kannan, Mike E. Vukas, and George F. Wilber

Subjects

Unmanned Aircraft Systems, Industy Standard, certification, DO-178C, Computer science, Industry standard, Run Time Assurance, Manufacturing engineering

Published

2021

31. Model-driven Framework for Requirement Traceability

Author

Jameela Al-Jaroodi and Nader Kesserwan

Subjects

General Computer Science, Traceability, Requirements traceability, Modeling language, business.industry, Computer science, Model transformation, Software development, DO-178C, Regression testing, business, Software engineering, computer, Software verification, computer.programming_language

Abstract

In software development, requirements traceability is often mandated. It is important to apply to support various software development activities like result evaluation, regression testing and coverage analysis. Model-Driven Testing is one approach to provide a way to verify and validate requirements. However, it has many challenges in test generation in addition to the creation and maintenance of traceability information across test-related artifacts. This paper presents a model-based methodology for requirements traceability that relies on leveraging model transformation traceability techniques to achieve compliance with DO-178C standard as defined in the software verification process. This paper also demonstrates and evaluates the proposed methodology using avionics case studies focusing on the functional aspects of the requirements specified with the UCM (Use Case Maps) modeling language.

Published

2021

32. A Lean and Highly-automated Model-Based Software Development Process Based on DO-178C/DO-331

Author

Micheal Saleab, Stephan Myschik, Yi Lai, Pranav Nagarajan, Shanza Ali Zafar, Markus Hochstrasser, Florian Holzapfel, Kevin Schmiechen, Konstantin Dmitriev, Daniel Dollinger, Technische Universität Munchen - Université Technique de Munich [Munich, Allemagne] (TUM), and Universität der Bundeswehr München [Neubiberg]

Subjects

FOS: Computer and information sciences, Computer science, Maintainability, ComputerApplications_COMPUTERSINOTHERSYSTEMS, 02 engineering and technology, [INFO.INFO-SE]Computer Science [cs]/Software Engineering [cs.SE], Software development process, Computer Science - Software Engineering, lean software development, DO-178C, 0202 electrical engineering, electronic engineering, information engineering, DO-331, safety critical systems, requirements management, agile development, business.industry, Civil aviation, software assurance, 020202 computer hardware & architecture, Software Engineering (cs.SE), Workflow, Life-critical system, model-based development, Lean software development, [INFO.INFO-ES]Computer Science [cs]/Embedded Systems, Software engineering, business, Software assurance, Agile software development

Abstract

International audience; The emergence of a global market for urban air mobility and unmanned aerial systems has attracted many startups across the world. These organizations have little training or experience in the traditional processes used in civil aviation for the development of software and electronic hardware. They are also constrained in the resources they can allocate for dedicated teams of professionals to follow these standardized processes. To fill this gap, this paper presents a custom workflow based on a subset of objectives derived from the foundational standards for safety critical software DO-178C/DO-331. The selection of objectives from the standards is based on the importance, degree of automation, and reusability of specific objectives. This custom workflow is intended to establish a lean and highly automated development life cycle resulting in higher quality software with better maintainability characteristics for research and prototype aircraft. It can also be proposed as means of compliance for software of certain applications such as unmanned aircraft systems, urban air mobility and general aviation. By producing the essential set of development and verification artifacts, the custom workflow also provides a scalable basis for potential future certification in compliance with DO-178C/DO-331. The custom workflow is demonstrated in a case study of an Autopilot Manual Disconnection System.

Published

2020

33. Towards DO-178C certification of adaptive learning UAV agents designed with a cognitive architecture

Author

John Pyrgies

Subjects

Correctness, business.industry, Computer science, Cyber-physical system, 020207 software engineering, Computational intelligence, 02 engineering and technology, Certification, Cognitive architecture, Formal methods, Software, DO-178C, 020204 information systems, 0202 electrical engineering, electronic engineering, information engineering, Reinforcement learning, Adaptive learning, Software engineering, business, Testability

Abstract

Adaptive and Learning Agents (ALAs) bring computational intelligence to their Cyber Physical host systems to adapt to novel situations encountered in their complex operational environment. They do so by learning from their experience to improve their performance. RTCA DO-178C specifies a stringent certification process for airborne software which represents several challenges when applied to an ALA in regards of functional completeness, functional correctness, testability and adaptability. This research claims that it is possible to certify an Adaptive Learning Unmanned Aerial Vehicle (UAV) Agent designed as per a Cognitive Architecture with current DO-178C certification process when leveraging a qualified tool (DO-330), Model-Based Development and Verification (DO-331) and Formal Methods (DO-333). The research consists in developing, as a case study, an ALA embedded in a UAV aimed at neutralizing rogue UAVs in the vicinity of civil airports and test it in the field. This article is the plan to complete, by end 2022, a dissertation currently in its confirmation phase.

Published

2020

34. Satisfying DO-178C Structural Coverage Objectives

Author

V. P. Kozyrev and M. A. Saburov

Subjects

Process (engineering), Computer science, business.industry, 020207 software engineering, 0102 computer and information sciences, 02 engineering and technology, 01 natural sciences, Task (project management), DO-178C, 010201 computation theory & mathematics, Test execution, 0202 electrical engineering, electronic engineering, information engineering, Software engineering, business, Software, Software verification

Abstract

Structural coverage analysis is an important task for the development of safety-critical systems. In particular, structural coverage analysis is one of the objectives specified in RTCA DO-178C for the airborne software verification process. Structural coverage analysis is normally supported by the tools that collect coverage information in the course of test execution. This paper concerns with the problems and methods of structural coverage collecting in order to specify the required functionality of structural coverage collecting tools, which is necessary to provide their compliance with the DO-178C objectives.

Published

2018

35. Criteria for software to safety-critical complex certifiable systems development

Author

E.V. Peskov, GosNIIAS, Moscow, Russia, N.K. Gorelits, and A.S. Gukova

Subjects

Computer science, media_common.quotation_subject, управление конфигурацией, кбо, сертифицируемые системы, lcsh:QA75.5-76.95, Software, DO-178C, do-178c, разработка по, кт-178с, Quality (business), авионика, Software analysis pattern, General Environmental Science, media_common, Requirements management, Configuration management, процессы жц, сложные системы, business.industry, Software development, разработка сложных систем, Risk analysis (engineering), Data exchange, выбор по, General Earth and Planetary Sciences, анализ по, жизненный цикл, lcsh:Electronic computers. Computer science, системная инженерия, business

Abstract

Nowadays there is an actual problem in aviation industry - how to make the development of complex safety-critical systems certifiable according to international and domestic standards and regulations like DO-178C, DO-254, ARP 4754A, ARP 4761 etc. In the article configuration management process from the development lifecycle of DO-178C is considered as the main source of criteria for the development tool selection. Selected criteria can be applied to software tool, which supports entire development lifecycle of aviation software, as well as to software tools supporting some individual lifecycle processes. The activities of configuration management process provide work with all project lifecycle data, its storage, integrity, security, manageability and information support for data exchange between the remaining lifecycle processes, maintenance of the history of changes etc. Compliance with the principles of the configuration management process allows project managers to control development, ensure the required quality and reliability of the product; also, its certifiability and the necessary level of confidence in security, reduce financial and time development costs. As example of using criteria one of the most widely known in industry software tool for requirements development and management was analyzed for compliance with the chosen criteria.

Published

2018

36. Building Trust in a Model-Based Automatic Code Generator

Author

Elie Richa, Andres Toom, and S. Tucker Taft

Subjects

Source lines of code, Generator (computer programming), Correctness, Computer science, business.industry, 020207 software engineering, 02 engineering and technology, Reliability engineering, DO-178C, Embedded software, 020204 information systems, Embedded system, Component (UML), 0202 electrical engineering, electronic engineering, information engineering, Code (cryptography), General Earth and Planetary Sciences, Code generation, business, General Environmental Science

Abstract

If we wish to use an automatic code generator for the modelbased development of a safety-critical system, how can we gain sufficient confidence in the correctness of the tool? For a tool like a code generator, which could insert an error into an airborne system, the US Federal Aviation Administration (FAA) requires the highest level of tool qualification [2], Tool Qualification Level 1 (TQL-1), if the tool is going to be used for a Level-A subsystem (one whose failure could be catastrophic). Achieving TQL-1 for such a code generator is analogous to achieving Level A certification for an embedded software component, but the lines of code in the tool can be substantially greater. In this paper we describe approaches to manage the complexity of specification and testing required for Level-1 qualification of a tool like an automatic code generator, a tool which includes multiple phases that transform an input model into optimized generated code.

Published

2017

37. ASTERIOS Checker : A Verification Tool for Certifying Airborne Software

Author

Methni, Amira, Ohayon, Emmanuel, Thurieau, François, KRONO‐SAFE, and SAFRAN Electronics & Defense

Subjects

certification, DO-178C, real-time, DO-330, Psy model, [INFO]Computer Science [cs], [INFO.INFO-ES]Computer Science [cs]/Embedded Systems, ASTERIOS

Abstract

International audience; As the number of embedded systems has grown regularly over the past decades, the development and certification costs of safety-critical software has increased accordingly. For the aeronautics industry, certification activities are covered by DO-178C, which provides guidance for developing airborne software; and its companion document DO-330 covers the qualification of tools used for the development of such software. In this paper, we present ASTERIOS , a solution for the design, generation and execution of safety critical real-time applications; then we present the certification strategy we advocate for systems developed using our technology. This strategy relies on the use of an automated verification tool called ASTERIOS Checker , qualified in accordance with DO-330. This paper presents the technology behind the code generation engine of ASTERIOS and the verification activities automated by ASTERIOS Checker. It shows how the use of such an automated, qualified tool enables to benefit from design abstractions and relatively complex code generation engines while developing certified systems at the highest level of certification.

Published

2020

38. Safety versus Security in Aviation, Comparing DO-178C with Security Standards

Author

Christoph Torens

Subjects

DO-178C, Aeronautics, cybersecurity, Computer science, Aviation, business.industry, Software standards, Unbemannte Luftfahrzeuge, DO-326A, business, software safety

Abstract

Software development in safety-critical domains is dictated by software standards, such as "Software Considerations in Airborne Systems and Equipment Certification" (DO-178C). This standard is an acceptable means of compliance for achieving the required level of software safety in aviation. In addition to software safety, the security aspects of cyber-physical systems has become increasingly important in recent years, especially for unmanned aircraft systems with an increasing number of autonomous functions. The importance of this topic has grown with recent updates to security standards in 2018 and new regulations proposed by EASA in 2019. However, in literature, software safety and cybersecurity often get handled completely separate. Since most software engineers in aviation need to consider software safety and the corresponding DO-178C standard in some form, this work offers an introduction to the more recent software security standards. To do this, a brief overview of software standards as well as security standards is presented. The focus of the comparison between software safety and cybersecurity will be on "Airworthiness Security Process Specification" (DO-326A), as well as "Airworthiness Security Methods and Considerations" (DO-356A), since these standards, similar to DO-178C, also handle the initial airworthiness considerations. Additional standards, such as the standard "Information Security Guidance for Continuing Airworthiness" (DO-355) and others will also be introduced.

Published

2020

39. Applying ieee recommended practice for distributed simulation engineering and execution process for modeling and simulation based airborne systems engineering

Author

Torsten Gerlach, Umut Durak, and Andrea D'Ambrogio

Subjects

Settore ING-INF/05, Computer science, business.industry, Process (engineering), media_common.quotation_subject, Certification, computer.file_format, DSEEP, DO 331, ARP 4754A, Modeling and simulation, Settore INF/01, Software, DO-178C, Systems engineering, DO-330, System integration, Quality (business), State (computer science), Executable, business, computer, media_common

Abstract

ARP 4754A (Guidelines for Development of Civil Aircraft and Systems) promotes modeling and simulation for aircraft systems integration, requirements validation and implementation verification. DO-331, the model-based development and verification supplement to DO-178C (Software Considerations in Airborne Systems and Equipment Certification) further endorses simulation for verification of Specification Models, Design Models and executable code. While both state that the quality of simulation should be assured, there is no particular guidance for its qualification. This paper investigates the application of IEEE Recommended Practice for Distributed Simulation Engineering and Execution Process (DSEEP) for the qualification of simulation as a tool for airborne systems engineerinng.

Published

2020

40. Modelling DO-178C Assurance Needs: A Design Assurance Level-Sensitive DSL

Author

Nicolas Metayer, Andrés Paz, and Ghizlane El Boussaidi

Subjects

business.industry, Computer science, 020207 software engineering, 02 engineering and technology, Certification, Avionics, DO-178C, 020204 information systems, Safety assurance, 0202 electrical engineering, electronic engineering, information engineering, Avionics software, Software design, Use case, Model-driven architecture, Software engineering, business, computer, computer.programming_language

Abstract

Avionics systems are relying more on software to control their behaviour. However, engineering such software is a complex task. Even more so due to their safety-critical nature. Aviation authorities require suppliers to provide appropriate safety assurance through the certification of compliance with DO-178C to a determined software design assurance level. Such a concern is leading the avionics software industry to consider and incorporate effective engineering methods that can support them in their certification endeavours. This paper presents a domain specific modelling language (DSML) providing a documentation infrastructure that enforces certification information mandated by DO-178C and its supplements according with the software's design assurance level. Focus is given to the conceptual model of DO-178C and its supplements, which lies behind the proposed DSML to support the features it delivers. The DSML was built and implemented as a UML profile. Three different use cases for the DSML are illustrated in an avionics case study.

Published

2019

41. Applying COCOMO II for a DO-178C Safety-Critical Software Effort Estimation

Author

Maurício Gonçalves Vieira Ferreira and Lucas Pereira dos Santos

Subjects

Cost estimate, Engineering management, COCOMO, Computer science, lcsh:Motor vehicles. Aeronautics. Astronautics, 020209 energy, Aerospace Engineering, 02 engineering and technology, lcsh:Technology, DO-178C, Software, 0203 mechanical engineering, Approximation error, Project management, 0202 electrical engineering, electronic engineering, information engineering, 020301 aerospace & aeronautics, Software engineering, lcsh:T, business.industry, General Engineering, Software development, Reliability engineering, Multiplier (economics), lcsh:TL1-4050, business, Cost estimates

Abstract

This paper provides a real example of applying COCOMO II as an estimation technique for the required software development effort in a safety-critical software application project following the DO-178C processes. The main goal and contribution of the case study is to support the research on software effort estimation and to provide software practitioners with useful data based on a real project. We applied the method as it is, by correlating the effort multiplier factors with the complexity and objectives introduced by the DO-178C level A application, resulting in an estimated effort. The rationales for each scale factor and effort multiplier selection were also described in detail. By comparing the estimated values with the actual required data, we found a magnitude of relative error (MRE) of 40% and provided alternatives for future work in order to increase the effort estimation accuracy in safety-critical software projects.

Published

2019

42. Tool Qualification Requirements Comparison and Analyses Between RTCA/DO-178B and RTCA/DO-178C+DO-330

Author

Xinai Zhang, Yi Zhao, and Jianfang Liu

Subjects

History, DO-178C, Computer science, DO-178B, Computer Science Applications, Education, Reliability engineering

Abstract

The RTCA/DO-330 “Software Tool Qualification Consideration” is released after the RTCA/DO-178B was widely used for tool qualification in the latest 20 years. In the RTCA/DO-178C collection, the RTCA/DO-330 is used together with RTCA/DO-178C to define the tool qualification requirements for airborne software development. This paper compares and analyses the different requirements in RTCA/DO-178B and RTCA/DO-178C+DO-330 to provide an indication of what are the new requirements and what has not been changed. For those unfamiliar with the tool qualification requirements in RTCA/DO-178C and RTCA/DO-330, this paper serves to provide an entry point to this new certification guidance.

Published

2021

43. Industrial Application of a Partitioning Scheduler to Support Mixed Criticality Systems

Author

Stephen Law and Iain Bate and Benjamin Lesage, Law, Stephen, Bate, Iain, Lesage, Benjamin, Stephen Law and Iain Bate and Benjamin Lesage, Law, Stephen, Bate, Iain, and Lesage, Benjamin

Abstract

The ever-growing complexity of safety-critical control systems continues to require evolution in control system design, architecture and implementation. At the same time the cost of developing such systems must be controlled and importantly quality must be maintained. This paper examines the application of Mixed Criticality System (MCS) research to a DAL-A aircraft engine Full Authority Digital Engine Control (FADEC) system which includes studying porting the control system’s software to a preemptive scheduler from a non-preemptive scheduler. The paper deals with three key challenges as part of the technology transitions. Firstly, how to provide an equivalent level of fault isolation to ARINC 653 without the restriction of strict temporal slicing between criticality levels. Secondly extending the current analysis for Adaptive Mixed Criticality (AMC) scheduling to include the overheads of the system. Finally the development of clustering algorithms that automatically group tasks into larger super-tasks to both reduce overheads whilst ensuring the timing requirements, including the important task transaction requirements, are met.

Published

2019

44. Flight Simulator-Based Verification for Model-Based Avionics Applications on Multi-Core Targets

Author

Carlos C. Insaurralde, Peer Ulbig, Timo Stripf, Christoph Torens, Umut Durak, and David Müller

Subjects

Multi-core processor, multi-core, Computer science, Simulator, x-in-the-loop, Avionics, Flight simulator, Simulation, Do-178C

Published

2019

45. Tailoring Traditional Software Life Cycles to Ensure Compliance of RTCA DO-178C and DO-331 with Model-Driven Design

Author

Johnny Cardoso Marques and Adilson Marques da Cunha

Subjects

020301 aerospace & aeronautics, Software, DO-178C, 0203 mechanical engineering, business.industry, Computer science, 02 engineering and technology, business, Compliance (psychology), Reliability engineering

Published

2018

46. Towards DO-178C compatible tool design

Author

Yijia Xu

Subjects

Traceability, Computer science, business.industry, Software development, Static program analysis, Python (programming language), Avionics, Test case, DO-178C, Computer engineering, Abstract syntax tree, business, computer, computer.programming_language

Abstract

In software development, testing often takes more than half the total development time (Pan 1999). Test case design and execution of test procedures consume most of the testing time. Thus, automatically generating test cases and automatically detecting errors in test procedures prior to execution is highly advantageous. This thesis proposes a new approach to further automate test case design and the test procedure development process. Several open-source products exist to automate test case design, but they have limitations including test cases that do not trace back to models; test cases that are not reusable for libraries; and limiting test cases to generation on their own test environment. This limits their support for the important, new avionics standard, DO-178C (RTCA 2012). The first contribution of the thesis is a technique for test code generation that, compared to existing products, is faster, provides improved traceability to models, and supports reusable test procedures that can be generated on any testing environment. To address the current limitations, the new approach utilizes the Simulink Design Verifier and an open-source constraint solver to generate test cases. The technique allows each test case to be traced back to an expression and to the original model. Detecting errors in manually written test procedures before testing starts is also critical to efficient verification. It can save hours or even days if errors are detected in the early test procedure design stage. However, analysis done here of a set of open source code analysis tools shows that they cannot detect type and attribute errors effectively. The second contribution of the thesis is to develop a static code analyzer for Python code that detects bugs that could cause automated test procedures to crash. The analyzer converts a Python code to an abstract syntax tree and detects all type and attribute errors by

Published

2018

47. Building a software requirements specification and design for an avionics system

Author

Andrés Paz and Ghizlane El Boussaidi

Subjects

business.industry, Computer science, Software development, Software requirements specification, 020207 software engineering, 02 engineering and technology, Certification, Guideline, Avionics, Software, DO-178C, Documentation, 0202 electrical engineering, electronic engineering, information engineering, Software design, Avionics software, Software engineering, business

Abstract

As with many of the products and systems that pervade us, aircraft rely more and more on software for controlling the behaviour of their systems. In consequence, the field has seen increased work around more up-to-date, effective software engineering technologies for aiding avionics software providers in reducing software and development complexities and supporting them in their certification endeavours. However, there is a lack in the literature of reusable, comprehensive references about avionics software developments in conformance with DO-178C. Moreover, there is a need for a benchmark specification to support the evaluation of proposed engineering approaches in the field. This paper presents a software development case study of an avionics control software for a landing gear system. All the documentation for the software's requirements specification and design has been developed to conform with the DO-178C guideline and the applicable DO-331 and DO-332 supplements for model-based and object-oriented development, respectively. A requirements specification and design methodology is proposed and followed for the construction of the software in the case study. Furthermore, the paper discusses the observations, and challenges and issues experienced throughout the process.

Published

2018

48. A Study on Applying The DO-178C to The Control SW Development of The Military Aircraft Intercom Based on CMMI

Author

In-Bok Yoon

Subjects

Engineering, DO-178C, Software, Airworthiness, business.industry, Control (management), Systems engineering, business, Intercom, Manufacturing engineering, Capability Maturity Model Integration

Published

2015

49. An experimental Study using ACSL and Frama-C to formulate and verify Low-Level Requirements from a DO-178C compliant Avionics Project

Author

Frank Dordowsky

Subjects

FOS: Computer and information sciences, Computer Science - Logic in Computer Science, business.industry, Computer science, lcsh:Mathematics, Avionics, lcsh:QA1-939, Formal methods, lcsh:QA75.5-76.95, Logic in Computer Science (cs.LO), Domain (software engineering), Software Engineering (cs.SE), Software development process, Computer Science - Software Engineering, DO-178C, Formal specification, Systems engineering, Avionics software, lcsh:Electronic computers. Computer science, Software engineering, business, Formal verification

Abstract

Safety critical avionics software is a natural application area for formal verification. This is reflected in the formal method's inclusion into the certification guideline DO-178C and its formal methods supplement DO-333. Airbus and Dassault-Aviation, for example, have conducted studies in using formal verification. A large German national research project, Verisoft XT, also examined the application of formal methods in the avionics domain. However, formal methods are not yet mainstream, and it is questionable if formal verification, especially formal deduction, can be integrated into the software development processes of a resource constrained small or medium enterprise (SME). ESG, a Munich based medium sized company, has conducted a small experimental study on the application of formal verification on a small portion of a real avionics project. The low level specification of a software function was formalized with ACSL, and the corresponding source code was partially verified using Frama-C and the WP plugin, with Alt-Ergo as automated prover. We established a couple of criteria which a method should meet to be fit for purpose for industrial use in SME, and evaluated these criteria with the experience gathered by using ACSL with Frama-C on a real world example. The paper reports on the results of this study but also highlights some issues regarding the method in general which, in our view, will typically arise when using the method in the domain of embedded real-time programming., Comment: In Proceedings F-IDE 2015, arXiv:1508.03388

Published

2015

50. Software certification of safety-critical avionic systems: DO-178C and its impacts

Author

Oh Sung Ahn, SeungBum Hong, Kyung Ryoon Oh, and Wonkeun Youn

Subjects

Engineering, ARP4754, Airworthiness, business.industry, Aerospace Engineering, Avionics, DO-178B, DO-178C, Space and Planetary Science, DO-254, Systems engineering, Avionics software, Software verification and validation, Electrical and Electronic Engineering, business

Abstract

The rapid growth in the use of software in airborne systems and equipment in the early 1980s resulted in a need for industry-accepted guidance for satisfying airworthiness requirements [1]. To assure the reliability of the software and to ultimately ensure the safety of passengers, the U.S. Federal Aviation Administration (FAA) has imposed software certifcation suited to the development of safety-critical systems. The FAA has accepted guidelines developed by the Radio Technical Commission for Aeronautics (RTCA) that respond to the necessity of reliability and safety, which are vital in this feld: DO-178B/EUROCAE ED-12B (DO-178B), titled Software Considerations in Airborne Systems and Equipment Certifcation [1]. DO-178B prescribes design assurance guidance for airborne software. The aim of DO-178B is to assure that software developed for avionics systems is reliable and safe to use in fight [2].

Published

2015