COTS FACE Solutions

RTI and Wind River

DoD Airborne systems are typically developed for a unique set of requirements by a single vendor

– Long lead times

– Limited reuse of software

– Barriers to innovation / competition

Why the FACE initiative?

The Future Airborne Capability Environment (FACE) initiative is an approachdesigned as a response

to the DoD aviation community’s challenges

Existing DoD Acquisition structure does not facilitate software reuse well

Open Architecture (OA) standards insufficient to enable software reuse

Platform PMs are not funded to assume cost or schedule risk of multi-platform requirements

• AdaCore

• Astronautics Corporation of America

• Avalex Technologies

• Avionics Interface Technologies

• Barco Federal Systems

• Brockwell Technologies

• CALCULEX

• Camber Corporation

• Carnegie Mellon Univ. –Software Engineering Institute

• CERTON Software, Inc.

• Chesapeake Technology Int’l.

• CMC Electronics

• Cobham Aerospace Communications

• Core Avionics & Industrial Inc.

• Creative Electronic Systems –CAL, Inc.

• CTSi

• Curtiss-Wright Defense Solutions

• DDC-I

• DornerWorks

• Draper Laboratory

• Enea Software & Services

• ENSCO Avionics

• Esterel Technologies

• Exelis Inc.

• Fairchild Controls

• GE Intelligent Platforms

• General Atomics Aeronautical Systems, Inc.

• GrammaTech, Inc.

• Howell Instruments, Inc.

• Johns Hopkins Univ. - APL

• Kaman Precision Products

• KIHOMAC

• Kutta Technologies

• L-3 Communications

• LDRA Technology

• LynuxWorks

• Mercury Systems

• Mobile Reasoning, Inc

• Physical Optics Corp.

• Presagis USA, Inc.

• Pyrrhus Software

• Vencore

• Real-Time Innovations

• Richland Technologies

• Selex Galileo Inc.

• SimVentions

• Stauder Technologies

• Southwest Research Institute

• Support Systems Associates

• Symetrics Industries

• Technology Service Corporation

• Thomas Production Company

• TTTech North America, Inc.

• Tucson Embedded Systems

• US Army Electronic Proving Ground

• Verocel

• Zodiac Data Systems

FACE Consortium Members

• BAE Systems

• Bell Helicopter

• Elbit Systems of America

• GE Aviation Systems

• General Dynamics

• Green Hills Software

• Harris Corporation

• Honeywell Aerospace

• IBM

• Northrop Grumman

• Raytheon

• Sierra Nevada Corp.

• Sikorsky Aircraft

• Textron Systems

• US Army AMRDEC

• UTC Aerospace Systems

• Wind River

Sponsor Level Member Organizations

Principal Level Member Organizations

Associate Level Member Organizations

• Boeing

• Lockheed Martin

• Rockwell Collins

• US Army PEO Aviation

• US Navy NAVAIR

What is standardized on these devices?

The Interface!

What is competitive about these devices?

ANSI standard C81.67 and IEC standard 60061-1

The Application Design!

The future FACE marketplace

Benefits of Standardization

Characteristic LED CFL Incandescent

Light bulb projected lifespan 50,000 hours 10,000 hours 1,200 hours

Watts per bulb (equivalent 60 watts) 10 14 60

Cost per bulb $7.95 $5.67 $1.99

KWh of electricity used over 50,000 hours 500 700 3000

Cost of electricity @$0.10 / KWh $50 $70 $300

Bulbs needed for 50,000 hours of use 1 5 42

Equivalent 50,000 hour bulb expense $7.95 $28.35 $83.58

Total cost for 50,000 hours $57.95 $98.35 $383.58

Total cost for avg. 25 bulbs per household $1,448.75 $2,458.75 $9,589.50

Savings for switching from incandescent $8,140.75 $7,130.75 $0

A common infrastructure enables both innovation and cost savings

Closed/Proprietary Open

The FACE Open Architecture

FACE Layered Architecture

Portable

FACE

Application

Portable

FACE

Application

Portable

FACE

Application

Portable

FACE

Application

Computing Hardware

I/O Services Segment

Platform Specific Segment

Operating System Segment

Transport Services Segment

FACE Architecture: Layered Architecture Example

The FACE use of abstraction layers based upon

existing commercial and military standards at

segment interfaces diminishes the need for new

standards

FACE Interface Abstraction Layers

O/S interface – POSIX PSE51-53 and ARINC 653

I/O interface – Common I/O API and messaging interface

Transport interface – POSIX, ARINC 653, DDS, more

Publicly Available FACE Documentation

FACE Technical Standard Edition 1.0

– http://www.opengroup.org/bookstore/catalog/c122.htm

Technical Corrigendum for FACE Edition 1.0

– https://www2.opengroup.org/ogsys/catalog/U131

FACE Technical Standard Edition 1.1

– https://www2.opengroup.org/ogsys/catalog/C13J

FACE Technical Standard Edition 2.0

– www.opengroup.org/bookstore/catalog/c137.htm

FACE Technical Standard Edition 2.1

– https://www2.opengroup.org/ogsys/catalog/c145

FACE Reference Implementation Guide

– https://www2.opengroup.org/ogsys/catalog/g142

FACE Shared Data Model

– https://www.opengroup.us/face/documents.php?action=show&dcat=&gdid=16917

FACE Verification Statement– https://www.opengroup.us/face/documents.php?action=show&dcat=&gdid=16719

FACE Conformance Policy

– https://www2.opengroup.org/ogsys/catalog/X1303

FACE Conformance Authorities Plan

– https://www2.opengroup.org/ogsys/catalog/X1302

FACE Conformance Statement

– https://www.opengroup.us/face/documents.php?action=show&dcat=&gdid=16656

FACE Conformance Verification Matrix User’s Guide

– www.opengroup.org/bookstore/catalog/x1318.htm

FACE Conformance Verification Matrix Edition 1.1

– www.opengroup.org/bookstore/catalog/x1318a.htm

FACE Conformance Verification Matrix Edition 2.0

– www.opengroup.org/bookstore/catalog/x1318b.htm

FACE Business Guide, Version 1.1

– http://www.opengroup.org/bookstore/catalog/g115.htm

FACE Library Requirements Document Edition 2.0

– https://www.opengroup.us/face/documents.php?action=show&dcat=&gdid=16630

FACE Library Implementation Plan

– https://www.opengroup.us/face/documents.php?action=show&dcat=&gdid=16438

FACE Contract Guide, Version 1.0

– http://www.opengroup.org/bookstore/catalog

4 FACE Operating Systems Profiles

FACE Operating System Segment (OSS)

Portable Component Segment

Transport Services SegmentFACE Safety Base Profile

241 POSIX PSE52 APIs + ARINC 653

FACE Safety Extended Profile

331 POSIX PSE52 APIs + ARINC 653

FACE General Purpose Profile

796 POSIX PSE53 APIs; ARINC 653 Optional

FACE Security Profile

162 POSIX PSE52 APIs + ARINC 653

Wind River FACE Aligned Operating Systems

FACE Operating System Segment (OSS)

Portable Component Segment

Transport Services SegmentFACE Safety Base Profile

VxWorks 653

FACE Safety Extended Profile

VxWorks 653

FACE General Purpose Profile

Wind River Linux, VxWorks 7

FACE Security Profile

VxWorks MILS

VxWorks 653 IMA Architecture

User

Mode

Kernel

Mode

ARINC 653

Guest OS

Flight

Control (FC)

Application

Level A

POSIX

Guest OSVxWorks

Guest OS

Linux

Guest OS

Radar

Application

Level B

Graphics

Generator

Application

Level C

Display

Application

Level D

Multi-core Hardware

VxWorks 653 MOSModule Operating System

ARINC 653 Health Management

Thread

Scheduling

Partition

Per Core

Scheduling

Core 0 Core1 Core 2 Core n

ARINC 653 Ports

XML Configuration Data

Board / Devices BSP ASP Device 0 Device n

DO-178C COTS Certification Evidence Package

RTCA DO-178C DAL A

COTS Evidence Enables

– Integration to system package

– Ease of verification by Certification Authority

COTS Evidence Reduces

– Certification risk

– Cost of certification

Sealed DVD with Certification Artifacts

(70,000 hyperlinked files)

• VxWorks 653 (MOS +POS) Cert Platform kernel• Source and binary code

• Plan for Software Aspects of Certification (PSAC)

• Software Quality Assurance Plan• Software Configuration Management Plan

(SCMP)• Software Development Plan (SDP)

• Software requirements standards• Software design standards• Software coding standards

• Software Verification Plan (SVP)• Software Requirements Specification (SRS)

• 7,000 Requirements

• Software Design Document (SDD)• Version Description Document (VDD)• Traceability matrix• Software development folder

• Design reviews• Code reviews (40,000 LOC)• Test reviews (7,500 Tests)• Functional test (270,000 LOC)• Functional test coverage results (object level)

• Tool qualification documentation• Test Harness for VxWorks 653• VerOcode, VerOLink, VeroSource-A, VeroTrace

• Software Accomplishment Summary (SAS)• Software Vulnerability Analysis• Robust Partitioning AnalysisWind River safety solutions are used by

over 250 customers on over 350 projects

working on over 70 aircraft

17 © 2015 Wind River. All Rights Reserved.

VXWORKS 653 SUCCESS

BOEING 787 DREAMLINER

Northrop Grumman Selects VxWorks 653UH-60 “Black Hawk” Cockpit Digitization Program

"Our use of VxWorks 653 enables us to align with the FACE™ Technical Standard, achieve

DO-178C certification, and consolidate our avionics technology on multi-core hardware,

resulting in superior performance and lower life cycle costs.“

- Ike Song, vice president, Situational Awareness Systems

Photo credit: U.S. Army photo by Sgt. Scott Tant

Transport Services Segment

© 2015 RTI 19

FACE Data Model Architecture

• Three levels to the primary data and message models aligned with ideas from the Object Management Group’s (OMG) Model Driven Architecture™

• The addition of the Unit of Portability Model (UM) allows components to be tied to the messages and data elements in the Platform Model

• Supports definition and potentially generation of code and other artifacts

Platform Independent Model

( )

Platform-Specific Model

( )

© 2015 RTI 20

RTI Transport Services Segment (TSS)

© 2015 RTI 21

DDS-RTPS wire protocol compliant: interoperable with non-FACE DDS apps

Publish/subscribe paradigm

Physical connection(s) configurable at

integration time

Generated by RTI IDL compiler from

Platform Data Model

Loose Coupling forEasy Integration and Evolution

DDS Compliant Publish/Subscribe

Control

App

Co

mm

an

ds

Sensor

Sensor

Data

ActuatorSensor

Sensor

Data

Display

App

© 2015 RTI 22

Flexible CommunicationApplication Transparent, Configured at Integration Time

© 2015 RTI 23

RTI

DD

S

CO

RB

A

Sock

ets

PO

SIX

Q

ue

ue

s

Shar

ed

me

mo

ry

Qu

eu

ing

po

rts

Sam

plin

g p

ort

s

Proximity Intra-partition ● ● ● ● ● ● ●

Inter-partition ● ● ● ● ●

Inter-node ● ● ●

Multiple concurrently ●

Distribution One-to-one ● ● ● ● ● ● ●

One-to-many ● ● ● ● ●

Many-to-one ● ● ●

Many-to-many ● ●

● Unreliable

Airborne System

Airborne System

Flexible IntegrationIncluding TSS and

Native DDS Apps

© 2015 RTI 24

FACEUoP

FACEUoP

Local Communication

TSS Library TSS Library

Routing Service

FACEUoP

FACEUoP

Local Communication

TSS Library TSS Library

Routing Service

DDSApp

DDSApp

Local Communication

DDS Library DDS Library

Routing Service

Ground System

DO-178C Level A Certification Path

• Currently generating DO-178C Level A evidence for core DDS implementation

• TSS is thin layer over DDS (~2k ELOC)

© 2015 RTI 25

FACE COTS Partner Solution Stack

Portable Component Segment

Operating System Segment with Wind River VxWorks 653

SCADE FACE Adaptor for TS

SCADE Suite for Control

Application

SCADE Display for

Graphics and HMI Design

Transport Services Segment

IO Services Segment

ARINC

Ports

RTI Connect™ DDS

SCADE System IMA for

ARINC 653 System

Architecture

Sockets

Platform Specific Services Segment

Common

ServicesGraphic Services

SCADE System IMA

Configuration Tables GeneratorGraphics Server

for ARINC 661 or Open GL

GE-IP SBC312 Board with Freescale P4080

O

S

TS

O

S

O

S

O

S

IO

FACE initiative will enable getting

capabilities to the Warfighter faster

and at a lower cost

COTS FACE components from a

wide ecosystem of Industry

suppliers is driving the economic

efficiencies for FACE platforms

COTS FACE solutions are

available NOW

Summary