Developing Software for the A350 XWB Slat Flap Control Computer with SCADE

Similar documents
VVX. VVX20 QuickFasten. Technical datasheet BEST BEST. Flow measuring Vortex flow sensors. Your advantages

SPECIFICATION Item no.: T60404-N4646-X662

SPECIFICATION Item no.: T60404-N4646-X762

SPECIFICATION Item no.: T60404-N4646-X100

SPECIFICATION Item no.: T60404-N4646-X651

SPECIFICATION Item no.: T60404-N4646-X663

MAGNETIC INDUCTIVE FLOW SENSORS

SPECIFICATION Item no.: T60404-N4646-X410

SPECIFICATION Item no.: T60404-N4646-X300

Proportional Amplifier for Analog Rudder Steering Control

SPECIFICATION Item no.: T60404-N4646-X400

SPECIFICATION Item no.: T60404-N4646-X300

TMC -Converter. Type NG Description 2 Operation 3 Installation 4 Maintenance and Repair

FU Steering Control Unit (Handwheel)

Rudder angle indicator equipment. - Rudder position amplifier Signal Calibration Box for Rudder Angle Indicators SCB -RAI 10

FINAL PUBLISHABLE REPORT

Raytheon Marine GmbH. Operator Manual

Metallized Polyester (MKT/MFT)

PSD1 Parker Servo Drive

Credible Autocoding for Verification of Autonomous Systems. Juan-Pablo Afman Graduate Researcher Georgia Institute of Technology

A SERVICE-ORIENTED SYSTEM ARCHITECTURE FOR THE HUMAN CENTERED DESIGN OF INTELLIGENT TRANSPORTATION SYSTEMS

SIFI-B Series. SIFI-B for enhanced insertion loss Rated voltage 250 V~, 50/60 Hz Rated current 1 A to 20 A

Rome, Changing of the Requirements and Astrofein s Business Models for Cubesat Deployer

Communication and Navigation Systems for Aviation

The Power Factor Controller BR 6000

FALCON 50EX AIRCRAFT MAINTENANCE MANUAL TASK FUNCTIONAL TEST OF THE SLAT POSITION MICROSWITCHES

DO254 User group, an industry initiative

IST is an ISO 9000:2008 with Design Registered Company. IST is committed to comply with

SPECIFICATION Item no.: T60404-N4646-X100

Information Briefing & Demonstrations TES-SAVi MBSE processes and tools for next-generation complex system-of-systems development

SPECIFICATION Item no.: T60404-N4646-X201

New Generation Naval Fuze FREMEN Efficiency against New Threats

Infineon at a glance

Component Based Design for Embedded Systems

What we do. Automated Aircraft Data Reporting System Voice & Data on demand for real time decision making

EGS-CC. System Engineering Team. Commonality of Ground Systems. Executive Summary

The Active Flutter Suppression (AFS) Technology Evaluation Project

Systems for Green Operations ITD

LEARNING FROM THE AVIATION INDUSTRY

Subsea All-Electric Technology Now available for the future field developments

KATnet Key Aerodynamic Technologies for Aircraft Performance Improvement

Leveraging Simulation to Create Better Software Systems in an Agile World. Jason Ard Kristine Davidsen 4/8/2013

Softing TDX ODX- and OTX-Based Diagnostic System Framework

ABSTRACT INTRODUCTION

The Test and Launch Control Technology for Launch Vehicles

(R) Aerospace First Article Inspection Requirement FOREWORD

Ready for the real thing: Fire simulation system supports firefighter training. worldwide germany PC Control

Computer-aided analysis of ultrasound data to speed-up the release of aerospace CFRP components

Project TiFab; Innovative Linear Friction Welding technology for Near Net Shape manufacture of advanced titanium aerospace components

Electronics the hidden sector. Dr Kathryn Walsh Director, Electronics-enabled Products KTN

Aerospace Software* Cost and Timescale Reduction *and complex electronic hardware

The Aeronautics Research Programme of the German Federal Ministry of Economics and Technology (BMWi) Franz-Josef Mathy

Outline. What is WAIC. Why is WAIC Important. Regulatory Process Update Status of ITU Documents Proposal CPM Text Topics.

CHAPTER 1: INTRODUCTION TO SOFTWARE ENGINEERING DESIGN

FOSS in Military Computing

DRAFT ED-246 FOR OPEN CONSULTATION

GAMMa - A modular ascender concept for sample return missions

Towards a multi-view point safety contract Alejandra Ruiz 1, Tim Kelly 2, Huascar Espinoza 1

Automated Driving Systems with Model-Based Design for ISO 26262:2018 and SOTIF

Adaptive Autopilot NP2030 (W1)

Seminars Automation Academy Denmark

An Interview with Ian McClelland. Senior Director of Systems and Software at Thales Inflight Entertainment and Connectivity (IFEC)

INTELLIGENT TANKSENSORS ITS 60 FOR DIESEL FUELS ITS 65 FOR HYDRAULIC- AND ENGINE OILS

Summary of the Recent AM Activities at the FAA

Name of Customer Representative: n/a (program was funded by Rockwell Collins) Phone Number:

Real-time model- and harmonics based actuator health monitoring

Training and Verification Facilities CGS User Workshop. Columbus Training Facility Team

Joint Collaborative Project. between. China Academy of Aerospace Aerodynamics (China) and University of Southampton (UK)

Generic Experimental Cockpit (GECO)

SLIDE: Evaluation of a Formalized Encryption Library for Safety- Critical Embedded Systems

AERODYNAMIC DESIGN OF A HIGH-LIFT SYSTEM COMPATIBLE WITH A NATURAL LAMINAR FLOW WING WITHIN THE DESIREH PROJECT

State Archives of Florida Collection Development Policy

Audio Visual: Multimedia Digital Slide Production

2009 Bombardier Challenger 300 S/N: Reg: T7-GOB

d. Appendix 1 addresses related documents. Appendix 2 addresses definitions. Appendix 3 defines acronyms.

HIGH PERFORMANCE INTERCONNECT SOLUTIONS FOR AEROSPACE & DEFENCE

STM RH-ASIC capability

SHAPING THE FUTURE OF IOT: PLATFORMS FOR CO-CREATION, RAPID PROTOTYPING AND SUCCESSFUL INDUSTRIALIZATION

Defence and security engineering

Bell Helicopter Safety Management System Implementation

Art.- No Operator s Manual. Edition 3/06

Design of All Digital Flight Program Training Desktop Application System

THE APPROACH OF SELEX COMMUNICATIONS ON SOFTWARE DEFINED RADIO

Hardware-Software Co-Design Cosynthesis and Partitioning

X-WALD. Avionic X-band Weather signal modeling and processing validation through real Data acquisition and analysis

OWL and Rules for Cognitive Radio

Hardware Repairs & Upgrades. RF/Microwave & Microelectronics Division of API Technologies

Outline. Presentation of ESTECO How I joined it!

ARMADILLO: Subsystem Booklet

Higher National Unit specification: general information

SAFETY CASES: ARGUING THE SAFETY OF AUTONOMOUS SYSTEMS SIMON BURTON DAGSTUHL,

Mid Term Exam SES 405 Exploration Systems Engineering 3 March Your Name

The PROBA Missions Design Capabilities for Autonomous Guidance, Navigation and Control. Jean de Lafontaine President

Television Scriptwriting: Non-Factual Programmes

Farnborough Airshow Farnborough Air Show Investor Relations Technology Seminar 2018 Rolls-Royce

NOTICE. (Formulated under the cognizance of the CTA R7 Home Networks Committee.)

THE COMPANY. UNI EN ISO 9001 : 2008, EN 9100 Cert. 4486/1, Cert. 4658/1, IT-53416

Led-light engineering

Public consultation on Europeana

Flight Test - Datalink Applications. Heiko Körtzel, Flight Test Instrumentation, Manching

Transcription:

SCADE User Group Conference, 15.10.2015 Developing Software for the A350 XWB Slat Flap Control Computer with SCADE Paul Linder, Diehl Aerospace A Joint Diehl Thales Company www.diehl-aerospace.com

Overview 1 Company Presentation 2 Introduction to the A350 XWB SFCC 3 Development Procedure 4 Modeling Guidelines and Verification Methods 5 Experiences A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 1

Diehl Aerospace (DAs) Corporate Division Sales: over 1,010 m Employees: 4,700 Headquarters: Laupheim, Germany Operational Units Sales: 300 m Employees: 1,200 Headquarters: Überlingen, Germany Shareholders: 51% Diehl, 49% Thales joint venture with Numbers are based on forecast 2015 A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 2

System Expertise Flight Control Doors & Slides Management System Integrated Modular Avionics Lighting & Interior Functions Slat Flap Control Computer Flaps Lever Position Pick-Off Unit Doors & Slides Management Control Unit Local Door Controller Autonomous Standby Power Supply Unit Control Panels & Indicators Sensing Core Processing Input/Output Module (CPIOM) Standardized hardware module, I/O capabilities & mechanical packaging IMA Tool Suite Cabin Lighting Systems Cabin Mood Lighting Systems Emergency Lighting Systems Starlight Systems Noise Masking Systems Swivel Actuator Full Automatic Hat Rack Systems A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 3

Major Customers and Platforms Civil Military A300/310 Family 737 Family Bombardier Q400 E170/190 A400M A320 Family 747 Family Global 7000/8000 E135/140 Eurofighter A330/340 Family 767 Family Legacy 600 KC-46A Tanker A380 Family 777 Family NH90 A350 XWB Family 787 Family Tiger Tornado A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 4

Company Trailer A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 5

Overview 1 Company Presentation 2 Introduction to the A350 XWB SFCC 3 Development Procedure 4 Modeling Guidelines and Verification Methods 5 Experiences A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 6

What is a Slat Flap Control Computer? Slat Flap Control Computer (SFCC) Safety-related fly-by-wire system (secondary flight control) Controls and monitors high lift system High lift system Increases lift for take-off and landing A320 High Lift Actuation System Source: M. Recksieck: Advanced High Lift System Architecture with Distributed Electrical Flap Actuation. Workshop on Aviation System Technology (AST) 2009. A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 7

A350 XWB High Lift System Technologies Droop-nose device on inboard wing Multifunctional trailing edge flap system: Adaptive Dropped Hinge Flap Integrated use as high-lift device and for inflight adaptation of cruise wing shape Benefits Fuel burn reduction through drag saving Load alleviation functions and cruise efficiency enhancement Source: D. Hills:The Airbus Challenge : EADS Engineering Europe, Budapest 9-10th May 08. A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 8

A350 XWB Slat Flap Control Computer Functionality Determination and control of surface position including load alleviation functions Monitoring of high lift system and components (e.g. power control unit) Test functions and maintenance services (BITE) AFDX data loading for SW update Design 2 exchangeable SFCCs with 2 independent channels (slat/flap) per SFCC Redundant and dissimilar design Overall 16 micro controllers and several DSPs Level A design assurance Note: A350 XWB SFCC similar to depicted A380 SFCC. A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 9

Overview 1 Company Presentation 2 Introduction to the A350 XWB SFCC 3 Development Procedure 4 Modeling Guidelines and Verification Methods 5 Experiences A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 10

Project Context Project context Equipment development project according to ARP-4754 / DO-254 / DO-178B level A Schedule DAs: 07/2008 ongoing (type certification on 30.09.2014) SCADE involvement SCADE applied for level A development of SFCC application SW» Parallel to development of manually coded basic software (e.g. scheduling, driver, data loading)» ~150 application SW modules (e.g. high-lift system monitors, component monitors) SCADE version 5.1 applied» Only data flow diagrams» No state-charts (due to tool qualification constraints), no higher-order functions A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 11

DAs SCADE Development Procedure DAs SCADE standard HLR allocated to standard dev. High-level REQ (HLR) HLR allocated to model-based dev. HW/SW integration tests SCADE model tests SW Design SW Architectural Description Tool-aided SCADE model review Low-level REQ (manual coding) SCADE models (= low-level REQ) Manual source code Qualified code generation (joint generation) Specification of individual SW modules (cf. DO-178C/DO- 331 Design Model level) Manual object code A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 12

DAs SCADE Model Design High-level REQ Low-level REQ / SCADE model A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 13

DAs SCADE Model Design (cont d) High-level REQ Low-level REQ / SCADE model DAs Libraries Call of library operator (non-expansion) A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 14

Overview 1 Company Presentation 2 Introduction to the A350 XWB SFCC 3 Development Procedure 4 Modeling Guidelines and Verification Methods 5 Experiences A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 15

Model Review: DAs SCADE Standard Guidance on following issues: Tool settings and options to ensure conditions imposed by SCADE tool qualification» E.g. interdiction of unary minus operator to avoid SCADE 5.1 maintenance issue CR ID 5137 Modeling conventions to support DAs model verification procedures» E.g. naming and traceability conventions, complexity restrictions, algorithmic constraints Overview of rules 16 mandatory rules to avoid undefined and failureprone features (cf. tool qualification) 23 required rules related to modeling conventions (cf. verification procedures) Justifications allowed No optional or recommended rules applied A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 16

Model Review: DAs SCADE StyleChecker Automatic check of 26 rules of the DAs SCADE Development Standard Checks generation options, modeling elements, complexity restrictions, naming conventions, model/report/autocode consistency Remaining 13 rules subject to manual review (based on SCADE report) Developed with TCL and Python TCL scripts using SCADE API» E.g. MapRole $model node CountForbiddenModelOperators Python checking source/report generation and producing HTML report Qualified as verification tool Qualified batch mode Engineering GUI mode (see figure) A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 17

Model Review: DAs SCADE StyleChecker (cont d) HTML report Checking report Overview A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 18

DAs Model Testing Procedure High-level requirement SCADE model Simulation cases DAs Test Script Formatter *.in Simulation with SCADE QMTC *.out DAs Test Result Comparator Qualified toolchain Coverage PASS/FAIL A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 19

Overview 1 Company Presentation 2 Introduction to the A350 XWB SFCC 3 Development Procedure 4 Modeling Guidelines and Verification Methods 5 Experiences A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 20

Experiences Successful certification of level A software! EASA type certification Airbus A350 XWB on 30.09.2014 Estimated >2x higher efficiency for SW module development Omission of source code verification due to qualified source code generation Bypass of effort-consuming conventional LLR specification and module testing Automatic consistency checks proved very valuable A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 21

Some Remarks Set model expansion options in conformance to testing approach 100% structural coverage may not be achieved with full expansion of libraries Advice: Non-trivial library operators should not be expanded Mind the configuration management Not only SCADE model and higher level requirements but also traceability data and review results (findings) have to be subject to version control Be aware of your modeling semantics Identical syntax may have different meaning on different specification levels (cf. DO-178C/DO-331 Design Model vs. Specification Model ) Do not disregard quality conditions and design constraints requirements A Joint Diehl Thales Company Copyright Diehl Aerospace GmbH 22

Contact Diehl Aerospace GmbH Alte Nussdorfer Str. 23 88662 Ueberlingen Phone +49 7551 891 0 Fax +49 7551 891 4001 www.diehl.com/aerosystems

Die Weitergabe sowie Vervielfältigung dieses Dokuments, Verwertung und Mitteilung seines Inhalts sind verboten, soweit dies nicht ausdrücklich gestattet ist. Zuwiderhandlungen verpflichten zu Schadenersatz. Alle Rechte für den Fall der Patent-, Gebrauchsmuster- oder Geschmacksmustereintragung vorbehalten. The reproduction, distribution and utilization of this document as well as the communication of its contents to others without express authorization is prohibited. Offenders will be held liable for the payment of damages. All rights reserved in the event of the grant of a patent, utility model or design.

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback