Sunday, October 26th
Session 1 – Systems Engineering
SA1: UML 2.0 / SysML Based Systems Engineering Using a Model Driven Approach
Hans-Peter Hoffmann, Ph.D, Telelogic
Increasingly, systems engineers are turning to the System Modeling Language (SysML) to specify and structure their systems. SysML’s advantages include providing verifiability and easily sharing information with other engineering disciplines, particularly software. This tutorial teaches a SysML-based process that systems engineers can use to capture requirements and specify architecture. The process uses SysML exclusively for the representation and specification of system characteristics. Essential SysML artifacts include requirements diagrams, use case diagrams, sequence diagrams, activity diagrams, statechart diagrams, and structure diagrams. The process is function-driven and is based heavily on the identification and elaboration of operational contracts: a message-based interface communication concept. The process has been applied successfully at various customer sites.
Sunday, October 26th
Session 2 – Avionics Systems
SL2: Principles of Avionics Part 1
Albert B. Helfrick, Embry-Riddle
This tutorial covers the early need for and design of electronic-based navigation and communications systems for aircraft. Through the evolution of electronic navigation, various navigation principles and terms will be introduced. Subjects as the development of airways, navigation error terms, landing procedures and the electronic systems that supported those procedures will be discussed. Surveillance systems will be discussed through the development of collision avoidance. The course is about the signals, physics and science of these systems with an understanding of the applications.
SA2: Principles of Avionics Part 2
Albert B. Helfrick, Embry-Riddle
This tutorial is a continuation of Part 1 and begins with fundamentals of the Global Positioning System, which will be covered in detail. The basic operation of GPS will be discussed as well as augmentation systems including wide area and local area augmentation. Blended navigation solutions using GPS and inertial navigation will also be discussed. As in part one, the tutorial is about the science and physics of the GPS-based systems.
Sunday, October 26th
Session 3 – Systems Engineering and Software Safety
SL3: System Safety for Software Intensive Systems
Alan Tribble, Rockwell Collins
Software safety analysis differs from hardware safety analysis in that software failure modes cannot be well characterized or enumerated. Software can fail to execute when expected, may execute but not perform its intended function, or may exhibit unexpected behavior. This tutorial will provide an introduction to software system safety with emphasis on the safety critical systems used in the aircraft industry. In particular, the difference between safety and reliability will be emphasized, current software safety techniques (e.g., DO-178B) will be reviewed and an assessment of current research areas will be provided.
SA3: Life Cycle Systems Engineering
Ellis Hitt, Strategic Systems Solutions, Inc.
This first of two tutorials focuses on the systems engineering tasks, processes, and tools used in the life cycle of a system. Each of the phases of a system’s life cycle will be described starting with pre-concept definition and ending with system disposal. The DoD 5000 Acquisition/Life Cycle Model, phases, and processes for each phase will be discussed. Evolutionary acquisition using spiral development is increasing with multiple design/test/modify phases in each of the development spirals. The development of acquisition documents and data packages will be presented. Preparation of the Systems Engineering Plan will be discussed. The analysis and mapping of a statement of work to investment costs and life cycle costs estimates will be demonstrated.
Sunday, October 26th
Session 4 – Spacecraft Avionics
SA4: Spacecraft Avionics Systems Engineering
George Andrew, GNA Aerospace Consulting Group, Inc.
This tutorial provides a detailed look at basic spacecraft avionics systems level design and engineering requirements required to develop the Avionics System Level Architecture. The session will detail how to derive Avionics System Level requirements from higher Mission Level Requirements and documentation required to conceptualize and develop Avionics Subsystem Architectures.
Monday, October 27th
Session 1 – Communications and Air Traffic Management
MM1: Communications Technologies for Air-Ground Data Links
Ann Heinke, Overlook Consulting, Inc
This tutorial analyzes the technologies proposed for air-ground data links, including technologies for Air Traffic Services, Airline Operational Communications, Airline Administrative Communications and Aeronautical Passenger Communications. A high level understanding of the basic concepts of each technology are provided, as well as a summary of the business aspects of each company providing the services including planned operational dates or network upgrades. This tutorial is intended for all audiences, and provides an overview of the choices for communications technologies for aviation in the near future.
ML1: Requirements for Air Traffic Services Communications
Ann Heinke, Overlook Consulting, Inc
This tutorial explores existing and future requirements for the Air Traffic Services Communications systems known as Aeronautical Mobile Satellite Route Service (AMS(R)S) systems. It examines the fit of existing systems to the requirements, and suggests mitigations or modifications to allow the aviation industry to make use of commercial systems for Air Traffic Services applications. Discussions include oceanic, remote and continental communications when provided by satellite communications systems. The recently published FutureComm report is deciphered and analyzed in terms of achievability of the requirements, and their implications for state-owned versus commercially-owned satellite networks. This tutorial is intended for all audiences, and is key for operators considering equipage choices.
MA1: NEXGEN, SESAR, and Trajectory-based Operations
Jack Fearnsides, MJF Strategies, LLC
This tutorial will provide an in-depth analysis of the initiatives now underway in the U.S. and Europe to transform the Air Traffic Management (ATM) Systems to accommodate predicted demand. We will begin by detailing the goals of the U.S. Next Generation ATM (NextGen) and the Single European Sky ATM Research (SESAR) initiatives, proceeding to a description of the roadmap of operational improvements planned in each program and analyzing the risks and benefits associated with these improvements. Finally, we will focus on the concept of trajectory-based operations and examine its implications both for the ground-based ATM infrastructure and for new avionics technologies as well as dramatic changes in the roles of pilots and controllers.
Monday, October 27th
Session 2 – Avionics Design
MM2: Digital Avionics Systems
Cary Spitzer, AvioniCon
This tutorial presents a systems level overview of the fundamentals of design, construction, assessment, and validation of digital avionics systems. Topics include:
1.) Avionics organizations
2.) Defining the avionics requirements
3.) Data buses
4.) Displays
5.) Hardware and software assessment and validation
6.) Electromagnetic interference
Emphasis will be given to selected topics that are frequently misunderstood or not fully appreciated, such as data buses, and the precise meaning of commonly misused terms.
ML2: Introduction to Digital Avionics Fiber Optics Technology
Mark Beranek, Naval Air Systems Command
The aerospace industry has made great strides in recent years deploying fiber optics and photonics technology on commercial and military platforms. This trend will continue to grow as avionics fiber optic system architectures, networking schemes, and components evolve and mature. Digital avionics fiber optics technology enables high-speed data and video communication onboard military and commercial aircraft. If used smartly, fiber optics technology can effectively future-proof avionics architectures. This tutorial will provide an introduction to fiber optics technology with emphasis on military/aerospace fiber optic and photonic components and systems. In particular, the tutorial will teach the basics physics of light and the application of fiber optics in avionics networks. Technical characteristics of fiber optic cables, connectors, transmitters and receivers will be described. Life cycle cost elements that drive system requirements and qualification testing will also be taught. A bibliographic listing of relevant references and standards organizations will be given. The course concludes with a briefing on future research and development directions for avionics.
MA2: Modern Avionics Architectures
Cary Spitzer, AvioniCon
Architectures from seven civil and military aircraft including the B-757/767, A330/340, MD-11, B-777, F‑16 C/D, C-17, and the F-22 are examined. These architectures have been carefully chosen to cover a spectrum of 1) aircraft types, 2) federated and integrated designs, 3) line replaceable unit vis-à-vis modular packaging, and 4) non-essential to flight critical applications. The hardware and functions of each architecture are discussed.
The architectures of the A-380 and the B-787 are briefly discussed.
Monday, October 27th
Session 3 – Systems Engineering and Integrated Modular Avionics
MM3: Systems Engineering for Net Centric Avionics
Ellis Hitt, Strategic Systems Solutions, Inc.
This second tutorial focuses on applying systems engineering to net-centric avionics and net-centric operations. Net-centric operations are critical to achieving interoperability of systems. Net-centric supports non-linear relationships and increased tempo of operations. Industry and Government must determine the most affordable method of migrating from current systems to a system of systems architecture that enables the net-centric data/information flow needed to achieve the required capabilities. Systems engineering processes are essential to cost effectively select an avionics architecture (hardware and software) that minimizes the need for complete rewiring of an existing aircraft to complete rewrite of the various operational flight programs and systems management software. This tutorial teaches the attendees how to determine the required net-centric capabilities for avionics, assess the capabilities and determine the total ownership cost of the currently installed avionics, identify the capability deficiencies, define alternatives for achieving the required capabilities, the process of analysis of these alternatives to ascertain whether an alternative satisfies the required capability, and the process of determining the total life cycle system cost of each alternative, and yearly funding required to develop, acquire, install, operate, and maintain the alternative.
ML3: Multiple Independent Levels of Safety and Security: High Assurance Architecture for Integrated Modular Systems
Gordon Uchenick, Objective Interface Systems
The Multiple Independent Levels of Security/Safety (MILS) architecture greatly reduces the amount of privileged separation enforcement code while simultaneously making that code more effective. By providing extremely robust Data Isolation and Control of Information Flow, MILS enables system protection to be layered among a kernel, middleware, and applications. Robust protection of the low level kernel and strong separation among partitions facilitate verification that multiple applications do not interfere with each other. The greatly reduced amount of critical code makes it more practical to mathematically prove that all separation enforcement is Non-bypassable, Evaluatable, Always Invoked, and Tamperproof (NEAT).
MA3: Introduction to Security for Integrated Modular Avionics
Gordon Uchenick, Objective Interface Systems
Our everyday experiences on the Internet teach us that information security is a serious concern for all of the data that we constantly use in our personal lives. Moreover, the avionics system designer is required by regulations to address security requirements when the information processed by an IMA component is sensitive or classified. Unfortunately, security is defined by the Information Assurance community in complex and obscure language. This tutorial is an introduction to security that starts with a simple foundation: “Why do we need security?” From that point, knowledge is built in clear and understandable terms that will familiarize the attendee with the basic concepts of security, evaluations, certifications, accreditations, and international recognition.
Monday, October 27th
Session 4 – Design Assurance
MM4: Software Design Assurance: DO-178B & DO-278
Uma Ferrell, Ferrell & Associates Consulting
RTCA DO-178B (Software Considerations in Airborne Systems and Equipment Certification) is the industry standard for governing the development, verification, and the certification aspects related to software for civil avionics. Two additional RTCA documents – DO-248B and DO-278 have both clarified and extended DO-178B’s reach to ground and space-based systems. In addition, DO-178B has been applied in the automotive industry for safety-critical development and is one of the standards recognized by the Food and Drug Administration for use in life-critical medical devices. This tutorial is intended to provide a detailed overview of DO-178B, what it is, what it is not, how to apply it, and pitfalls to avoid in its application. In addition to explaining the guidelines, the tutorial will discuss the practical application of RTCA DO-178B. The tutorial will conclude with a summary of relevant Federal Aviation Administration guidance associated with the application of software design assurance and current research activities on related topics. Even if you have some familiarity with DO-178B, this session will help reinforce and deepen your understanding of its content and intent.
Note: RTCA SC-205/EUROCAE WG-71 is working on updates to DO-178B, DO-248B, and DO-278. We will be providing current status of this effort in this tutorial.
ML4: Advanced Topics in Software Design Assurance: DO-178B & DO-278
Tom and Uma Ferrell, Ferrell & Associates Consulting
RTCA DO-178B is often regarded as an overly rigid standard; best suited for large programs using a strict waterfall methodology and outdated programming languages. This tutorial is intended to show both practitioners and managers how DO-178B can be used with even the most modern software engineering practices, languages, and tools. Different life cycles, distributed and subcontracted software development will be discussed as will the application of DO-178B on software maintenance projects. Other topics include handling independence in small teams, making SQA a value-added function, and creating/using traceability effectively. Finally, key topics that often cause confusion or which lead to excessive cost will be addressed including robustness testing, tool qualification, control categories, and designing for verification. This tutorial has been designed for those who want to make DO-178B work for your organization to efficiently develop better, safer software, rather than it being just another compliance document that adds cost.
Note: RTCA SC-205/EUROCAE WG-71 is working on updates to DO-178B, DO-248B, and DO-278. There will be a discussion of changes that are being proposed.
MA4: Complex Electronics Hardware Design Assurance: DO-254
Tom Ferrell, Ferrell & Associates Consulting
RTCA DO-254/ED-80 (Design Assurance Guidance for Airborne Electronic Hardware) was released in April 2000 and is designed to fill the gap for developmental assurance for complex electronic hardware including programmable logic devices (PLDs) and application specific integrated circuits (ASICs). Since its release, the document has generated considerable interest in the topic of hardware design assurance and more than a little bit of controversy. This tutorial is intended to provide a detailed overview of DO-254, what it is, what it is not, and how to apply it. In addition to explaining the guidelines, the tutorial illustrates the parallels between DO-254 and DO-178B, the predominant standard for design assurance of software, and includes a discussion of the tradeoffs between implementing in hardware versus software. The tutorial will conclude with a summary of current activities in industry shaping the evolution of developmental assurance for complex hardware including an overview of related regulatory efforts.
Note: DO-254 has been controversial since the document’s publication. The FAA has published an advisory circular AC 20-152 on the use of DO-254. This AC limits the use of DO-254 which is not well understood especially by the defense community when an equivalent level of safety is imposed on complex electronic hardware development.
Monday, October 27th
Session 5 – System Software Safety
MM5: Requirements Engineering for Software-Intensive Safety-Related Systems
Jeffrey Joyce, Critical Systems Labs, Inc.
This tutorial provides an introduction to concepts, methodologies and techniques for the specification of requirements for software-intensive systems. In particular, this tutorial will cover the standard topics of requirements engineering including elicitation, validation, organization, traceability and management. The material will also cover different styles of representing requirements including the use of natural language, semi-formal methods and formal methods.
Many of the examples that appear in the material for this tutorial are based on the functionality of Air Traffic Management (ATM) systems. The tutorial also places particular emphasis on the specification of safety-related requirements in the context of both ground-based and airborne systems.
ML5: An Introduction To System/Software Safety Methodology
Jeffrey Joyce, Critical Systems Labs, Inc.
This tutorial provides an introduction to the fundamental concepts, processes and techniques of system safety for software-intensive systems. While intended primarily for the digital avionics community, this tutorial will include insights about system/software safety from other industry sectors that increasingly depend on software to perform safety-related tasks. In keeping with the theme of this year’s conference, this tutorial will include material that is especially relevant to Integrated Modular Avionics (IMA).
MA5: Disciplined Verification of Software-Intensive Systems
Jeffrey Joyce and Laurent Fabre, Critical Systems Labs, Inc.
This tutorial provides a thorough introduction to the verification of software-intensive systems based on the principles, concepts, methods and technique commonly used by disciplined approaches. The tutorial will address unit, integrate, system and acceptance levels of verification. In addition to verifying the correctness of an implementation with respect to functional requirements, this tutorial will examine other aspects of verification, e.g., performance testing, safety verification, security verification. The tutorial will discuss Section 6 and Table A-7 of RTCA DO 178B (on verification) with particular emphasis on structural coverage analysis. Finally, the tutorial will consider the challenges of verifying increasingly complex digital avionics software and the prospect of using advanced methods such as formal method address these challenges.
|
