SlideShare a Scribd company logo

DO-254 for dummies 7

D
DMAP

Chapter 7 of the famous saga "the DO-254 for Dummies" from James BEZAMAT director of DMAP subject : IP and verification process More : dmap.fr contact : contact@dmap.fr

TechnologyDesign
1 of 6
Download to read offline
DO-254 for Dummies (7) IP & verification process Context Current electronic development is becoming increasingly dependent on predefined IP blocks (more than 35% of elec- tronic components currently in development use IP). Let’s briefly summarize the expected advantages of this approach: Shorter development times (by integrating blocks) Lower development costs (the cost of the IP is shared between different customers) Increased reliability (The IP is developed by specialists in this domain and is throughly tested by all of its users, thus avoiding the need for you to perform in-house testing) Focus on core business (‘standard’ peripheral functions, that don’t add value to the application, are outsourced) Of course, IP development must focus on that which is standardized, and is therefore shareable; communication periph- erals, standard protocols, data exchange interfaces, and processor cores – all the pieces of a puzzle that we call System On Chip. It would be very surprising if the aeronautical industry (as well as other safety critical industries) could do without this key element, which is the only solution that can guarantee time to market and sustainability compatible with current requirements. IP andDO254 : verification Let’s first resume the goal of IP verification; to meet the expectations of the user (as described above): The verification provided with the IP (in the package) is an important and usable element of the superordinate pro- ject (the component) The results obtained – if they conform to DO-254 - can be used as elements of the verification dossier (for example, as a result of unit verification of the IP block, or as part of the results of the entirety of code coverage) These will not need to be fully retested (or only very minimally) The DO-254 literature refers only in a general fashion to the impact of the IP on the verification flow of components or on complex equipment. We will first gather together the relevant passages, and then propose a synthetic reading of this approach to the verifi- cation process for objects using IPs. "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
DO-254 for Dummies (7) IP & verification process Generic Programming and Verification The first attribute we will look at concerns the verification of the multiple combinations associated with IP configurability. An IP is, of course, a generic product, and therefore extremely configurable (buffer size, number of channels, speed, signal polarity, optional functions, etc). Verifying all possible combinations becomes quickly impossible, although it is possible to achieve 100% of functional and code coverage. Some publications advise verifying the significant and representative combinations, which makes sense and is good prac- tice. Implementation is simple and classical: The simulation set must be iterated on several parameter combinations, until we have tested a quantity sufficient to confi- dently predict the behavior of the object. It is, therefore, just a question of time and of tools. However, this first analysis gives rise to certain issues that merit a closer look: Suitability to the Integrator’s Requirements An IP is destined to be integrated into a higher-level system that freezes the IP configuration definitively. What happens if the particular configuration used does not correspond to any of the configurations previously tested? Can we trust the results of the IP verification in this case? Of course not! In this case, it will be necessary to define a tailored verification strategy adapted to the requirements of the integrator and to perform a differential repeat of the associated activities (evolution of test plan, new verification results, verification review, etc). The supplementary burden of work caused by requirement adaptation should be sufficiently slight relative to the generic verification of the IP, that it can be considered one of the contextual part of IP integration. If that is the case, the integrator with, potentially, the support of the IP provider, will acquire a verification review of the IP in its specific context for minimum effort. "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
DO-254 for Dummies (7) Unused Functions and Verification The preceding point –genericity – has another consequence that must be taken into account when using the IP in a safety context. Unlike a function that is specifically dedicated to one single application, the IP may include functionalities that are not used in the current configuration (this is also the case when reusing a previous development). This issue, although not specific to IPs, is particularly problematic in this context, and may act as a brake on more wide- spread introduction of IPs. The user should: Demonstrate that there are no unused functions when the IP is implemented. This can be done using verification and analysis tests. or Demonstrate that the unused functions are perfectly controlled and that they cannot impact negatively on the com- ponent’s functioning (particularly relevant for SEU). This can be done by identifying the unused functions and adding the necessary protection. Verification can then be used to back up the demonstration. This is mentioned in the EASA memo: COTS IP guidelines (in datasheets, user manuals and errata sheets) should be defined to identify specific constraints necessary to properly control the unused functions of the COTS IP. (EASA CM - SWCEH – 001 8.4.4) Two remarks: The control of unused functions usually takes place via parameters or signals peripheral to the IP – hence the phrase above. That means that the management of the IP environment and the relevant limitations must be prioritized during implementation. Again, the customization of an IP, with the possibility of removing unused functions, remains an envisageable alterna- tive, if the extra cost involved remains marginal. The verification must provide evidence that demonstrates as clearly the removal of a function (simulation, analysis) as the robustness against SEU (simulation, test, analysis). This strategic issue in introducing IPs is manageable in most cases, although it requires a certain effort, coupled with IP customization, which leads us back to our first point. "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
DO-254 for Dummies (7) Verification and Hierarchy What use is the IP verification review provided with the certification package? It inspires confidence in the integrator and the certifier. We thus demonstrate the mastery of an object by its designer, as well as conformity with DO-254 at the IP level, and con- sequently, the guarantee of correct error-free functioning if we use the IP in an appropriate environment. This is true whichever type of COTS is used. Whether its transparent like an IP COTS (source code provided, development file and verification complete) or black box like an “ordinary” COTS, the user expects an adequate level of verification (whether the verification review is provided with the IP or not). The review provided with an IP that includes service experience and is “silicon-proven” meets this requirement. Using the IP unit check Verification strategies should be based on a hierarchical approach, as for the design approach i.e. before integration at device level, sub-functions should be verified against their respective re- quirements… Sub-functions are a set of low level hardware devices that contribute together to perform a specific function: for instance, an SDRAM memory controller. (EASA CM - SWCEH – 001 8.4.2.2 d) This requirement set out by the EASA and by aircraft manufacturers in the CRI and further defined in the CM above, is completely satisfied by the verification set provided with a DO-254-compliant IP. It shouldn’t even be necessary for the integrator to redo the unit check if all the relevant validation data, including the verification results, are included. Exemption from extensive verification of the higher-level function When integration of sub-functions is complete, the verification of the overall device behaviour should be performed against the related requirements. (EASA CM - SWCEH – 001 8.4.2.2 d) The goal is restated here: higher level (device) verification should focus on an external view of the components, the inter- faces, and common mode processes linking the blocks together. The functioning at the top level, when everything is mov- ing at the same time, is an essential component of verification after integration. Test the robustness of the function Functional robustness should also be assessed at isolated sub-function level. (EASA CM - SWCEH – 001 8.4.2.2 d) As mentioned above, robustness (boundary tests, functioning improbable or impossible) must be evaluated at sub- function level. Indeed, it is often impossible to create the local conditions necessary to evaluate the borderline behavior of a sub-block at the higher-level, or to test the efficiency of a security system that is limited by the IP environment. "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
DO-254 for Dummies (7) Assess the quality of the verification via code coverage. The HDL code coverage measurement at sub-function level may alleviate the HDL code coverage measurement at device level. (EASA CM - SWCEH – 001 8.4.2.1 g) Taking into account the issues we’ve just discussed, it is obvious that re-producing comprehensive verification of a func- tion at the higher-level is pointless. This is as true for IPs and components as it is at the component and board or equip- ment levels. At the higher (integration) level, focus is on the verification of the integration itself, and not on unit checking. Are the comprehensive tests of an ASIC (SCAN, ATPG) carried out by the ASIC manufacturer repeated by a system integrator for each ASIC on a board? No, of course not! The code coverage obtained at local level can be entirely legitimately used as a departure point for the higher level. Conclusion and Summary The integration of IPs within embedded systems is inevitable. This will take place by ever simpler means as implementa- tion processes become more transparent and are shared by the community, while still conforming to the main goal of functional safety and process assurance. Some issues still in discussion relate to the role played by IP verification, which must take into account the unique characteristics of this type of open object. It seems that nothing is impossible. On the contrary, solutions that combine common sense, efficiency, productivity gains, and increased safety levels exist. Some of the methods of IP integration may be quite original, as described above, but these methods will be further vali- dated as they are shared by other industrial fields with the same requirements. James Bezamat, 2011, december "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
DMAP DMAP DMAP-IP EXPERT DESIGN www.dmap.fr DMAP Design Methods and Assurance Process 100 Route des Houillères—13590 Meyreuil—BP 2 04.42.61.29.13 contact@dmap.fr DMAP is member of the cluster They trust DMAP "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company

Recommended

Dmap Ip Do254 White Paper En
Dmap Ip Do254 White Paper EnDmap Ip Do254 White Paper En
Dmap Ip Do254 White Paper EnDMAP
 
Overview of DO-254: Design Assurance Guidance For Airborne Electronic Hardware
Overview of DO-254: Design Assurance Guidance For Airborne Electronic HardwareOverview of DO-254: Design Assurance Guidance For Airborne Electronic Hardware
Overview of DO-254: Design Assurance Guidance For Airborne Electronic HardwareOak Systems
 
DO254 DMAP Training 2011 Trailer
DO254 DMAP Training 2011 TrailerDO254 DMAP Training 2011 Trailer
DO254 DMAP Training 2011 TrailerDMAP
 
DMAP\'s Brochure
DMAP\'s BrochureDMAP\'s Brochure
DMAP\'s BrochureDMAP
 
Understanding DO-178: Importance and How It Affects Your Company
Understanding DO-178: Importance and How It Affects Your CompanyUnderstanding DO-178: Importance and How It Affects Your Company
Understanding DO-178: Importance and How It Affects Your CompanyAversan Inc.
 
Introduction to DO-178B - Software Considerations in Airborne Systems and Equ...
Introduction to DO-178B - Software Considerations in Airborne Systems and Equ...Introduction to DO-178B - Software Considerations in Airborne Systems and Equ...
Introduction to DO-178B - Software Considerations in Airborne Systems and Equ...Swamy Shettru
 
Avionics Software Standards ppt in latex
Avionics Software Standards ppt in latexAvionics Software Standards ppt in latex
Avionics Software Standards ppt in latexSushma Reddy
 
由政府採購體系檢視國內政府與業界有關系統工程之落差
由政府採購體系檢視國內政府與業界有關系統工程之落差由政府採購體系檢視國內政府與業界有關系統工程之落差
由政府採購體系檢視國內政府與業界有關系統工程之落差Alex Yin
 

Recommended

Dmap Ip Do254 White Paper En
Dmap Ip Do254 White Paper EnDmap Ip Do254 White Paper En
Dmap Ip Do254 White Paper EnDMAP
 
Overview of DO-254: Design Assurance Guidance For Airborne Electronic Hardware
Overview of DO-254: Design Assurance Guidance For Airborne Electronic HardwareOverview of DO-254: Design Assurance Guidance For Airborne Electronic Hardware
Overview of DO-254: Design Assurance Guidance For Airborne Electronic HardwareOak Systems
 
DO254 DMAP Training 2011 Trailer
DO254 DMAP Training 2011 TrailerDO254 DMAP Training 2011 Trailer
DO254 DMAP Training 2011 TrailerDMAP
 
DMAP\'s Brochure
DMAP\'s BrochureDMAP\'s Brochure
DMAP\'s BrochureDMAP
 
Understanding DO-178: Importance and How It Affects Your Company
Understanding DO-178: Importance and How It Affects Your CompanyUnderstanding DO-178: Importance and How It Affects Your Company
Understanding DO-178: Importance and How It Affects Your CompanyAversan Inc.
 
Introduction to DO-178B - Software Considerations in Airborne Systems and Equ...
Introduction to DO-178B - Software Considerations in Airborne Systems and Equ...Introduction to DO-178B - Software Considerations in Airborne Systems and Equ...
Introduction to DO-178B - Software Considerations in Airborne Systems and Equ...Swamy Shettru
 
Avionics Software Standards ppt in latex
Avionics Software Standards ppt in latexAvionics Software Standards ppt in latex
Avionics Software Standards ppt in latexSushma Reddy
 
由政府採購體系檢視國內政府與業界有關系統工程之落差
由政府採購體系檢視國內政府與業界有關系統工程之落差由政府採購體系檢視國內政府與業界有關系統工程之落差
由政府採購體系檢視國內政府與業界有關系統工程之落差Alex Yin
 
Avionics Software Standards
Avionics Software StandardsAvionics Software Standards
Avionics Software StandardsSushma Reddy
 
DO-178B/ED-12B Presentation
DO-178B/ED-12B PresentationDO-178B/ED-12B Presentation
DO-178B/ED-12B PresentationAnkit Singh
 
SPS IPC Drives 2015 - Itris Automation paper
SPS IPC Drives 2015 - Itris Automation paperSPS IPC Drives 2015 - Itris Automation paper
SPS IPC Drives 2015 - Itris Automation paperItris Automation Square
 
[EN] Success story Herakles
[EN] Success story Herakles[EN] Success story Herakles
[EN] Success story HeraklesItris Automation Square
 
Standards for safety and security in avionics
Standards for safety and security in avionicsStandards for safety and security in avionics
Standards for safety and security in avionicsAlessandro Bruni
 
Code Coverage in Theory and in practice form the DO178B perspective
Code Coverage in Theory and in practice form the DO178B perspective Code Coverage in Theory and in practice form the DO178B perspective
Code Coverage in Theory and in practice form the DO178B perspective Engineering Software Lab
 
DMAP: IP DO254 Reverse Engineering
DMAP: IP DO254 Reverse EngineeringDMAP: IP DO254 Reverse Engineering
DMAP: IP DO254 Reverse EngineeringSILKAN
 
Validation : Project Management
Validation : Project ManagementValidation : Project Management
Validation : Project ManagementDipen Shroff
 
Bangalore march07
Bangalore march07Bangalore march07
Bangalore march07Obsidian Software
 
[EN] PLC Checker Datasheet
[EN] PLC Checker Datasheet[EN] PLC Checker Datasheet
[EN] PLC Checker DatasheetItris Automation Square
 
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...HCL Technologies
 
Ia rm001 -en-p
Ia rm001 -en-pIa rm001 -en-p
Ia rm001 -en-pfjmolinacantero
 
Requirements of ISO 26262
Requirements of ISO 26262Requirements of ISO 26262
Requirements of ISO 26262Torben Haagh
 
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga... Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...Carol Dekkers
 
ITS-Fidel
ITS-FidelITS-Fidel
ITS-FidelFidel Softech P. Ltd
 
Lange michelle mapld08_add_1
Lange michelle mapld08_add_1Lange michelle mapld08_add_1
Lange michelle mapld08_add_1salimgharnate
 
Sqa lec. 07
Sqa lec. 07Sqa lec. 07
Sqa lec. 07Noor Ul Hudda Memon
 
Resume
ResumeResume
ResumeDeepit Chaturvedi
 
Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Raul Soto
 
Informatica certification
Informatica certificationInformatica certification
Informatica certificationbnjkukunuri
 
White paper" La DO-254 pour les nuls"
White paper" La DO-254 pour les nuls"White paper" La DO-254 pour les nuls"
White paper" La DO-254 pour les nuls"SILKAN
 
Software Development for Safety Critical Systems
Software Development for Safety Critical SystemsSoftware Development for Safety Critical Systems
Software Development for Safety Critical SystemsÁkos Horváth
 

More Related Content

What's hot

Avionics Software Standards
Avionics Software StandardsAvionics Software Standards
Avionics Software StandardsSushma Reddy
 
DO-178B/ED-12B Presentation
DO-178B/ED-12B PresentationDO-178B/ED-12B Presentation
DO-178B/ED-12B PresentationAnkit Singh
 
SPS IPC Drives 2015 - Itris Automation paper
SPS IPC Drives 2015 - Itris Automation paperSPS IPC Drives 2015 - Itris Automation paper
SPS IPC Drives 2015 - Itris Automation paperItris Automation Square
 
Standards for safety and security in avionics
Standards for safety and security in avionicsStandards for safety and security in avionics
Standards for safety and security in avionicsAlessandro Bruni
 
Code Coverage in Theory and in practice form the DO178B perspective
Code Coverage in Theory and in practice form the DO178B perspective Code Coverage in Theory and in practice form the DO178B perspective
Code Coverage in Theory and in practice form the DO178B perspective Engineering Software Lab
 
DMAP: IP DO254 Reverse Engineering
DMAP: IP DO254 Reverse EngineeringDMAP: IP DO254 Reverse Engineering
DMAP: IP DO254 Reverse EngineeringSILKAN
 
Validation : Project Management
Validation : Project ManagementValidation : Project Management
Validation : Project ManagementDipen Shroff
 
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...HCL Technologies
 
Requirements of ISO 26262
Requirements of ISO 26262Requirements of ISO 26262
Requirements of ISO 26262Torben Haagh
 
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga... Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...Carol Dekkers
 
Lange michelle mapld08_add_1
Lange michelle mapld08_add_1Lange michelle mapld08_add_1
Lange michelle mapld08_add_1salimgharnate
 
Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Raul Soto
 
Informatica certification
Informatica certificationInformatica certification
Informatica certificationbnjkukunuri
 

What's hot (20)

Avionics Software Standards
Avionics Software StandardsAvionics Software Standards
Avionics Software Standards
 
DO-178B/ED-12B Presentation
DO-178B/ED-12B PresentationDO-178B/ED-12B Presentation
DO-178B/ED-12B Presentation
 
SPS IPC Drives 2015 - Itris Automation paper
SPS IPC Drives 2015 - Itris Automation paperSPS IPC Drives 2015 - Itris Automation paper
SPS IPC Drives 2015 - Itris Automation paper
 
[EN] Success story Herakles
[EN] Success story Herakles[EN] Success story Herakles
[EN] Success story Herakles
 
Standards for safety and security in avionics
Standards for safety and security in avionicsStandards for safety and security in avionics
Standards for safety and security in avionics
 
Code Coverage in Theory and in practice form the DO178B perspective
Code Coverage in Theory and in practice form the DO178B perspective Code Coverage in Theory and in practice form the DO178B perspective
Code Coverage in Theory and in practice form the DO178B perspective
 
DMAP: IP DO254 Reverse Engineering
DMAP: IP DO254 Reverse EngineeringDMAP: IP DO254 Reverse Engineering
DMAP: IP DO254 Reverse Engineering
 
Validation : Project Management
Validation : Project ManagementValidation : Project Management
Validation : Project Management
 
Bangalore march07
Bangalore march07Bangalore march07
Bangalore march07
 
[EN] PLC Checker Datasheet
[EN] PLC Checker Datasheet[EN] PLC Checker Datasheet
[EN] PLC Checker Datasheet
 
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...
ERS Case Study: HCLT develops a slat flap control unit [sfcu] for an Aerospac...
 
Ia rm001 -en-p
Ia rm001 -en-pIa rm001 -en-p
Ia rm001 -en-p
 
Requirements of ISO 26262
Requirements of ISO 26262Requirements of ISO 26262
Requirements of ISO 26262
 
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga... Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...
Top 10 uses of Functional Size Measurement (Function Points) by Mature Orga...
 
ITS-Fidel
ITS-FidelITS-Fidel
ITS-Fidel
 
Lange michelle mapld08_add_1
Lange michelle mapld08_add_1Lange michelle mapld08_add_1
Lange michelle mapld08_add_1
 
Sqa lec. 07
Sqa lec. 07Sqa lec. 07
Sqa lec. 07
 
Resume
ResumeResume
Resume
 
Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)
 
Informatica certification
Informatica certificationInformatica certification
Informatica certification
 

Viewers also liked

White paper" La DO-254 pour les nuls"
White paper" La DO-254 pour les nuls"White paper" La DO-254 pour les nuls"
White paper" La DO-254 pour les nuls"SILKAN
 
Software Development for Safety Critical Systems
Software Development for Safety Critical SystemsSoftware Development for Safety Critical Systems
Software Development for Safety Critical SystemsÁkos Horváth
 
An Alternative Approach to DO-178B
An Alternative Approach to DO-178BAn Alternative Approach to DO-178B
An Alternative Approach to DO-178BAdaCore
 
Validation and Verification using Rational DOORS for Aerospace
Validation and Verification using Rational DOORS for AerospaceValidation and Verification using Rational DOORS for Aerospace
Validation and Verification using Rational DOORS for AerospaceHellasserve
 
IP PCIe
IP PCIeIP PCIe
IP PCIeSILKAN
 
V model presentation
V model presentationV model presentation
V model presentationNiat Murad
 
Impact of IEC 61508 Standards on Intelligent Electrial Networks and Safety Im...
Impact of IEC 61508 Standards on Intelligent Electrial Networks and Safety Im...Impact of IEC 61508 Standards on Intelligent Electrial Networks and Safety Im...
Impact of IEC 61508 Standards on Intelligent Electrial Networks and Safety Im...Schneider Electric
 
20131216 cisec-standards-jp blanquart-jmastruc
20131216 cisec-standards-jp blanquart-jmastruc20131216 cisec-standards-jp blanquart-jmastruc
20131216 cisec-standards-jp blanquart-jmastrucCISEC
 
Introduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL CertificationIntroduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL CertificationISA Boston Section
 
V Model Introduction
V Model IntroductionV Model Introduction
V Model IntroductionROI TRAINER
 
Instrumente tic - sistem pentru planificarea resurselor întreprinderii (ERP)
Instrumente tic - sistem pentru planificarea resurselor întreprinderii (ERP)Instrumente tic - sistem pentru planificarea resurselor întreprinderii (ERP)
Instrumente tic - sistem pentru planificarea resurselor întreprinderii (ERP)eComunitate.ro
 
Presentacion triton
Presentacion tritonPresentacion triton
Presentacion tritonsonia
 

Viewers also liked (17)

White paper" La DO-254 pour les nuls"
White paper" La DO-254 pour les nuls"White paper" La DO-254 pour les nuls"
White paper" La DO-254 pour les nuls"
 
Software Development for Safety Critical Systems
Software Development for Safety Critical SystemsSoftware Development for Safety Critical Systems
Software Development for Safety Critical Systems
 
An Alternative Approach to DO-178B
An Alternative Approach to DO-178BAn Alternative Approach to DO-178B
An Alternative Approach to DO-178B
 
Validation and Verification using Rational DOORS for Aerospace
Validation and Verification using Rational DOORS for AerospaceValidation and Verification using Rational DOORS for Aerospace
Validation and Verification using Rational DOORS for Aerospace
 
IP PCIe
IP PCIeIP PCIe
IP PCIe
 
IEC 61508
IEC 61508IEC 61508
IEC 61508
 
What is Design Assurance Engineering (DAE)?
What is Design Assurance Engineering (DAE)?What is Design Assurance Engineering (DAE)?
What is Design Assurance Engineering (DAE)?
 
V model presentation
V model presentationV model presentation
V model presentation
 
Iec61508 guide
Iec61508 guideIec61508 guide
Iec61508 guide
 
Impact of IEC 61508 Standards on Intelligent Electrial Networks and Safety Im...
Impact of IEC 61508 Standards on Intelligent Electrial Networks and Safety Im...Impact of IEC 61508 Standards on Intelligent Electrial Networks and Safety Im...
Impact of IEC 61508 Standards on Intelligent Electrial Networks and Safety Im...
 
20131216 cisec-standards-jp blanquart-jmastruc
20131216 cisec-standards-jp blanquart-jmastruc20131216 cisec-standards-jp blanquart-jmastruc
20131216 cisec-standards-jp blanquart-jmastruc
 
Safety Integrity Levels
Safety Integrity LevelsSafety Integrity Levels
Safety Integrity Levels
 
Introduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL CertificationIntroduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL Certification
 
V Model Introduction
V Model IntroductionV Model Introduction
V Model Introduction
 
Instrumente tic - sistem pentru planificarea resurselor întreprinderii (ERP)
Instrumente tic - sistem pentru planificarea resurselor întreprinderii (ERP)Instrumente tic - sistem pentru planificarea resurselor întreprinderii (ERP)
Instrumente tic - sistem pentru planificarea resurselor întreprinderii (ERP)
 
Rini Anova Baru
Rini Anova BaruRini Anova Baru
Rini Anova Baru
 
Presentacion triton
Presentacion tritonPresentacion triton
Presentacion triton
 

Similar to DO-254 for dummies 7

Cloud Technology: Now Entering the Business Process Phase
Cloud Technology: Now Entering the Business Process PhaseCloud Technology: Now Entering the Business Process Phase
Cloud Technology: Now Entering the Business Process Phasefinteligent
 
Dmap Solution
Dmap SolutionDmap Solution
Dmap SolutionDMAP
 
Towards 0-bug software in the automotive industry
Towards 0-bug software in the automotive industryTowards 0-bug software in the automotive industry
Towards 0-bug software in the automotive industryAshley Zupkus
 
Cloud Storage Auditing Protocol with Verifiable Outsourcing of Key Updates
Cloud Storage Auditing Protocol with Verifiable Outsourcing of Key UpdatesCloud Storage Auditing Protocol with Verifiable Outsourcing of Key Updates
Cloud Storage Auditing Protocol with Verifiable Outsourcing of Key UpdatesIRJET Journal
 
IPLOOK MME PRODUCT INFORMATION
IPLOOK MME PRODUCT INFORMATIONIPLOOK MME PRODUCT INFORMATION
IPLOOK MME PRODUCT INFORMATIONIPLOOK Networks
 
Formal Verification Of An Intellectual Property In a Field Programmable Gate ...
Formal Verification Of An Intellectual Property In a Field Programmable Gate ...Formal Verification Of An Intellectual Property In a Field Programmable Gate ...
Formal Verification Of An Intellectual Property In a Field Programmable Gate ...IRJET Journal
 
Network Configuration and Audit Simplified
Network Configuration and Audit SimplifiedNetwork Configuration and Audit Simplified
Network Configuration and Audit SimplifiedChristopher Willard
 
Extend HPC Workloads to Amazon EC2 Instances with Intel and Rescale (CMP373-S...
Extend HPC Workloads to Amazon EC2 Instances with Intel and Rescale (CMP373-S...Extend HPC Workloads to Amazon EC2 Instances with Intel and Rescale (CMP373-S...
Extend HPC Workloads to Amazon EC2 Instances with Intel and Rescale (CMP373-S...Amazon Web Services
 
Agile Development in Aerospace and Defense
Agile Development in Aerospace and DefenseAgile Development in Aerospace and Defense
Agile Development in Aerospace and DefenseJim Nickel
 
Embedded Systems Q and A M.Sc.(IT) PART II SEM III
Embedded Systems Q and A M.Sc.(IT) PART II SEM IIIEmbedded Systems Q and A M.Sc.(IT) PART II SEM III
Embedded Systems Q and A M.Sc.(IT) PART II SEM IIINi
 
Chapter 9 lab a security policy development and implementation (instructor ve...
Chapter 9 lab a security policy development and implementation (instructor ve...Chapter 9 lab a security policy development and implementation (instructor ve...
Chapter 9 lab a security policy development and implementation (instructor ve...wosborne03
 
ONS 2018 LA - Intel Tutorial: Cloud Native to NFV - Alon Bernstein, Cisco & K...
ONS 2018 LA - Intel Tutorial: Cloud Native to NFV - Alon Bernstein, Cisco & K...ONS 2018 LA - Intel Tutorial: Cloud Native to NFV - Alon Bernstein, Cisco & K...
ONS 2018 LA - Intel Tutorial: Cloud Native to NFV - Alon Bernstein, Cisco & K...Kuralamudhan Ramakrishnan
 
Accelerating Apache Spark with Intel QuickAssist Technology
Accelerating Apache Spark with Intel QuickAssist TechnologyAccelerating Apache Spark with Intel QuickAssist Technology
Accelerating Apache Spark with Intel QuickAssist TechnologyDatabricks
 
Improving Quality through Continuous Integration - A case study of CollabNet
Improving Quality through Continuous Integration - A case study of CollabNetImproving Quality through Continuous Integration - A case study of CollabNet
Improving Quality through Continuous Integration - A case study of CollabNetVenkat Janardhanam, MS, MBA
 
RTCA DO-254 Guidance - Accelerating DO-254 Verification
RTCA DO-254 Guidance - Accelerating DO-254 VerificationRTCA DO-254 Guidance - Accelerating DO-254 Verification
RTCA DO-254 Guidance - Accelerating DO-254 VerificationTarek Salah
 

Similar to DO-254 for dummies 7 (20)

Cloud Technology: Now Entering the Business Process Phase
Cloud Technology: Now Entering the Business Process PhaseCloud Technology: Now Entering the Business Process Phase
Cloud Technology: Now Entering the Business Process Phase
 
Dmap Solution
Dmap SolutionDmap Solution
Dmap Solution
 
Towards 0-bug software in the automotive industry
Towards 0-bug software in the automotive industryTowards 0-bug software in the automotive industry
Towards 0-bug software in the automotive industry
 
Cloud Storage Auditing Protocol with Verifiable Outsourcing of Key Updates
Cloud Storage Auditing Protocol with Verifiable Outsourcing of Key UpdatesCloud Storage Auditing Protocol with Verifiable Outsourcing of Key Updates
Cloud Storage Auditing Protocol with Verifiable Outsourcing of Key Updates
 
Text-DISA_Review_Questions.docx
Text-DISA_Review_Questions.docxText-DISA_Review_Questions.docx
Text-DISA_Review_Questions.docx
 
Text-DISA_Review_Questions.docx
Text-DISA_Review_Questions.docxText-DISA_Review_Questions.docx
Text-DISA_Review_Questions.docx
 
IPLOOK MME PRODUCT INFORMATION
IPLOOK MME PRODUCT INFORMATIONIPLOOK MME PRODUCT INFORMATION
IPLOOK MME PRODUCT INFORMATION
 
Vinay Singh
Vinay SinghVinay Singh
Vinay Singh
 
Formal Verification Of An Intellectual Property In a Field Programmable Gate ...
Formal Verification Of An Intellectual Property In a Field Programmable Gate ...Formal Verification Of An Intellectual Property In a Field Programmable Gate ...
Formal Verification Of An Intellectual Property In a Field Programmable Gate ...
 
Network Configuration and Audit Simplified
Network Configuration and Audit SimplifiedNetwork Configuration and Audit Simplified
Network Configuration and Audit Simplified
 
Extend HPC Workloads to Amazon EC2 Instances with Intel and Rescale (CMP373-S...
Extend HPC Workloads to Amazon EC2 Instances with Intel and Rescale (CMP373-S...Extend HPC Workloads to Amazon EC2 Instances with Intel and Rescale (CMP373-S...
Extend HPC Workloads to Amazon EC2 Instances with Intel and Rescale (CMP373-S...
 
Agile Development in Aerospace and Defense
Agile Development in Aerospace and DefenseAgile Development in Aerospace and Defense
Agile Development in Aerospace and Defense
 
Embedded Systems Q and A M.Sc.(IT) PART II SEM III
Embedded Systems Q and A M.Sc.(IT) PART II SEM IIIEmbedded Systems Q and A M.Sc.(IT) PART II SEM III
Embedded Systems Q and A M.Sc.(IT) PART II SEM III
 
Chapter 9 lab a security policy development and implementation (instructor ve...
Chapter 9 lab a security policy development and implementation (instructor ve...Chapter 9 lab a security policy development and implementation (instructor ve...
Chapter 9 lab a security policy development and implementation (instructor ve...
 
T24 Temenos Methodology Overview
T24 Temenos Methodology OverviewT24 Temenos Methodology Overview
T24 Temenos Methodology Overview
 
Platform Observability and Infrastructure Closed Loops
Platform Observability and Infrastructure Closed LoopsPlatform Observability and Infrastructure Closed Loops
Platform Observability and Infrastructure Closed Loops
 
ONS 2018 LA - Intel Tutorial: Cloud Native to NFV - Alon Bernstein, Cisco & K...
ONS 2018 LA - Intel Tutorial: Cloud Native to NFV - Alon Bernstein, Cisco & K...ONS 2018 LA - Intel Tutorial: Cloud Native to NFV - Alon Bernstein, Cisco & K...
ONS 2018 LA - Intel Tutorial: Cloud Native to NFV - Alon Bernstein, Cisco & K...
 
Accelerating Apache Spark with Intel QuickAssist Technology
Accelerating Apache Spark with Intel QuickAssist TechnologyAccelerating Apache Spark with Intel QuickAssist Technology
Accelerating Apache Spark with Intel QuickAssist Technology
 
Improving Quality through Continuous Integration - A case study of CollabNet
Improving Quality through Continuous Integration - A case study of CollabNetImproving Quality through Continuous Integration - A case study of CollabNet
Improving Quality through Continuous Integration - A case study of CollabNet
 
RTCA DO-254 Guidance - Accelerating DO-254 Verification
RTCA DO-254 Guidance - Accelerating DO-254 VerificationRTCA DO-254 Guidance - Accelerating DO-254 Verification
RTCA DO-254 Guidance - Accelerating DO-254 Verification
 

Recently uploaded

Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 

Recently uploaded (20)

Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 

DO-254 for dummies 7

  • 1. DO-254 for Dummies (7) IP & verification process Context Current electronic development is becoming increasingly dependent on predefined IP blocks (more than 35% of elec- tronic components currently in development use IP). Let’s briefly summarize the expected advantages of this approach: Shorter development times (by integrating blocks) Lower development costs (the cost of the IP is shared between different customers) Increased reliability (The IP is developed by specialists in this domain and is throughly tested by all of its users, thus avoiding the need for you to perform in-house testing) Focus on core business (‘standard’ peripheral functions, that don’t add value to the application, are outsourced) Of course, IP development must focus on that which is standardized, and is therefore shareable; communication periph- erals, standard protocols, data exchange interfaces, and processor cores – all the pieces of a puzzle that we call System On Chip. It would be very surprising if the aeronautical industry (as well as other safety critical industries) could do without this key element, which is the only solution that can guarantee time to market and sustainability compatible with current requirements. IP andDO254 : verification Let’s first resume the goal of IP verification; to meet the expectations of the user (as described above): The verification provided with the IP (in the package) is an important and usable element of the superordinate pro- ject (the component) The results obtained – if they conform to DO-254 - can be used as elements of the verification dossier (for example, as a result of unit verification of the IP block, or as part of the results of the entirety of code coverage) These will not need to be fully retested (or only very minimally) The DO-254 literature refers only in a general fashion to the impact of the IP on the verification flow of components or on complex equipment. We will first gather together the relevant passages, and then propose a synthetic reading of this approach to the verifi- cation process for objects using IPs. "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
  • 2. DO-254 for Dummies (7) IP & verification process Generic Programming and Verification The first attribute we will look at concerns the verification of the multiple combinations associated with IP configurability. An IP is, of course, a generic product, and therefore extremely configurable (buffer size, number of channels, speed, signal polarity, optional functions, etc). Verifying all possible combinations becomes quickly impossible, although it is possible to achieve 100% of functional and code coverage. Some publications advise verifying the significant and representative combinations, which makes sense and is good prac- tice. Implementation is simple and classical: The simulation set must be iterated on several parameter combinations, until we have tested a quantity sufficient to confi- dently predict the behavior of the object. It is, therefore, just a question of time and of tools. However, this first analysis gives rise to certain issues that merit a closer look: Suitability to the Integrator’s Requirements An IP is destined to be integrated into a higher-level system that freezes the IP configuration definitively. What happens if the particular configuration used does not correspond to any of the configurations previously tested? Can we trust the results of the IP verification in this case? Of course not! In this case, it will be necessary to define a tailored verification strategy adapted to the requirements of the integrator and to perform a differential repeat of the associated activities (evolution of test plan, new verification results, verification review, etc). The supplementary burden of work caused by requirement adaptation should be sufficiently slight relative to the generic verification of the IP, that it can be considered one of the contextual part of IP integration. If that is the case, the integrator with, potentially, the support of the IP provider, will acquire a verification review of the IP in its specific context for minimum effort. "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
  • 3. DO-254 for Dummies (7) Unused Functions and Verification The preceding point –genericity – has another consequence that must be taken into account when using the IP in a safety context. Unlike a function that is specifically dedicated to one single application, the IP may include functionalities that are not used in the current configuration (this is also the case when reusing a previous development). This issue, although not specific to IPs, is particularly problematic in this context, and may act as a brake on more wide- spread introduction of IPs. The user should: Demonstrate that there are no unused functions when the IP is implemented. This can be done using verification and analysis tests. or Demonstrate that the unused functions are perfectly controlled and that they cannot impact negatively on the com- ponent’s functioning (particularly relevant for SEU). This can be done by identifying the unused functions and adding the necessary protection. Verification can then be used to back up the demonstration. This is mentioned in the EASA memo: COTS IP guidelines (in datasheets, user manuals and errata sheets) should be defined to identify specific constraints necessary to properly control the unused functions of the COTS IP. (EASA CM - SWCEH – 001 8.4.4) Two remarks: The control of unused functions usually takes place via parameters or signals peripheral to the IP – hence the phrase above. That means that the management of the IP environment and the relevant limitations must be prioritized during implementation. Again, the customization of an IP, with the possibility of removing unused functions, remains an envisageable alterna- tive, if the extra cost involved remains marginal. The verification must provide evidence that demonstrates as clearly the removal of a function (simulation, analysis) as the robustness against SEU (simulation, test, analysis). This strategic issue in introducing IPs is manageable in most cases, although it requires a certain effort, coupled with IP customization, which leads us back to our first point. "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
  • 4. DO-254 for Dummies (7) Verification and Hierarchy What use is the IP verification review provided with the certification package? It inspires confidence in the integrator and the certifier. We thus demonstrate the mastery of an object by its designer, as well as conformity with DO-254 at the IP level, and con- sequently, the guarantee of correct error-free functioning if we use the IP in an appropriate environment. This is true whichever type of COTS is used. Whether its transparent like an IP COTS (source code provided, development file and verification complete) or black box like an “ordinary” COTS, the user expects an adequate level of verification (whether the verification review is provided with the IP or not). The review provided with an IP that includes service experience and is “silicon-proven” meets this requirement. Using the IP unit check Verification strategies should be based on a hierarchical approach, as for the design approach i.e. before integration at device level, sub-functions should be verified against their respective re- quirements… Sub-functions are a set of low level hardware devices that contribute together to perform a specific function: for instance, an SDRAM memory controller. (EASA CM - SWCEH – 001 8.4.2.2 d) This requirement set out by the EASA and by aircraft manufacturers in the CRI and further defined in the CM above, is completely satisfied by the verification set provided with a DO-254-compliant IP. It shouldn’t even be necessary for the integrator to redo the unit check if all the relevant validation data, including the verification results, are included. Exemption from extensive verification of the higher-level function When integration of sub-functions is complete, the verification of the overall device behaviour should be performed against the related requirements. (EASA CM - SWCEH – 001 8.4.2.2 d) The goal is restated here: higher level (device) verification should focus on an external view of the components, the inter- faces, and common mode processes linking the blocks together. The functioning at the top level, when everything is mov- ing at the same time, is an essential component of verification after integration. Test the robustness of the function Functional robustness should also be assessed at isolated sub-function level. (EASA CM - SWCEH – 001 8.4.2.2 d) As mentioned above, robustness (boundary tests, functioning improbable or impossible) must be evaluated at sub- function level. Indeed, it is often impossible to create the local conditions necessary to evaluate the borderline behavior of a sub-block at the higher-level, or to test the efficiency of a security system that is limited by the IP environment. "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
  • 5. DO-254 for Dummies (7) Assess the quality of the verification via code coverage. The HDL code coverage measurement at sub-function level may alleviate the HDL code coverage measurement at device level. (EASA CM - SWCEH – 001 8.4.2.1 g) Taking into account the issues we’ve just discussed, it is obvious that re-producing comprehensive verification of a func- tion at the higher-level is pointless. This is as true for IPs and components as it is at the component and board or equip- ment levels. At the higher (integration) level, focus is on the verification of the integration itself, and not on unit checking. Are the comprehensive tests of an ASIC (SCAN, ATPG) carried out by the ASIC manufacturer repeated by a system integrator for each ASIC on a board? No, of course not! The code coverage obtained at local level can be entirely legitimately used as a departure point for the higher level. Conclusion and Summary The integration of IPs within embedded systems is inevitable. This will take place by ever simpler means as implementa- tion processes become more transparent and are shared by the community, while still conforming to the main goal of functional safety and process assurance. Some issues still in discussion relate to the role played by IP verification, which must take into account the unique characteristics of this type of open object. It seems that nothing is impossible. On the contrary, solutions that combine common sense, efficiency, productivity gains, and increased safety levels exist. Some of the methods of IP integration may be quite original, as described above, but these methods will be further vali- dated as they are shared by other industrial fields with the same requirements. James Bezamat, 2011, december "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company
  • 6. DMAP DMAP DMAP-IP EXPERT DESIGN www.dmap.fr DMAP Design Methods and Assurance Process 100 Route des Houillères—13590 Meyreuil—BP 2 04.42.61.29.13 contact@dmap.fr DMAP is member of the cluster They trust DMAP "This document is the property of DMAP. Only reproduction for non commercial usage is authorized © DMAP an Arion company