Expected Benefits for Industries
Embedded systems with high safety requirements contribute more and more to the total costs and value creation in a large variety of equipment serving application areas such as transportation applications (automotive, aerospace, rail), industrial applications (process control & automation), medical and energy generation applications. Many prominent stakeholders of these domains are represented in the project.
The table below summarizes the current major weaknesses identified regarding electronic and safety critical software development in the various domains and the expected benefits after the CESAR implementation.
Lack of requirements formalisation
Formalisation of requirements will help to avoid misinterpretation, interference between levels. Consistency checking, forced to answer difficult questions and need for detail early, reduce rework through identifying issues earlier.
Reduce the number of problem reports by 30% at first integration at system level, then 50%. Reduce the risks of integration of new software with existing software.
Quality not consistent across the supply chain
Multi-views requirements and multi-criteria analysis will ensure consistency over different viewpoints including safety. Greater ability to predict what the system will do.
System development and maintenance costs difficult to master
Component based design is a key issue to manage complexity and costs.
Size and complexity of systems and subsystems as well as numerous interactions requires a lot of testing thus without full guarantee to avoid situation of "No trouble found" in case of a particular behaviour.
The task force "Safety and diagnosability" is dedicated to that concern. Fault robustness and diagnosability requirements will complete the specifications in order to prove lack of errors in design.
A system is certified or used as a whole in a specific application.
Modular certification reduces costs dramatically while contributing to the overall performance.
System and software become more and more complex over time leading to increasing management and development costs.
An increment of 50% to 60% functionality, with respect to systems developed today, while maintaining present levels of safety.
CESAR will ...
... provide a better systems and software level environment for the development, validation, and verification of requirements and architectures called a Reference Technology Platform. This RTP will embody meta-models, methods, and tools for safety-critical hard-real-time system development supported by European tool vendors. It would be applied domain by domain, considering sufficiently mature tools while making them interoperable or integrate able on purpose.
... provide a model-driven process for the compositional development of safety critical systems. Through the RTP, system design will integrate analysis of the extra-functional aspects into the primary functionality, thereby for the first time allowing integrated design of the entire system. This will enable model-based compositional development and qualification, supporting reasoning about execution times and safety and provide a basis for certification of compositionally designed systems and rapid re-certification after change including variability analysis through product lines.
... provide an analysis process to establish an industrially applicable methodology for exploration of design spaces, multi-criteria constraint satisfaction and design decision making, with particular regard to safety and diagnosability properties.
... initially target application in Aerospace, Automotive, Rail and Automation, integrating the sector- specific tools defined by the end-users, for which models and processes will be established to create a flexible environment supporting all phases of the development life-cycle, as each of the tools usually does separately. Further work would then consist of establishing new models and processes for new applications (hence integrating other tools within the established RTP).