Transcription
DO-178C/ED-12CImpact, bilan et perspectivesAction collective « Certification avionique »Une démarche d’accompagnement proposée par JESSICA France avec lesoutien financier de DIRRECTE et de la Région Midi-PyrénéesPrésentée par Frederic tions.frAvec le concours de Gérard LADIERAirbus/Aerospace ValleyChairman du WG71Page 118 Septembre 2013LAAS/CNRS - TOULOUSE
DO-178C/ED-12CImpact, bilan et perspectives1.Why?2.Application3.Impact4. Additional documents5.FAS for the futurePage 2
1- A new release: Why?Page 3
1- Context1.1 IntroductionFor equipments and systems: FAR/CS25.1309 (large aeroplanes)1 serious accident each 106 flight hoursPage 4
1- A new release: Why?Some statistics (Source: IATA 2013)Page 5
1- A new release: Why?Page 6
1- A new release: Why?Some statistics (Source: IATA 2013)AccidentsPage 418414119999372
1- A new release: Why?« Law »Means ofconformityPage 8DO-178/ED-12 provides acceptable means forassessing and controlling the software used to programdigital-computer-based systems
1- A new release: Why?Does DO-178B/ED-12B not rigorous enough? Isthere any gaps?NOMore than 15 years of DO-178B/ED-12B usage, hasnot revealed any major safety flaws.Page 9
1- A new release: Why?Is it difficult to apply DO-178B/ED-12B to newmethods and technologies?YESNew software methods, tools, techniques emerged insoftware area.But, Safety constraints Fears on noveltiesPage 10 Not explicitly addressed Difficult to apply No background Approval risksDifficult to use more efficient and more safe methods !
1- A new release: Why?Is the text stable, and widely applied with acommon interpretation?NOThe text didn’t change, but could be an illusion as The way to understand is evolving Additional information exists (DO-248/ED-94) Page 11CAST papers, Clarification paper, CRIs areaccumulating, not always consistent, and are notthe result of a consensus
2- DO-178C/ED-12C applicationStep 1: RTCA/EUROCAE Join Committee launch with approvedTOR (Term of reference)2006Step 2: Text approved by working group2011Step 3: EUROCAE/RTCA public consultationStep 4: EUROCAE/RTCA approval and publication2011/12Step 5: Public consultation by Certification AuthoritiesStep 6: Accepted as mean of compliance by FAA/EASA (and others)2013FAA: AC 20-115C: published.EASA: AMC 20-115C: Expected end of yearStep 7: Application on new programs2014Page 122013
3- A new release: ImpactFive types of changes in the core text Page 13ErrorsConsistent terminologyClarificationsHidden objectivesNew topics
3- A new release: ImpactErrors:Most of them already identified in DO-248B/ED-94B Typo Wrong references Compiler aspects: Now identified in integration process Control category for some development data for level CNo impactPage 14
3- A new release: ImpactConsistent terminology Text clean up: guidance/guidelineConsistency between objective table and textBetter identification of activitiesNo impactPage 15
3- A new release: ImpactConsistent terminology : SCM Objectives not defined!Activities are referencedhere!Page 16
3- A new release: ImpactConsistent terminology : Activities identification in thetables“Recommended” ActivitiesPage 176.4.2 Requirements-Based Test Selection6.4.2.1 Normal Range test Cases6.4.3 Requirement-Based testing Methods6.5 Software Verification Process Traceability
3- A new release: Impact Errors:Consistent terminologyClarifications: Consistency with ARP4754Several sections reworked for better understandingNormally, no impact, if correctunderstanding of DO-178B/ED-12B!Page 18
3- A new release: ImpactClarifications : Sys/Sw processesSystemprocessSystemprocessPage 19SoftwareprocessPossib
Step 3: EUROCAE/RTCA public consultation Step 4: EUROCAE/RTCA approval and publication Step 5: Public consultation by Certification Authorities Step 6: Accepted as mean of compliance by FAA/EASA (and others) FAA: AC 20-115C: published. EASA: AMC 20-115C: Expected end of year Step 7: Application on new programs 2- DO-178C/ED-12C application 2006
