![Page 1: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/1.jpg)
Certification of a Flight Control System
Implemented on an SoCBill Potter
![Page 2: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/2.jpg)
Key Takeaways
1. Model-Based Design increases productivity for development of certified systems
2. A single development environment for System on a Chip
3. Qualified tools that span ARP 4754A, DO-178C and DO-254
2
![Page 3: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/3.jpg)
Certification is Difficult
System
Development
Processes
(ARP 4754A)
Software Life Cycle
Process
(DO-178C)
Hardware Design
Life Cycle Process
(DO-254)
Requirements
Allocation to
Software
Item
Requirements
Allocation to
Hardware
Item
Information Exchange
Between Software
And Hardware
ARP 4761 Safety Assessment
Comply with regulatory guidance Coordinate between engineering domains
Provide evidence
To regulators
![Page 4: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/4.jpg)
Solution - Model-Based Design
IMPLEMENTATION
MCU DSP FPGA ASIC
VHDL, VerilogC, C++
INTEGRATION
ARCHITECTURE & DESIGN
TE
ST
& V
ER
IFIC
AT
ION
GUIDANCE REQUIREMENTS
Environment Models
Physical Components
Algorithms
TEST
SYSTEM
Systems
Domain
Hardware
&
Software
Domains
Evidence
![Page 5: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/5.jpg)
System Model Development
![Page 6: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/6.jpg)
System Level Architecture Model of Helicopter Flight Controls
▪ Plant Models
▪ Physical Items
▪ Digital Hardware Items
▪ Software Items
▪ Redundancy
System Architecture
Components
![Page 7: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/7.jpg)
System Requirements to Architecture Traceability
![Page 8: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/8.jpg)
Flight Control Computer Architecture for Xilinx Zynq SoC
![Page 9: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/9.jpg)
Allocation of System Requirements to Software – CPU View
![Page 10: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/10.jpg)
Allocation of System Requirements to Hardware – FPGA View
![Page 11: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/11.jpg)
Plant Models can be used with System Composer Components
11
![Page 12: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/12.jpg)
Software and Hardware Model Development
![Page 13: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/13.jpg)
DO-178 and DO-254 Processes Using Models
REQUIREMENTS
MODELS(Design Models)
Source Code
Software
DO-178
VE
RIF
ICA
TIO
N
REQUIREMENTS
MODELS(Conceptual Design)
HDL Code(Detailed Design)
Hardware
DO-254
VE
RIF
ICA
TIO
N
![Page 14: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/14.jpg)
Trace Models to Requirements
![Page 15: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/15.jpg)
Verify Conformance to Model Standards
![Page 16: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/16.jpg)
Perform Formal Analysis on Models
![Page 17: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/17.jpg)
Integrated Requirements, Simulation & Model Coverage Analysis
![Page 18: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/18.jpg)
Test Generation for Missing Coverage
![Page 19: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/19.jpg)
System Level Simulation
![Page 20: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/20.jpg)
Provide Verified Models from Software (DO-178C) and Hardware
(DO-254) Processes back to Systems (ARP 4754)
Hardware Item Allocation Software Item Allocation
Hardware
Allocation
Model
Software
Allocation
Model
Configuration Set
Chip Architecture
Fixed Point
Configuration Set
Data Dictionary
CPU ArchitectureRefine Refine
Hardware
Design
Model
Software
Design
ModelFeedback to
Systems Process
for verification
Feedback to
Systems Process
for verification
Verify
![Page 21: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/21.jpg)
System Simulation using Design Models
Software and Hardware Design ModelsSystem Response
![Page 22: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/22.jpg)
Software and Hardware Implementation
![Page 23: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/23.jpg)
Generate C and VHDL Code and Deploy to SoC
C code
Glue code
C and VHDL
VHDL code
Generate
for multi-core
![Page 24: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/24.jpg)
C Code Generation and Traceability Report
24
![Page 25: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/25.jpg)
C Code Inspection and Formal Analysis
25
![Page 26: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/26.jpg)
VHDL Code Generation and Traceability Report
![Page 27: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/27.jpg)
Hardware and Software Testing
![Page 28: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/28.jpg)
Host-Based Software In-The-Loop and Co-Simulation Testing
Test Manager
Test Harness
Code Coverage Analysis
![Page 29: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/29.jpg)
Target-Based Processor and FPGA In-The-Loop Testing
Test Manager
Hardware-Software Integration Tests
![Page 30: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/30.jpg)
Alternate Hardware Testing Methods Using Test Benches
▪ Simulation cases and Simulink Design Verifier cases are exported to Test Benches
![Page 31: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/31.jpg)
Alternate Hardware Testing Methods using Universal
Verification Methodology (UVM)
▪ Simulation cases and Simulink Design Verifier cases are exported to UVM
![Page 32: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/32.jpg)
Qualified Tools
• System Composer
• Simulink
• Stateflow
• Embedded Coder
• HDL Coder
• Simulink
Requirements
• Simulink Check
• Simulink Test
• Simulink Coverage
• Simulink Design Verifier
• Simulink Report
Generator
• Simulink Code Inspector
• Polyspace Bug Finder
• Polyspace Code Prover
• HDL VerifierINTEGRATION
ARCHITECTURE & DESIGN
TE
ST
& V
ER
IFIC
AT
ION
REQUIREMENTS
Environment Models
Physical Components
Algorithms
TEST
SYSTEM
IMPLEMENTATION
MCU DSP FPGA ASIC
VHDL, VerilogC, C++
![Page 33: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/33.jpg)
User Stories and Examples
33
![Page 34: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/34.jpg)
Conclusion
▪ Model-Based Design increases productivity for development of certified systems
▪ A single development environment for System on a Chip
▪ Qualified tools that span ARP 4754A, DO-178C and DO-254
▪ Whether you are a systems engineer, software engineer or hardware engineer, you
can deploy Model-Based Design on your certification project
34
![Page 35: Certification of a Flight Control System Implemented on an SoC · Qualified tools that span ARP 4754A, DO-178C and DO-254 2. Certification is Difficult System Development Processes](https://reader035.vdocument.in/reader035/viewer/2022071419/611714def930bf136b3e85b8/html5/thumbnails/35.jpg)
Learn More
▪ ARP 4754 Solutions Page
– https://www.mathworks.com/solutions/aerospace-defense/standards/arp-4754.html
▪ DO-178 Solutions Page
– https://www.mathworks.com/solutions/aerospace-defense/standards/do-178.html
▪ DO-254 Solutions Page
– https://www.mathworks.com/solutions/aerospace-defense/standards/do-254.html
▪ DO Qualification Kit
– https://www.mathworks.com/products/do-178.html
35