Beruflich Dokumente
Kultur Dokumente
Rational
Executive summary
DO-178B is the international and de facto standard for certify- Dollars and sense
Initial cost increase as a result of DO-178B
ing all aviation safety-critical software. The need to comply with
DO-178B can add signicant cost to programs under develop- Typical Added 60100
ment at a time when cost is becoming an increasingly critical +60100
DO-178B project percent cost
percent
factor in complex product development.
Successful Added 2540 percent
+2540 DO-178B project cost for initial development
Companies designing and building safety-critical systems need percent
robust methods and collaborative platforms. This white paper Avionics project Solid process
introduces best practices for software development and without DO-178B Experienced team
According to a recent study by HighRely, projects that need or no effect, respectively. These different software level certica-
to comply with DO-178B standards could see cost increases tions also determine the rigor required in testing and other
anywhere from 25 percent to 100 percent.3 The sources of aspects of developmentthe most challenging of which is
additional costs may include the following: software verication. DO-178B compliance involves six key
processes: planning, development, verication, conguration
Reduced developer productivity due to increases in process management, quality assurance (QA) and certication liaison.
complexity Because the certication liaison process is not a development
Manual reporting and documentation processes that are not activity, this white paper only focuses on the rst ve areas.
suited to the level of detail required to comply with DO-178B
Qualication activities involved in compliance The use of tools within a DO-178B development process
may also be subject to qualication standards, including the
In the current economic environment, it is important for following:
companies to minimize the additional costs related to
DO-178B development. Tools that can introduce errors in the code must be qualied
as development toolsa stringent process with the same
DO-178B characteristics constraints as those associated with embedded code.
The purpose of DO-178B is to provide guidance to companies Tools that can miss errors in the code must be qualied as
developing software-intensive systems to ensure that projects verication toolsa less onerous process.
conform to specied requirements. While DO-178B imposes Other tools that may signicantly improve automation and
strict requirements, it is also objectives drivencompanies may efficiencybut which do not directly affect delivered code
use alternate means of compliance as long as they meet the are not subject to qualication proof.
objective in question. To comply with DO-178B, companies
must provide multiple supporting documents and records sur- Companies face hurdles in obtaining software tool qualication
rounding their development processes. and approval, which is done on a case-by-case basis and which
requires supporting data from the tool vendor.
Different software levels within DO-178BA, B, C, D and
Edirectly correspond to the consequences of a potential soft-
ware failure: catastrophic, hazardous/severe-major, major, minor
4 DO-178B compliance: turn an overhead expense into a competitive advantage
Planning a nutshell, this means that all of the source code you develop
As with the other processes involved in proving compliance with needs to be traceable, veriable and consistent, and it needs to
DO-178B, planning requires associated output documentation, correctly fulll the low-level software requirements.
including the following:
DO-178B requires effective capabilities for measuring and
Plan for software aspects of certication (PSAC) reporting project status deliverables. Automated measurement
Software development plan (SDP) and reporting tools can fulll DO-178B requirements by
Software verication plan (SVP) enabling you to do the following:
Software conguration management plan (SCMP)
Software quality assurance plan (SQAP) Gain access to multiple tools across the development workow
System requirements to avoid slow, costly and error-prone manual data collection
Software requirements standard (SRS) Automatically generate reports and dashboards to help ensure
Software design standard (SDS) that you generate consistent evidence of compliance and pro-
Software code standard (SCS) vide stakeholders with the correct information in a timely
manner
Development
Output documents associated with meeting DO-178B standards Verication
in the development process include software requirements To help ensure that your software fullls DO-178B require-
data, software design descriptions, source code and executable ments, you must submit a verication report that shows the
object code. absence of errorsnot just that you have tested for and detected
errors. You need to prove that all lower-level artifacts satisfy
According to DO-178B stipulations, without veriable, unam- higher-level artifacts, that you have accomplished traceability
biguous, consistent and well-dened requirements, you must between requirements and test cases via requirements-based cov-
create a problem report and submit the issue back to the input erage analysis, and that you can show traceability between code
source to be claried and corrected. You must also be able to structure and test cases through a structural coverage analysis.
trace those system requirements that will be realized by high- Each requirement in your software development process must be
level software requirements to one or more low-level software traceable not only to the code that implements it but also to the
requirements, and a low-level requirement to one or more high- review, test or analysis through which it has been veried. You
level software requirements. Plus, you need to provide all of your must also ensure that you can trace implemented functionality
derived requirements to the system safety assessment process. In back to requirements and that testing can prove thisyou need
to eliminate any dead code or code that is not traceable to
requirements.
IBM Software 5
Output documentation associated with DO-178B includes the coverage. Level C stipulates that companies meet Level D
following: requirements plus 100 percent statement or line coverage. To
gain Level B compliance status, companies must meet Level C
Software verication cases and procedures (SVCP) requirements plus 100 percent decision coverage. Level A
Software verication results (SVR) requires that companies meet all Level B requirements plus
Review of all requirements, design and code 100 percent modied condition decision coverage. Each type
Testing of executable object code of coverage is dened in the standardfor example, statement
Code coverage analysis coverage means that every statement in the program has been
invoked at least once, while decision coverage means that every
As shown in gure 2, DO-178B denes specic verication point of entry and exit in the program has been invoked at least
objectives, including requirements-based testing, robustness once and every decision in the program has reached all possible
testing and coverage testing, depending on the software level for outcomes at least once. During this verication activity, you
which you are complying. At Level E, DO-178B requirements need to qualify the verication tooling that can miss errors
dont apply. Level D requires 100 percent requirements (for example, test coverage or static analysis).
the Rational Harmony process framework and Rational Method potential to signicantly reduce the time needed to produce
Composer software provide templates that companies can use to requirements documentation, requirements traceability reports,
create the following: design documentation and test reports.
Software development plan IBM Rational solutions for the development process
Software verication plan Reducing the cost of development, especially in the context of
Software conguration management plan DO-178B, can translate to reduced development time, which
Software quality assurance plan companies can achieve by using the model-driven development
capabilities within Rational Rhapsody software.
Using Rational Method Composer software, companies can cre-
ate and store templates for the software design standard (SDS) With a well-dened modeling process, you can nd and x
and software code standard (SCS). errors earlier in the development life cycle to signicantly reduce
costs. The formality of modeling in the Unied Modeling
A recent study shows that requirements can be a major cause of Language (UML) or the Systems Modeling Language (SysML)
program problems in aerospace and defense.4 Effective require- in Rational Rhapsody software can help improve quality by pro-
ments managementand especially traceability from require- viding automatic verication through syntactic and semantic
ments to related development artifactsis a key component of model checking. Using Rational Rhapsody software you can exe-
DO-178B. Rational solutions offer extensive help with system cute models to provide early validation of designs and test your
requirements and the software requirements standard (SRS). software throughout the development life cycle.
IBM Rational DOORS software provides the de facto With a model-based design process that is linked to require-
standard for requirements management. In coordination with ments management through Rational Rhapsody and Rational
IBM Rational Team Concert, IBM Rational Rhapsody and DOORS software, you can automatically generate critical deliv-
IBM Rational Quality Manager software, Rational DOORS erables including the following:
technology provides extensive traceability capabilities to help you
meet DO-178B requirements. IBM Rational Insight and System specications
IBM Rational Publishing Engine software provide you with the Application and device code
Requirements traceability reports
Specication, design and test documentation
Test suites, test cases and scenarios
8 DO-178B compliance: turn an overhead expense into a competitive advantage
Effective modeling can enhance communication among teams to projects. Through effective asset management, you can success-
reduce errors and boost product safety and can help companies fully perform cataloging, asset reviews, an impact assessment of
save money and time associated with maintenance and upgrades. asset changes, and auditing and reporting activities to measure
asset value.
Leveraging Rational Rhapsody software and UML can help you
support safety-critical development and provide stakeholders IBM Rational solutions for the verication process
with key views and deliverables, such as a fault-tree analysis, a Testing and validation often are the most expensive areas of the
hazard analysis and constraint tables. The integration between development process. In these phases, it is critical for companies
Rational Rhapsody and Rational DOORS software allows to use effective tooling and best practices to automate as much of
you to link UML models to requirements to provide key capa- the process as possible. Rational testing and quality management
bilities, including completeness checks (Are all requirements solutions can help you meet DO-178B verication requirements
implemented?) and gold plating checks (Does the design contain by extensively automating the testing and validation process.
unnecessary or redundant elements?), and perform a fast and
comprehensive impact analysis of changes prior to software and Rational Quality Manager software is a collaborative and cus-
hardware implementation. Rational Team Concert software, tomizable solution for test planning, execution management,
which is designed to integrate with Rational Rhapsody and workow control, tracking and metrics reporting that provides
Rational DOORS software through the IBM Rational Jazz a central hub through which to manage the verication
platform, provides effective change tracking capabilities to help process. By providing open interfaces, Rational Quality
ensure that approved changes are correctly implemented. Manager software allows you to connect IBM and third-party
testing solutions to manage testing, results and defects.
Model-based design also facilitates reuse of key components Rational DOORS software is a leading requirements manage-
by allowing you to develop rich libraries of formally specied ment application that can help you reduce costs, increase
design elements. IBM Rational Asset Manager software can then efficiency and improve quality by enabling you to optimize
leverage these elements across multiple projects and congura- requirements communication, collaboration and verication
tions to help you dramatically reduce your design, validation and throughout your organization and across your supply chain.
verication burden as well as DO-178B overhead for future Rational DOORS software integrates with Rational Quality
Manager software to enable you to demonstrate requirements-
based test coverage.
IBM Software 9
IBM Rational Test RealTime software is a cross-platform solution Team Concert software, you can bring together distributed
for software component testing, run-time proling and cover- teams on a unied change, conguration and release manage-
age analysis that can help code writers debug and correct ment platform. By coordinating software development around a
errors before they get into production code. Rational Test single conguration management repository, you can take
RealTime software integrates with Rational Quality Manager advantage of the benets of application life-cycle management
software to help you effectively manage test coverage related on a global scale. Rational change and conguration manage-
to the DO-178B verication process. ment capabilities can also boost your organizations efforts to
IBM Rational Logiscope software is a software quality assurance develop, publish, reuse and distribute software components to
tool. It automates code reviews, provides identication and support complex systems development projects. Based on Jazz
detection of error-prone modules for software testing, and per- technology, Rational Team Concert software can help you
forms codebase refactoring to help eliminate duplicate code. connect dispersed teams to increase individual and team
productivity, compress development cycles and rapidly deliver
IBM Rational solutions for the conguration management high-quality software that supports DO-178B compliance.
process
DO-178B processes for conguration management require both IBM Rational Build Forge software is an adaptive process exe-
conguration management and change control of development cution framework that automates, orchestrates, manages and
artifacts. If not done effectively, conguration management and tracks the processes between handoffs within the assembly line
change control activities can considerably increase your develop- of software development to create an automated software factory
ment costs. that helps reduce costs.
IBM Rational technology has long been a leader in these areas IBM Rational solutions for the QA process
with software offerings including Rational Team Concert, The QA process associated with DO-178B compliance is
IBM Rational ClearCase, IBM Rational ClearQuest, designed to show that you have implemented and carried out the
IBM Rational Synergy and IBM Rational Change software. processes documented in the planning stage. As noted above, the
Leveraging these tools can help you effectively formalize and following deliverables are required as part of the quality assur-
automate workows and the associated capture of key informa- ance processSQAR, SCR and SAS.
tion, which can help reduce development costs. With Rational
10 DO-178B compliance: turn an overhead expense into a competitive advantage
Rational Publishing Engine software is an automated document The IBM Rational software platform for systems is designed to
generation solution with the capability to connect a variety of help engineering teams nd new, collaborative ways to develop
data sources, including Rational solutions and select third-party and deliver the right demands on time, on budget, with the right
tools. Using Rational Publishing Engine software to automate quality and in compliance with DO-178B requirementsacross
document generation for ad hoc use, formal reviews, contractual the systems delivery life cycle. IBM Rational solutions for
obligations and regulatory compliance can help you improve safety-critical software development are extensible, through both
productivity and reduce risk and cost.
IBM Software 11
IBM and third-party offerings, to help you in other areas such as into our expertise throughout the life cycle of your solutions.
architecture management and specialized testing and analysis Offering extensive service and research capabilities, IBM can
capabilities. Offerings from IBM provide a measured, incremen- help you reduce costs and align your capabilities with our inno-
tal implementation approach to help you build condence, vations and expertise. A leader in the software development mar-
minimize risk and demonstrate return on investment. ketplace, IBM Rational software offers systems development
solutions that can help you automate your development and doc-
By deploying IBM Rational solutions, you can reuse software umentation processes to realize efficiencies and reduce costs.
assets and skills to improve development productivity and accel-
erate time to market and innovation. Comprehensive traceability For more information
functionality allows you to enhance collaboration and communi- To learn more about how IBM Rational solutions for safety-
cation and enables teams from multiple disciplines to coordinate critical software projects and DO-178B compliance can
system and software architecture activities. Standards-based improve your development practices, please contact your
development capabilities provide an open and extensible IBM sales representative or IBM Business Partner, or visit:
technology platform as well as support for industry standards ibm.com/software/rational/solutions/aerospace/
throughout the development life cyclefrom requirements to
implementation. Leveraging IBM Rational solutions, you can Additionally, nancing solutions from IBM Global Financing
enable global development and delivery by supporting commu- can enable effective cash management, protection from technol-
nication among original equipment manufacturers, suppliers, ogy obsolescence, improved total cost of ownership and return
agencies and contractors. on investment. Also, our Global Asset Recovery Services help
address environmental concerns with new, more energy-efficient
IBM is a top-performing technology company with more than solutions. For more information on IBM Global Financing, visit:
100 years of experience. Our solutions offer a proven track ibm.com/nancing
record, providing you with the condence that you can tap
Copyright IBM Corporation 2010
IBM Corporation
Software Group
Route 100
Somers, NY 10589
U.S.A.
IBM, the IBM logo, ibm.com and Rational are trademarks of International
Business Machines Corp., registered in many jurisdictions worldwide. Other
product and service names might be trademarks of IBM or other companies.
A current list of IBM trademarks is available on the web at Copyright and
trademark information at ibm.com/legal/copytrade.shtml
Each IBM customer is responsible for ensuring its own compliance with
legal requirements. It is the customers sole responsibility to obtain advice of
competent legal counsel as to the identication and interpretation of any
relevant laws and regulatory requirements that may affect the customers
business and any actions the customer may need to take to comply with such
laws. IBM does not provide legal advice or represent or warrant that its
services or products will ensure that the customer is in compliance with
any law.
1
RAND Corporation, Why Has the Cost of Fixed-Wing Aircraft Risen?:
A Macroscopic Examination of the Trends in U.S. Military Aircraft Costs over the
Past Several Decades, Mark V. Arena and others, 2008. The RAND
Corporation. Reprinted with permission.
2,3
Data compiled from June 2010 survey by HighRely via the DO-178
Industry Group members at www.do178site.com
4
IBM, Aviation Week/IBM Systems Engineering Survey: The impact of systems
engineering on A&D industry program results, November 2010.
Please Recycle
RAW14249-USEN-00