Your systems. Working as one. Safety Certifiable Middleware for Unmanned Aircraft Edwin de Jong, PhD
Nov 17, 2014
Your systems. Working as one.
Safety Certifiable Middleware for Unmanned Aircraft
Edwin de Jong, PhD
UAS Communication Infrastructure
Vehicle LAN
Data Link
Ground Station LAN
9/9/2014 © 2014 REAL-TIME INNOVATIONS, INC. 2
Baseline Capabilities for UAS Middleware
• Open standards based– Commonality and interoperability
• True peer-to-peer architecture– No single point of failure or vulnerability
• Portable to any communication media– RF, optical links, high-speed interconnects
• Available for heterogeneous environments– Embedded, low-power, small foot-print, RTOS, ARINC 653– Mainstream OS’s (Windows, Linux) and CPUs (Intel)
• Certifiable component (DO-178C)– Integration of UAVs in national airspace
© 2014 REAL-TIME INNOVATIONS, INC. 39/9/2014
Peer-To-Peer Real-Time DataBus
OMG Data Distribution Service
Sens
or D
ata
Control App
Com
man
ds
Stat
usSensor
Sens
or D
ata
Actuator
Com
man
ds
Stat
us
Sensor
Sens
or D
ata
Display App
Sens
or D
ata
Stat
us
© 2014 REAL-TIME INNOVATIONS, INC. 49/9/2014
Data-Centric IntegrationDistributed Data Model and System State
Source(Key) Latitude Longitude Altitude
RADAR1 37.4 -122.0 500.0
UAV2 40.7 -74.0 250.0
LPD3 50.2 -0.7 0.0
© 2014 REAL-TIME INNOVATIONS, INC. 59/9/2014
Hundreds Of Applications Rely on DDS
© 2014 REAL-TIME INNOVATIONS, INC. 69/9/2014
Certification Costs
• DO-178 costs $50-$100 per ELOC
• Process objectives must be met
• All must be documented• Code must be clean
– Testable– No dead code– Deterministic
Level Process Objectives
Code Coverage
A 71 Level B and 100% of MCDC
B 69 Level C plus 100% of DC
C 62 Level D plus 100% of SC
D 26 100% of Requirements
E 0 None
© 2014 REAL-TIME INNOVATIONS, INC. 79/9/2014
DO-178 Middleware Implications
• Specific implementation withfewer capabilities– Reduced ELOC
• Predictable– No dynamic memory allocation– Applications preconfigured
• Limited size of distributed system– Suiting most avionics systems– Larger size system integration through bridge
© 2014 REAL-TIME INNOVATIONS, INC. 89/9/2014
Safety-Certifiable DDS Middleware
• Scalable product linefor constrainedenvironments
• Certifiable component– DO-178C Level A– ~25K ELOC
• Follows OMG DDS specification• FACE conformant interface in development
© 2014 REAL-TIME INNOVATIONS, INC. 99/9/2014
Certification Evidence
• Plan for Software Aspects of Certification (PSAC)
• Software Development Plan (SDP)– Requirements standards– Design standards– Code standards
• Software Verification Plan (SVP)• Software Configuration
Management Plan (SCM)• Software Quality Assurance Plan
• Software Requirements Data• Design Description• Traceability• SQA Records• SCM Records• Software Configuration Index• Software Verification Cases and
Procedures• Software Verification Results• Software Accomplishment
Summary
Certification evidence can be re-used across programs© 2014 REAL-TIME INNOVATIONS, INC. 109/9/2014
Savings from DDS Certification Evidence
30,000 ELOC 20,000 ELOC 10,000 ELOC
Level A $3,000,000 $2,000,000 $1,000,000
Level B $2,550,000 $1,700,000 $850,000
Level C $1,800,000 $1,200,000 $600,000
• DDS certification evidence available at fraction of cost
• Availability at start of project also reduces risk
© 2014 REAL-TIME INNOVATIONS, INC. 119/9/2014