Software safety analysis of a flight guidance system

An aircraft's flight control system provides the capability to stabilize and control the aircraft. Two key elements of a flight control system are the flight guidance system that generates guidance commands and the auto-pilot that executes them. The flight guidance system is a software function composed of flight control laws, that determine the roll and pitch values needed to achieve the desired flight characteristics, and mode logic that selects the appropriate flight control law for the given situation. We developed a formal, executable model of the requirements for the mode logic of a flight guidance system and conducted a comprehensive software safety analysis on the model. We provide an overview of the safety analysis conducted on the software and summarize progress made to date in the use of formal methods to verify the presence of the required safety properties in the software itself.

[1]  Aaron Tucker,et al.  A Bibliography. , 1902, British medical journal.

[2]  Robyn R. Lutz Bi-directional Analysis for Certification of Safety-Critical Software , 1999 .

[3]  Pascal Raymond,et al.  The synchronous data flow programming language LUSTRE , 1991, Proc. IEEE.

[4]  G. F. Williamson,et al.  Software safety and reliability , 1997 .

[5]  Hoyt Lougee,et al.  SOFTWARE CONSIDERATIONS IN AIRBORNE SYSTEMS AND EQUIPMENT CERTIFICATION , 2001 .

[6]  Steven P. Miller,et al.  Extending the four-variable model to bridge the system-software gap , 2001, 20th DASC. 20th Digital Avionics Systems Conference (Cat. No.01CH37219).

[7]  Constance L. Heitmeyer,et al.  Automated consistency checking of requirements specifications , 1996, TSEM.

[8]  Robyn R. Lutz,et al.  Requirements analysis using forward and backward search , 1997, Ann. Softw. Eng..

[9]  Alan C. Tribble Software Safety , 2002, IEEE Softw..

[10]  L HeitmeyerConstance,et al.  Automated consistency checking of requirements specifications , 1996 .

[11]  Frédéric Boussinot,et al.  The ESTEREL language , 1991, Proc. IEEE.

[12]  Constance L. Heitmeyer,et al.  Software Cost Reduction , 2002 .

[13]  Robert Jacobsen Airspace Systems Program: Virtual Airspace Modeling and Simulation Project , 2002 .

[14]  Constance L. Heitmeyer,et al.  Developing high assurance avionics systems with the SCR requirements method , 2000, 19th DASC. 19th Digital Avionics Systems Conference. Proceedings (Cat. No.00CH37126).

[15]  Ricky W Butler An Elementary Tutorial on Formal Specification and Verification Using PVS , 1993 .

[16]  Amnon Naamad,et al.  The STATEMATE semantics of statecharts , 1996, TSEM.

[17]  Nancy G. Leveson,et al.  Requirements Specification for Process-Control Systems , 1994, IEEE Trans. Software Eng..

[18]  Mats Per Erik Heimdahl,et al.  Specification-based prototyping for embedded systems , 1999, ESEC/FSE-7.

[19]  Edmund M. Clarke,et al.  Model Checking , 1999, Handbook of Automated Reasoning.

[20]  Natarajan Shankar,et al.  Formal Verification for Fault-Tolerant Architectures: Prolegomena to the Design of PVS , 1995, IEEE Trans. Software Eng..

[21]  Gérard Berry,et al.  The Esterel Synchronous Programming Language: Design, Semantics, Implementation , 1992, Sci. Comput. Program..

[22]  Nicolas Halbwachs,et al.  LUSTRE: A declarative language for programming synchronous systems* , 1987 .