html5-img
1 / 26

ObjectAda Raven Safety Critical Software Development Environment

ObjectAda Raven Safety Critical Software Development Environment. Objective. Acquaint you with our Ada95 products and services Development Systems Product Goals & Philosophy Product Line Organization & Availability Technical Characteristics Support For Safety Critical Certification

graham
Download Presentation

ObjectAda Raven Safety Critical Software Development Environment

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. ObjectAda RavenSafety CriticalSoftware DevelopmentEnvironment

  2. Objective • Acquaint you with our Ada95 products and services • Development Systems • Product Goals & Philosophy • Product Line Organization & Availability • Technical Characteristics • Support For Safety Critical Certification • DO-178B Level A • Aonix Is ….. • Leading Supplier for Ada83 • Only Supplier for Ada95 3

  3. Product Philosophy • Stratified, evolvable product line • Value & price competitive • Support different needs at appropriate prices • Support activities in multiple areas of lifecycle/process • Support gradual buy-in for customers • Native • Hard Real-Time • Certifiable Safety Critical Systems 4

  4. Product Line Organization Native Windows 98 / NT UNIX / Motif / CDE x Intel C E C E x PowerPC N O P R T T R R E x 68K I R E O F P I R E I S D E 5

  5. Main Components • Graphical IDE in platform style • Compiler, prelinker, builder, cross-referencer • Lightweight library mechanism • Integrated editor, browser and debugger, cross tools • Variable or optional components: bindings, GUI builder, analysis tools 6

  6. ObjectAda Compilers • Very fast • Essentially one pass • 70K lpm on SPARC 10 • Multiple units/files in compilation faster due to caching of specs 7

  7. ObjectAda Library • Source-based • No compilation order requirements • Can use multiple source and object paths • Persistent info is ASCII and editable 8

  8. GeneralReal-Time Approach • Integrative approach: • PharLap ETS & Raven for 32 bit Intel • Tornado, LynxOS & Raven for PowerPC • (Tornado) & Raven for 68K • Host-based tools integration as well as target executive • Real-time extensions • Real-time analysis tools - PerfoRMAx • AdaCast • Test ; Harness, Case, Coverage, Complexity… 9

  9. ObjectAda RavenCertified/CertifiableCompiler/RTS

  10. ( Legal )Safety Systems Case Law Precedence Interpretations Standards Guidelines Laws Regulations Standards Guidelines PROCESS Visibility Traceability EVIDENCE / RECORD Confidence / Safety 11

  11. RTS Certification • DO-178B Level A • Full Requirements through Test Results Mapping • 100% Source Level Coverage • 100% Machine Level Coverage • Full MCDC Coverage • An RTS Can be Certified but, • Termed Certifiable • An RTS is Nothing Unto Itself 12

  12. Ravenscar Profile • Industry Wide Safety Critical Standard • Deterministic Ada95 Subset… • Certifiable Subset • Tasking Allowed • Rendezvous Disallowed • Use Protected Objects for Communication • No Dynamic Memory Allocation • etc. 13

  13. Safety CriticalReal-time Approach • Aonix technology for safety-critical applications • Raven and C-SMART • Conforms to Ravenscar Profile • Flags Ravenscar Profile Violations at Compile Time • Level A Certification Package Available • AdaCast for Test Harness and Source Level Coverage • AdaCover machine level coverage analysis • New support for bounded tasking model • New support for segregated loads • PowerPC, 32 bit Intel, 68K 14

  14. Raven Packages • Core Pack • Core Compile System • Project Pack • Ada-Assured and PerfoRMAx • Test Pack • AdaCast, Test: harness, case, coverage, ... • Safety Critical Pack • AdaCover: Machine Level Coverage • Certification Pack • Design Pack • StP/UML with ACD 15

  15. AdaCover • A Qualified Tool For MC Coverage • Target - Data Collection • User selectable start/stop points • Single steps on target • Provides full machine level coverage data • Uploaded to Host after execution • Host - Post Analysis • Coverage reports • Updates assembly listing • Merge to create total execution reports 16

  16. AdaCoverSample Usage with AdaCover; with Cover_Test; procedure Cover_Driver is Var : Integer := 0; begin AdaCover.Start(Cover_Test'Address); Cover_Test; AdaCover.Stop; AdaCover.Dump; end Cover_Driver; 17

  17. Sample Safety Critical Applications • Boeing 777 • Boeing 737 • Westinghouse Electric - Nuclear Shutdown • Lockheed Martin - C130J and C27 • Westinghouse Brake and Signals • London Underground - Jubilee Line extension • Biggest Project In Europe • Automatic Brakes and Signaling 18

  18. Boeing 777 Sample Systems Power Management Sundstrand GPS Canadian Marconi Brakes Crane/Hydro-Air Axle Steering Parker/Abex-NWL 20

  19. Hercules - C130J Aonix SC Products used for: Flight Management Unit Ground Collision Avoidance System Back-up FMU 21

  20. London - Jubilee Line Extension Project • Underground trains, faster, closer together • M68030 controllers • Trains communicate with each other and with central control • Software Integrity Level 4 (SIL) • RIA 23 required • Mapping document produced between RIA 23 and Aonix (DO-178B) Certification materials • Largest funded project in Europe 22

  21. Safety Critical Customers Aircraft/Avionics – • · Global Positioning System (GPS) (Sextant Avionique) • · Flight control data concentrator: AIRBUS A330-A340 (Sextant Avionique) • · Braking and steering control unit: AIRBUS A330-A340 (Thomson CSF/DOI and Messier Bugatti) • · Air Traffic Control (ATC): Ground-based instrument landing system (Navia, formerly Normarc) • · Air Traffic Control (ATC): Germany, England, France and Belgium (EUROCONTROL) • · Flight Management System (FMS): (EUROCONTROL) • · (ATC): Denmark, Belgium, New Zealand, South Africa, Kenya, Pakistan, and Greece (Thomson CSF/SDC) • · Air Traffic Control simulators: Switzerland, Ireland (Thomson CSF/SDC) • · Air Traffic Control System (ATC): (FAA) • · Radar system: Civil avionics (Wilcox Electric) • · Engine control system: (Chandler Evans) • · Flight Management: Lockheed C130J (Lockheed Martin) • · Ground Collision Avoidance: Lockheed C130J (Aerosystems International) • · Displays: Lockheed C130J (Lockheed Sanders) • · Global Positioning System: Boeing 777 (Canadian Marconi) • · Axle Steering System: Boeing 777 (Parker/Abex-NWL) • · Power Management System: Boeing 777 (Sundstrand) • · Brakes: Boeing 777 (Crane/Hydro-Air) Nuclear and Electricity – • · Power plant control: (Sema Group) • · Power generating system simulation: (Thomson CSF/DSI) • · Nuclear reactor project: (Nuclear Electric) • · Power plant power transmission system: (ABB Relays AG) • · Nuclear reactor control simulation: (CEA Cadarache) • · Nuclear Shutdown System: Nuclear power station in Czech Republic (Westinghouse Electric) 23

  22. Safety Critical Customers Trains and Railways – • · Subway network control systems: Paris, Calcutta, and Cairo (GEC ALSTHOM) • · Railway and signal control system: TGV for north lines and the Chunnel • · Brake system for the TGV: the TVM 430 project (CSEE Transports) • · Brake and signals system: London Underground, Jubilee Line extension (Westinghouse) Space – • · Satellite positioning system: (Alcatel SEL) • · Launching platform: Ariane V project (Aerospatiale with the CNES and Matra Marconi Space) • · Switching and telemeasuring systems: Galileo Mars probe project (CNES) • · Satellite imaging system: SPOT project (CNES) • · Columbus part of International Space Station: (ERNO Raumfahrttechnik) • · Data management systems and network control system: International Space Station (NASA) • · Data management system: APM (Atmospheric Pressure Module) for International Space Station (Matra Marconi) 24

  23. One Set of Certification EvidenceDelivery170 lb 25

  24. One CD-ROMcaptures all SDF’s 26

  25. Summary • Flexible, well-planned product architecture • Lightweight implementation technology • Vast Experience in Safety Critical Systems • Supplier of Certifiable RTS and Needed Support Tools • Leading Supplier for Ada83 • Only Supplier for Ada95 • Off-The-Shelf Certification Packages 27

  26. 28

More Related