The SAFERTOS Development Process
The SafeRTOS Design Assurance Package is a product of the development processes used by WITTENSTEIN high integrity systems.
SafeRTOS was developed by WITTENSTEIN high integrity systems in accordance with their formal software development procedures. These procedures
have been matured to ensure compliance with the development and audit requirements of various high integrity industries.
Compliance
Conformity of these procedures to internationally recognized software development standards is achieved using compliance matrices that cross reference
each requirement of the standard to a development process. This technique was so successful when proving compliance of SafeRTOS with IEC 61508
that TÜV SÜD issued their compliance certification following their first audit of the project; No rework was required.
Design Assurance Package Contents
SafeRTOS development followed the safety 'V' lifecycle model - at each stage of which planning, design, test, verification and/or validation artifacts were produced.
These artifacts, along with evidence of their completeness and correctness, make up the Design Assurance Package.
These artifacts include documentation, databases, source code and test suites.
A full inventory of this extensive documentation
and test package is included within the TÜV SÜD audit report - available upon request.
Benefits of the Design Assurance Package
Safety certified software is time consuming to produce. Purchasing the Design Assurance Package allows you to save time by taking advantage of
existing proven certification artifacts and evidence.
This enables a
much lower risk and ultimately lower cost route to final system certification.
Applying the Design Assurance Package
Safety systems are certified at the system level, not the component level. Constructing such a system entirely out of individually certified
components does nothing to ensure that the system as a whole is compliant - but the evidence and artifacts provided by the certified components
will greatly expedite and lower the risk of such a system level certification. This is achieved by using the component level
development artifacts as conformance evidence for safety requirements identified at the system level. For example:
Where system safety requirements mandate that all software be developed and tested using a certain amount of process rigor, then the evidence within the
Design Assurance Package can prove that SafeRTOS meets these requirements without having to create new evidence.
When the system safety requirements mandate that all software be produced using certified tools, then the existing test harness within the
Design Assurance Package can be executed in order to validate
the tool chain used by the customer for their final system production.
Hazards identified at the component level may mirror those identified at the system level. For example, the SafeRTOS hazard analysis identified user
misuse as a hazard, and as such provides an audit trail showing how this hazard was mitigated. This evidence can be used at the system level should
the same hazard be identified there.
-
Et cetera.
The test suite provided with the Design Assurance Package can be re-executed within the customers development environment without the need to design, analyze and implement the tests from scratch.
Once the system level assessment is complete, SafeRTOS will become a trusted component that will simplify your application
software design. This in turn will greatly reduce application level complexity, and the number of lines of code
required - ultimately reducing your testing effort and further reducing the development costs.
The Design Assurance Package documentation structure can also act as a template to which your host application can be developed.
Purchasing and Further Information
To enquire about pricing, purchase options, or to request further information please contact: SafeRTOS@HighIntegritySystems.com
