Embed Size (px)
Citation preview
Scade Users Conference 2009
October 2009
SCADE for AIRBUS critical avionics systems
SCADE Users Conference
Presented by
Jean-Charles DALBINAirbus Operations SAS
October 2009Scade Users Conference 2009 Page 2© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.Agenda
• Airbus Context• SCADE use• Automatic Code
Generation
• Airbus Context
October 2009Scade Users Conference 2009 Page 3© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.Strategy for the systems : Make or Buy ?
• AIRBUS has defined a strategy for the development of its Aircraft systems :
“Make” or “in house” development : Systems are designed, developed and manufactured by Airbus internal centre
“Buy” or “out sourced” development : Systems are designed and manufactured by system vendor (or sub-contractor)
October 2009Scade Users Conference 2009 Page 4© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.Systems development overview
• System design :Define system and computer requirements, Provide validation plans Provide models
• Avionics products manufacturer :Provide hardware equipmentsProvide software with functional applications
• Test & Simulation :Development simulationTraining simulation
October 2009Scade Users Conference 2009 Page 5© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.Avionics products overview
• Flight Control system :- Flight control Primary computer
- Flight control Secondary computer
- Data Concentrator function
- Backup Control Unit function
- Weight and Balance Backup Computation
• Flight Warning system :- Flight Warning function
- System Data Acquisition
- Ecam Control Panel
• Maintenance system :- Centralised Maintenance function
- Bite function
• Air/Ground Digital communication system :- Air Traffic Services Unit
- Air Traffic Communication Function
A400M
A380
A330/A340
A319/A320/A321
October 2009Scade Users Conference 2009 Page 6© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.Agenda
• Airbus Context• SCADE use• Automatic Code
Generation
• SCADE use
October 2009Scade Users Conference 2009 Page 7© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.
• At System Design level: Model definition and verification
Textual system
requirements
System functional definition
ValidationPlan
Global verification with specific simulators
VerificationEnvironments
Other applications
SCADE modelling with SCADE-Suite
Checked & Verified models
Function Modelling
Local verification with SCADE simulator & SCADE
quick check
SCADE Editor
October 2009Scade Users Conference 2009 Page 8© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.
generatedCodegenerated
CodegeneratedCodegenerated
Code
Generated Code
Airbus ACG toolset including SCADE-KCG
• At avionics products manufacturer level: From SCADE model to “code transformation” and “Software integration”
EmbeddedSoftware
EmbeddedSoftware
Symbol library
Drivers
Scheduler
Symbol library
Drivers
Scheduler
Unit Tests
Integration Tests
ValidationTests
Code Review Unit Tests
Checked & Verified models
Software coding & integration
October 2009Scade Users Conference 2009 Page 9© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.
• At Test and Simulation level: Application integration and validation
ValidationPlans
Unitary validation of applications
Validation of systems integration
System validation
October 2009Scade Users Conference 2009 Page 10© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.Agenda
• Airbus Context• SCADE use• Automatic Code
Generation• Automatic Code
Generation
October 2009Scade Users Conference 2009 Page 11© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.
• The main challenges :Flight control for civil aircraft need high level of safetyCertification under the DO178B standard New software delivery in 48 hoursApplication defined with more than 5000 SCADE nodesMore than 30 software releases before “Entry Into Service”30 to 50 years of maintenance in operational conditionSystems global cost reduction
• Airbus strategy
Model Based development and Qualified Automatic Code Generation using in house ACG (strategic internal expertise)
and ESTEREL Technologies toolset
ACG - Key drivers
October 2009Scade Users Conference 2009 Page 12© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.
• Airbus ACG toolset including SCADE-KCGfor all internal avionics embedded software
• ACG toolset are DO178B qualified• Specific AIRBUS internal expertise domain• Delivery of a new software standard in 48 hours• Generated code customized for the hardware target• Contribution to a lean software production process
A significant competitive advantage for Airbus
A.C.G.
ACG - Airbus Know-how
…
CODE
Code ReviewUnit Tests
October 2009Scade Users Conference 2009 Page 13© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.ACG – Airbus organization impacts
•Why code customization ?Specific hardware targetTarget languagesCPU & Compiler usageCapability of verification
Customization should be done without impact on model
Customization
System design
Software development
System V&V
October 2009Scade Users Conference 2009 Page 14© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.ACG tools customization : how ?
Airbus toolset allow to customize
source code at software level
ACG toolset
Symbols transformation rules
Source file templates
Optional functions
SCADE Models
Other files
Source files
Qualified Airbus ACG toolset
SCADE-KCG Post-Processing
Intermediate files
October 2009Scade Users Conference 2009 Page 15© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.
Airbus in house avionics software production observed results
• Several Millions of lines of code produced for 15 critical avionics software
• 60% of the embedded software produced automatically
• Time development (including verification activities) divided by 3 compared to a process without ACG (observed results for typical modification on FCS software)
• Never experienced any bug in flight in our FCS software produced automatically
October 2009Scade Users Conference 2009 Page 16© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.Thank you for your attention
October 2009Scade Users Conference 2009 Page 17© A
IRB
US
FRA
NC
E S
.A.S
. All
right
s re
serv
ed. C
onfid
entia
l and
pro
prie
tary
doc
umen
t.
© AIRBUS OPERATIONS S.A.S. Tous droits réservés. Document confidentiel.
Ce document et son contenu sont la propriété d’AIRBUS OPERATIONS S.A.S. Aucun droit de propriété intellectuelle n’est accordé par la communication du présent document ou son contenu. Ce document ne doit pas être reproduit ou communiqué à un tiers sans l’autorisation expresse et écrite d’AIRBUS OPERATIONS S.A.S. Ce document et son contenu ne doivent pas être utilisés à d’autres fins que celles qui sont autorisées.
Les déclarations faites dans ce document ne constituent pas une offre commerciale. Elles sont basées sur les postulats indiqués et sont exprimées de bonne foi. Si les motifs de ces déclarations n’étaient pas démontrés, AIRBUS OPERATIONS S.A.S serait prêt à en expliquer les fondements.
AIRBUS, son logo, A300, A310, A318, A319, A320, A321, A330, A340, A350, A380 et A400M sont des marques déposées.
