The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than that for which it is supplied without the express written consent of SPP. 第1回 航空機装備品認証技術 オープンフォーラム ~ソフトウエア認証への取り組みと課題~ 2019年 3月 14日
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or
disclosed to any third party, or used, for any purpose other than that for which it is supplied without the express written consent of SPP.
第1回 航空機装備品認証技術
オープンフォーラム
~ソフトウエア認証への取り組みと課題~
2019年 3月 14日
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
ソフトウェア認証への取り組み
2
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
民間機開発への取り組み
主脚 & ドア 構造
前脚&ドア 構造
脚揚降 制御システム
ブレーキ 制御システム
ステアリング 制御システム
Landing Gear System
STATUS
Nose Landing Gear(NLG) 製造
Retract Actuator 製造
Main Side Brace Actuator 製造
YEAR 2010 2015
All Landing Gear System
設計/製造
Main Landing Gear(MLG) KIT 製造
TIER1 LANDING GEAR
SYSTEM SUPPLIER
(Japanese Customer Only)
TIER1.5 LANDING GEAR
SUPPLIER
TIER1 LANDING GEAR
SYSTEM SUPPLIER
TIER2 COMPONENT
SUPPLIER/
BUILD-TO- PRINT SUPPLIER
1990 1995
Landing Gear 設計/製造
NLG&MLG,
NWSS
設計/製造
2000 2005
3
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP. 5
• DAL: Design Assurance Level • PDS: Previously Developed Software • TQ: Tool Qualification •MBD: Model Based Development • FM: Formal Method • EASA: European Union Aviation Safety Agency
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
•Plan for Software Aspects of Certification (PSAC) :SW証明計画書 •Software Development Plan (SDP) : SW開発計画書 •Software Verification Plan (SVP) : SW検証計画書 •Software Configuration Management Plan (SCMP): SW構成形態管理計画書 •Software Quality Assurance Plan (SQAP) : SW品質保証計画書
•Software Requirement Standard (SRS):ソフトウェア要求規格書 •Software Design Standard (SDS):ソフトウェア設計規格書 •Software Coding Standard (SCS):ソフトウェアコード規格書
5Plan
3Standard
取り組み①:Plan/Standard/Others
6
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
•Software Checklist for General :各文書に対するチェックリスト ⇒設計文書, 試験レポート, 形態管理文書, Milestone Review等 •General Software Artifact Review Procedure :SWレビュー手順 •SW Archival, Retrieval, and Duplication Process:SW文書保管、復元規定 •DB Backup Procedure :DBのバックアップ規定 •Software Change Control Board Process :SW CCB(変更管理)手順 •Software Problem Report Process :SW PR発行及び運用規定 •SW Structural Coverage Analysis Procedure :SWカバレッジ解析手順 •Software Complexity Analysis Procedure :SW複雑度解析手順 •Software Unit Test Procedure :SW単体テスト手順 •Software verification code make procedure :SW検証用コード生成手順 •Workflow software verification for test engineer :テスタ用SW検証作業手順 •Software Installation Procedure :SWインストール手順 ・・・
Others
取り組み①:Plan/Standard/Others
7
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
ソフトウェア開発に必要な体制(当社例)
DO-178B 審査対象
ソフトウェア開発チーム
Engineering
Org.(GM)
SW Developers
(Coder)
PM
CM
SQA
DERQA Org.
(GM)
Certification
Regulation
Organization
(FAA)
プロセス
及び
成果物
の評価
プロセス及び
成果物の
監視、審査
及び承認
Customer
SW Lead
(Requirement)
SW Developers
(Design)
SW Developers
(Tester)
Safety
DL
(System)
CCB開催メンバー
成果物 担当
安全性解析 Safety & Reliability Engineer
システム要求 Design Lead
High-Level要求 Software Lead
Low-Level要求 Software Designer
コーディング & コンパイル
Software Coder
試験手順書 Software Tester
検証試験 Software Tester
検証結果報告書 Software Tester
ソフトウェア形態 Software Coder
ソフトウェアリリース 報告書
Software Lead
SQA報告書 SQA Lead
形態管理報告書 CM Manager
変更要求報告書 CM Manager
ソフトウェア環境 形態
Software Developer
取り組み②:認証取得体制
8
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
民間機用ソフトウェア開発の為に新規購入した主なツール(当社例)
作業目的 購入ツール 備 考
要件(仕様)管理 DOORS 日本IBM社製
変更管理 Change 日本IBM社製
形態管理 Synergy 日本IBM社製
構造解析 LDRA LDRA社製
MBD
(シミュレーション/ACG)
MATLAB/Simulink/
Embedded Coder等
Mathworks社製
ACG:Auto Code Generation
静的解析/設計エラーチェック
Polyspace (Bug Finder/Code Prover)
Mathworks社製
HILS(Hardware In the loop Simulation)
SCALEXIO dSPACE社製 *自動化目的
取り組み③:開発ツール整備
9
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
・DO-178C付属書(*1)で要求される各種Plan及びStandardの整備。(当社例)
要求フェーズ
Simulation Model作成及び妥当性確認(MIL)
System 要求作成
HLR作成及び妥当性確認
結合フェーズ
EOC(実行コード)生成
テストフェーズ
HLR Based Test
デザインモデル作成及び妥当性確認
HLR Based Simulation (MIL)
設計フェーズ
LLR作成及び妥当性確認
手動コード生成 & Code Review
Code 静的解析
Coupling Analysis
Code 静的解析
自動コード生成
設計エラーチェック
システム作業
ソフトウェア作業
設計フェーズ
コーディングフェーズコーディングフェーズ
MBD プロセス
従来 プロセス
Unit Test LLR Based Simulation (SIL)
取り組み④:MBDプロセス整備
*1:DO-178C付属書 TQ : DO-330 MBD: DO-331 FM : DO-333
10
HLR :High Level Requirement
LLR :Low Level Requirement
EOC :Executable Object Code
MIL :Model In-the Loop
SIL :Software In-the Loop
PIL :Processor In-the Loop
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
ソフトウェア開発作業は、以下の4つのステージ(Stage Of Involvement : SOI)に分け、監査員(FAAではDER)が各ステージに応じた監査を行う。 FAA : Federal Aviation Administration (米国連邦航空局)
DER : Designated Engineering Representative (技術に関するFAAから指名された代理人)
認証機関による監査(1/2)
11
SOI#1:開発組織と計画内容(計画フェーズ)の監査
SOI#2:設計プロセス(設計フェーズ)の監査
SOI#3:検証プロセス(検証フェーズ)の監査
SOI#4:全体を通しての開発プロセスの監査
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
安全性を担保するための各種プロセス(要求, 設計, 検証, CM, QA監査)を遵守しているかを監査。
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
設計/検証フェーズ
プロセス要素
・計画書で決めたルールを必ず遵守する。
⇒遵守する為にシステムでプロセスを管理するのがベスト
認証取得するうえで重要(必要)なこと(2/3)
14
・作業の独立性を確保する。(一人での作業は厳禁)
・Problem Reportの活用⇒変更管理
・Safety EngineerやSQAとの連携
技術的要素
・安全性を考慮した設計(Monitor手法)
・設計の妥当性を示す論理的根拠(エビデンス)
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP. 15
認証取得するうえで重要(必要)なこと(3/3)
各エビデンスの残し方を見れば、正しいプロセスなのかわかる。
・エビデンスって? 要求/設計の妥当性を示すエビデンス
Traceabilityを示すエビデンス
Test Case/Procedureの妥当性を示すエビデンス
Plan通りに開発が行われていることを示すエビデンス
形態管理, 変更管理を示すエビデンス
・DERは、エビデンスを管理する形態管理者に様々な質問を浴びせ、エビデンスの残し方をチェックする。
・認証取得できるかは、エビデンス次第。
・全ての作業エビデンスを形に残すことが重要。
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
認証への課題
16
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP. 17
認証への課題(1/5)
DO-178のプロセスを適用すると、品質は向上する。
しかしながら・・・
競争力を上げる為には・・・
当然コストは増加。要因としては・・・
• 開発プロセスの整備(開発環境への投資)
• 作業量増加に伴い開発LT増加
• LT短縮の為に開発リソース増加
• 作業者の能力
コストを抑えて品質を確保する必要あり。
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP. 18
Data Flow/Function Tree(どうやって、Data/Control Coupling Analysisを行うの?)
Traceability(どの要求-Test間のTraceをとるの?)
SUMITOMO PRECISION
2019/03/14
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP. 19
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP. 20
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP. 21
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
The information in this document is the property of Sumitomo Precision Products Co. ,LTD.(SPP) and may not be duplicated, or disclosed to any third party, or used, for any purpose other than
that for which it is supplied without the express written consent of SPP.
Sumitomo Precision Products Co., Ltd. SPP Home Page http://www.spp.co.jp/