Certification of a Flight Control System

Implemented on an SoCBill Potter

Key Takeaways

1. Model-Based Design increases productivity for development of certified systems

2. A single development environment for System on a Chip

3. Qualified tools that span ARP 4754A, DO-178C and DO-254

2

Certification is Difficult

System

Development

Processes

(ARP 4754A)

Software Life Cycle

Process

(DO-178C)

Hardware Design

Life Cycle Process

(DO-254)

Requirements

Allocation to

Software

Item

Requirements

Allocation to

Hardware

Item

Information Exchange

Between Software

And Hardware

ARP 4761 Safety Assessment

Comply with regulatory guidance Coordinate between engineering domains

Provide evidence

To regulators

Solution - Model-Based Design

IMPLEMENTATION

MCU DSP FPGA ASIC

VHDL, VerilogC, C++

INTEGRATION

ARCHITECTURE & DESIGN

TE

ST

& V

ER

IFIC

AT

ION

GUIDANCE REQUIREMENTS

Environment Models

Physical Components

Algorithms

TEST

SYSTEM

Systems

Domain

Hardware

&

Software

Domains

Evidence

System Model Development

System Level Architecture Model of Helicopter Flight Controls

▪ Plant Models

▪ Physical Items

▪ Digital Hardware Items

▪ Software Items

▪ Redundancy

System Architecture

Components

System Requirements to Architecture Traceability

Flight Control Computer Architecture for Xilinx Zynq SoC

Allocation of System Requirements to Software – CPU View

Allocation of System Requirements to Hardware – FPGA View

Plant Models can be used with System Composer Components

11

Software and Hardware Model Development

DO-178 and DO-254 Processes Using Models

REQUIREMENTS

MODELS(Design Models)

Source Code

Software

DO-178

VE

RIF

ICA

TIO

N

REQUIREMENTS

MODELS(Conceptual Design)

HDL Code(Detailed Design)

Hardware

DO-254

VE

RIF

ICA

TIO

N

Trace Models to Requirements

Verify Conformance to Model Standards

Perform Formal Analysis on Models

Integrated Requirements, Simulation & Model Coverage Analysis

Test Generation for Missing Coverage

System Level Simulation

Provide Verified Models from Software (DO-178C) and Hardware

(DO-254) Processes back to Systems (ARP 4754)

Hardware Item Allocation Software Item Allocation

Hardware

Allocation

Model

Software

Allocation

Model

Configuration Set

Chip Architecture

Fixed Point

Configuration Set

Data Dictionary

CPU ArchitectureRefine Refine

Hardware

Design

Model

Software

Design

ModelFeedback to

Systems Process

for verification

Feedback to

Systems Process

for verification

Verify

System Simulation using Design Models

Software and Hardware Design ModelsSystem Response

Software and Hardware Implementation

Generate C and VHDL Code and Deploy to SoC

C code

Glue code

C and VHDL

VHDL code

Generate

for multi-core

C Code Generation and Traceability Report

24

C Code Inspection and Formal Analysis

25

VHDL Code Generation and Traceability Report

Hardware and Software Testing

Host-Based Software In-The-Loop and Co-Simulation Testing

Test Manager

Test Harness

Code Coverage Analysis

Target-Based Processor and FPGA In-The-Loop Testing

Test Manager

Hardware-Software Integration Tests

Alternate Hardware Testing Methods Using Test Benches

▪ Simulation cases and Simulink Design Verifier cases are exported to Test Benches

Alternate Hardware Testing Methods using Universal

Verification Methodology (UVM)

▪ Simulation cases and Simulink Design Verifier cases are exported to UVM

Qualified Tools

• System Composer

• Simulink

• Stateflow

• Embedded Coder

• HDL Coder

• Simulink

Requirements

• Simulink Check

• Simulink Test

• Simulink Coverage

• Simulink Design Verifier

• Simulink Report

Generator

• Simulink Code Inspector

• Polyspace Bug Finder

• Polyspace Code Prover

• HDL VerifierINTEGRATION

ARCHITECTURE & DESIGN

TE

ST

& V

ER

IFIC

AT

ION

REQUIREMENTS

Environment Models

Physical Components

Algorithms

TEST

SYSTEM

IMPLEMENTATION

MCU DSP FPGA ASIC

VHDL, VerilogC, C++

User Stories and Examples

33

Conclusion

▪ Model-Based Design increases productivity for development of certified systems

▪ A single development environment for System on a Chip

▪ Qualified tools that span ARP 4754A, DO-178C and DO-254

▪ Whether you are a systems engineer, software engineer or hardware engineer, you

can deploy Model-Based Design on your certification project

34

Learn More

▪ ARP 4754 Solutions Page

– https://www.mathworks.com/solutions/aerospace-defense/standards/arp-4754.html

▪ DO-178 Solutions Page

– https://www.mathworks.com/solutions/aerospace-defense/standards/do-178.html

▪ DO-254 Solutions Page

– https://www.mathworks.com/solutions/aerospace-defense/standards/do-254.html

▪ DO Qualification Kit

– https://www.mathworks.com/products/do-178.html

35