fbpx
Wikipedia

DO-254

May 01, 2024

RTCA DO-254 / EUROCAE ED-80, Design Assurance Guidance for Airborne Electronic Hardware is a document providing guidance for the development of airborne electronic hardware, published by RTCA, Incorporated and EUROCAE. The DO-254/ED-80 standard was formally recognized by the FAA in 2005 via AC 20-152 as a means of compliance for the design assurance of electronic hardware in airborne systems.[1] The guidance in this document is applicable, but not limited, to such electronic hardware items as

Design Assurance Guidance for Airborne Electronic Hardware
Abbreviation
  • DO-254
  • ED-80
Latest versionApril 19, 2000 (2000-04-19)
Organization
DomainAviation electronics

The document classifies electronic hardware items into simple or complex categories. An item is simple "if a comprehensive combination of deterministic tests and analyses appropriate to the design assurance level can ensure correct functional performance under all foreseeable operating conditions with no anomalous behavior." Conversely, a complex item is one that cannot have correct functional performance ensured by tests and analyses alone; so, assurance must be accomplished by additional means. The body of DO-254/ED-80 establishes objectives and activities for the systematic design assurance of complex electronic hardware, generally presumed to be complex custom micro-coded components, as listed above. However, simple electronic hardware is within the scope of DO-254/ED-80 and applicants propose and use the guidance in this standard to obtain certification approval of simple custom micro-coded components, especially devices that support higher level (A/B) aircraft functions.[1][3]

The DO-254/ED-80 standard is the counterpart to the well-established software standard RTCA DO-178C/EUROCAE ED-12C. With DO-254/ED-80, the certification authorities have indicated that avionics equipment contains both hardware and software, and each is critical to safe operation of aircraft. There are five levels of compliance, A through E, which depend on the effect a failure of the hardware will have on the operation of the aircraft. Level A is the most stringent, defined as "catastrophic" effect (e.g., loss of the aircraft), while a failure of Level E hardware will not affect the safety of the aircraft. Meeting Level A compliance for complex electronic hardware requires a much higher level of verification and validation than Level E compliance.

System aspects of hardware design assurance edit

The main regulations that must be followed are the capturing and tracking of requirements throughout the design and verification process. The following items of substantiation are required to be provided to the FAA, or the Designated Engineering Representative (DER) representing the FAA:

  • Plan for Hardware Aspects of Certification (PHAC)
  • Hardware Verification Plan (HVP)
  • Top-Level Drawing
  • Hardware Accomplishment Summary (HAS)

Process overview edit

Hardware design life cycle edit

The hardware design and hardware verification need to be done independently. The hardware designer works to ensure the design of the hardware will meet the defined requirements. Meanwhile, the verification engineer will generate a verification plan which will allow for testing the hardware to verify that it meets all of its derived requirements.

Planning process edit

The planning process is the first step where the design authority (the company who develops the H/W and implements the COTS into its design) declares its approach towards the certification. At this point the PHAC (Plan for H/W Aspects of Certification) is presented to the authorities (EASA, FAA...). In this plan, the developer presents its approach and how DO-254/ED-80 is implemented. The PHAC is submitted as part of the authorities 1st stage of involvement (SOI#1). It is important to note that:

  • EASA wrote a certification memoranda to require the use of DO-254 for all complex electronics within a system, stating that all equipment and CBA with a Design assurance classification of A, B, C or D should meet level D objectives for the equipment and CBA, regardless of the DAL of the system or aircraft function.
  • FAA wrote a Final Report for System-Level Assurance of Airborne Electronic stating that CBA do not reach a level of complexity that would require such a structured development process to be fully deployed; a verification testing approach is deemed sufficient to providing assurance.

For a generic DO-254 based process, a job aid is provided including the Stages of Involvement (SOIs) defined by FAA on the "Airborne Electronic Hardware Review Job Aid".

Hardware design processes edit

  • Requirements Capture
  • Conceptual Design
  • Detailed Design
  • Implementation
  • Verification
  • Transfer to production

Validation and verification process edit

The hardware requirement validation process provides assurance that the hardware item derived requirements are correct and complete with respect to system requirements allocated to the hardware item. Validation of hardware requirements allocated from system requirements is a system process, rather than a hardware process. As such, hardware requirements that are derived by hardware processes should be identified to system processes for validation against the system requirements. For the purposes of this document's processes, a requirement is complete when all the attributes that have been defined are necessary and that all the necessary attributes have been defined, and a requirement is correct when the requirement is defined without ambiguity and there are no errors in the defined attributes.

The verification process provides assurance that the hardware item implementation meets all of the hardware requirements, including derived requirements. Methods of verification include qualitative review, quantitative analysis, and functional testing.

A widely used industry definition for the difference is:

  • Validation - designing the right system!
  • Verification - designing the system right!

Additional considerations edit

  • Configuration Management Process
  • Process Assurance
  • Certification Liaison Process
  • Hardware Design Life Cycle Data
  • Use of Previously Developed Hardware
  • Commercial-Off-The Shelf (COTS) Components Usage
  • Product Service Experience
  • Tool Assessment and Qualification
  • Appendix A. Modulation of Hardware Life Cycle Data Based on Hardware Design Assurance Level
  • Appendix B. Design Assurance Considerations for Level A and B Functions
  • Appendix C. Glossary of Terms
  • Appendix D. Acronyms

Important considerations edit

  • Section 1.6, Complexity Considerations, presents the definition for simple and complex hardware items.
  • Table 5–1, Typical ASIC/PLD Process Mapping, presents a process mapping very useful for practical application considering the scope of AC 20-152.
  • Appendix B Design Assurance Considerations for Level A and B Functions - the longest chapter of the document - prepares the future of embedded electronics, paving the way for advanced design and verification methods, well known to the outside world, but fairly new for the avionics industry.

Application to simple electronic hardware edit

While simple electronic hardware (SEH) is within the scope of DO-254/ED-80,[3] its guidance on the subject has been considered inadequate among applicants seeking certification of simple electronic hardware.[4] The Certification Authorities Software Team published the Position Paper CAST-30, Simple Electronic Hardware and RTCA Document DO-254 and EUROCAE Document ED-80, to provide clarification to the guidance for simple electronic hardware. This clarification was amplified as FAA guidance in FAA Order 8110.105.[5]

Essentially, for simple electronic hardware, the verification through “comprehensive combination of deterministic testing and analysis” that justifies the simple classification needs to be defined, performed, and recorded. However, the appropriate "rigor and thoroughness" of that verification depends on the hardware design assurance level. For Level A/B, test coverage analysis should confirm that all nodes and interconnections have been exercised (comparable to DO-178C structural coverage objectives), while for Level C it is only needed to demonstrate correct operation under all combinations and permutations of conditions applied only to the inputs of the device (black box), and Level D testing can be accomplished through indirect tests applied to the system that has the item installed.[4][5]

If certification as a simple electronic device is sought, minimal documentation still should be submitted. A Plan for Hardware Aspects of Certification (PHAC) should be submitted to communicate the justification and means of certification, and a Hardware Verification Plan should be submitted to communicate the rigor and methods of the deterministic testing and analysis. Hardware Accomplishment Summary should be submitted to show compliance to the PHAC, and a Hardware Configuration Index should be submitted to define the production baseline that is the subject of the Hardware Identification and Compliance Statement in the Hardware Accomplishment Summary.[4][5]

Resources edit

Certification in Europe edit

  • Replace FAA with EASA, JAA or CAA
  • Replace CFR with CS
  • Replace AC with AMC (Acceptable Means of Compliance) or AMJ (Advisory Material Joint)

See also edit

Further reading edit

  • Policy documents Here are all the latest documents, 2023
  • AMC 20-152A Development Assurance for Airborne Electronic Hardware (AEH), 2020.
  • CAST-27, Clarifications on the use of RTCA Document DO-254 and EUROCAE Document ED-80, Design Assurance Guidance for Airborne Electronic Hardware, 2006.

External links edit

  • DO-254 Docs & Papers
  • DO-254 Web Sites
    • The DO-254 User's Group http://www.do254site.com/ has chapters in the US and in EU. While the charter of this group is not to write a DO-254 “A” standard, participants exchange about needs, usability of emerging technologies, dedicated solutions, training, good practices for expertise, and also provide input to the certification authorities for consideration as means of compliance in addition to the current regulatory materials. The US chapter is Chaired by Tammy Reeve, President of Patmos Engineering Services.
    • RTCA.org is where the publication can be acquired
    • Articles, Blogs, Training and other free resources to get started, 2023

References edit

  1. ^ a b AC 20-152, FAA, Office AIR-100, 2007.
  2. ^ DO-254. p. 3.
  3. ^ a b DO-254. p. 5. For a simple hardware item, extensive documentation of the design process is unnecessary. The supporting processes of verification and configuration management need to be performed and documented for a simple hardware item, but extensive documentation is not needed. Thus, there is reduced overhead in designing a simple hardware item to comply with this document. The main impact of this document is intended to be on the design of complex hardware items.
  4. ^ a b c "Simple Electronic Hardware and RTCA Document DO-254 and EUROCAE Document ED-80, Design Assurance Guidance for Airborne Electronic Hardware" (PDF). Certification Authorities Software Team Position (CAST-30). FAA. August 2007. Retrieved 2019-09-30.
  5. ^ a b c "8110.105 Simple And Complex Electronic Hardware Approval Guidance" (PDF). FAA Order. FAA: 1–2. 2008-07-13. Retrieved 2019-09-04. "[AC 20-152] doesn't recognize RTCA/DO-254 as a way to demonstrate compliance to regulations for simple micro-coded components.

May 01, 2024
this, article, require, cleanup, meet, wikipedia, quality, standards, specific, problem, getting, unexplained, bulleted, lists, toning, down, intensity, inscrutable, jargon, proofreading, especially, capitalization, please, help, improve, this, article, januar. This article may require cleanup to meet Wikipedia s quality standards The specific problem is getting rid of unexplained bulleted lists toning down intensity of inscrutable jargon proofreading especially for capitalization Please help improve this article if you can January 2021 Learn how and when to remove this message RTCA DO 254 EUROCAE ED 80 Design Assurance Guidance for Airborne Electronic Hardware is a document providing guidance for the development of airborne electronic hardware published by RTCA Incorporated and EUROCAE The DO 254 ED 80 standard was formally recognized by the FAA in 2005 via AC 20 152 as a means of compliance for the design assurance of electronic hardware in airborne systems 1 The guidance in this document is applicable but not limited to such electronic hardware items asLine Replaceable Units quickly replaceable components Circuit board assemblies CBA Custom micro coded components such as field programmable gate arrays FPGA programmable logic devices PLD and application specific integrated circuits ASIC including any associated macro functions Integrated technology components such as hybrid integrated circuits and multi chip modules Commercial off the shelf COTS components 2 Design Assurance Guidance for Airborne Electronic HardwareAbbreviationDO 254 ED 80Latest versionApril 19 2000 2000 04 19 OrganizationRTCA SC 180 EUROCAE WG 46DomainAviation electronics The document classifies electronic hardware items into simple or complex categories An item is simple if a comprehensive combination of deterministic tests and analyses appropriate to the design assurance level can ensure correct functional performance under all foreseeable operating conditions with no anomalous behavior Conversely a complex item is one that cannot have correct functional performance ensured by tests and analyses alone so assurance must be accomplished by additional means The body of DO 254 ED 80 establishes objectives and activities for the systematic design assurance of complex electronic hardware generally presumed to be complex custom micro coded components as listed above However simple electronic hardware is within the scope of DO 254 ED 80 and applicants propose and use the guidance in this standard to obtain certification approval of simple custom micro coded components especially devices that support higher level A B aircraft functions 1 3 The DO 254 ED 80 standard is the counterpart to the well established software standard RTCA DO 178C EUROCAE ED 12C With DO 254 ED 80 the certification authorities have indicated that avionics equipment contains both hardware and software and each is critical to safe operation of aircraft There are five levels of compliance A through E which depend on the effect a failure of the hardware will have on the operation of the aircraft Level A is the most stringent defined as catastrophic effect e g loss of the aircraft while a failure of Level E hardware will not affect the safety of the aircraft Meeting Level A compliance for complex electronic hardware requires a much higher level of verification and validation than Level E compliance Contents 1 System aspects of hardware design assurance 2 Process overview 2 1 Hardware design life cycle 2 2 Planning process 2 3 Hardware design processes 2 4 Validation and verification process 2 5 Additional considerations 2 6 Important considerations 2 7 Application to simple electronic hardware 3 Resources 4 Certification in Europe 5 See also 6 Further reading 7 External links 8 ReferencesSystem aspects of hardware design assurance editThe main regulations that must be followed are the capturing and tracking of requirements throughout the design and verification process The following items of substantiation are required to be provided to the FAA or the Designated Engineering Representative DER representing the FAA Plan for Hardware Aspects of Certification PHAC Hardware Verification Plan HVP Top Level Drawing Hardware Accomplishment Summary HAS Process overview editHardware design life cycle edit The hardware design and hardware verification need to be done independently The hardware designer works to ensure the design of the hardware will meet the defined requirements Meanwhile the verification engineer will generate a verification plan which will allow for testing the hardware to verify that it meets all of its derived requirements Planning process edit The planning process is the first step where the design authority the company who develops the H W and implements the COTS into its design declares its approach towards the certification At this point the PHAC Plan for H W Aspects of Certification is presented to the authorities EASA FAA In this plan the developer presents its approach and how DO 254 ED 80 is implemented The PHAC is submitted as part of the authorities 1st stage of involvement SOI 1 It is important to note that EASA wrote a certification memoranda to require the use of DO 254 for all complex electronics within a system stating that all equipment and CBA with a Design assurance classification of A B C or D should meet level D objectives for the equipment and CBA regardless of the DAL of the system or aircraft function FAA wrote a Final Report for System Level Assurance of Airborne Electronic stating that CBA do not reach a level of complexity that would require such a structured development process to be fully deployed a verification testing approach is deemed sufficient to providing assurance For a generic DO 254 based process a job aid is provided including the Stages of Involvement SOIs defined by FAA on the Airborne Electronic Hardware Review Job Aid Hardware design processes edit Requirements Capture Conceptual Design Detailed Design Implementation Verification Transfer to production Validation and verification process edit The hardware requirement validation process provides assurance that the hardware item derived requirements are correct and complete with respect to system requirements allocated to the hardware item Validation of hardware requirements allocated from system requirements is a system process rather than a hardware process As such hardware requirements that are derived by hardware processes should be identified to system processes for validation against the system requirements For the purposes of this document s processes a requirement is complete when all the attributes that have been defined are necessary and that all the necessary attributes have been defined and a requirement is correct when the requirement is defined without ambiguity and there are no errors in the defined attributes The verification process provides assurance that the hardware item implementation meets all of the hardware requirements including derived requirements Methods of verification include qualitative review quantitative analysis and functional testing A widely used industry definition for the difference is Validation designing the right system Verification designing the system right Additional considerations edit Configuration Management Process Process Assurance Certification Liaison Process Hardware Design Life Cycle Data Use of Previously Developed Hardware Commercial Off The Shelf COTS Components Usage Product Service Experience Tool Assessment and Qualification Appendix A Modulation of Hardware Life Cycle Data Based on Hardware Design Assurance Level Appendix B Design Assurance Considerations for Level A and B Functions Appendix C Glossary of Terms Appendix D Acronyms Important considerations edit Section 1 6 Complexity Considerations presents the definition for simple and complex hardware items Table 5 1 Typical ASIC PLD Process Mapping presents a process mapping very useful for practical application considering the scope of AC 20 152 Appendix B Design Assurance Considerations for Level A and B Functions the longest chapter of the document prepares the future of embedded electronics paving the way for advanced design and verification methods well known to the outside world but fairly new for the avionics industry Application to simple electronic hardware edit While simple electronic hardware SEH is within the scope of DO 254 ED 80 3 its guidance on the subject has been considered inadequate among applicants seeking certification of simple electronic hardware 4 The Certification Authorities Software Team published the Position Paper CAST 30 Simple Electronic Hardware and RTCA Document DO 254 and EUROCAE Document ED 80 to provide clarification to the guidance for simple electronic hardware This clarification was amplified as FAA guidance in FAA Order 8110 105 5 Essentially for simple electronic hardware the verification through comprehensive combination of deterministic testing and analysis that justifies the simple classification needs to be defined performed and recorded However the appropriate rigor and thoroughness of that verification depends on the hardware design assurance level For Level A B test coverage analysis should confirm that all nodes and interconnections have been exercised comparable to DO 178C structural coverage objectives while for Level C it is only needed to demonstrate correct operation under all combinations and permutations of conditions applied only to the inputs of the device black box and Level D testing can be accomplished through indirect tests applied to the system that has the item installed 4 5 If certification as a simple electronic device is sought minimal documentation still should be submitted A Plan for Hardware Aspects of Certification PHAC should be submitted to communicate the justification and means of certification and a Hardware Verification Plan should be submitted to communicate the rigor and methods of the deterministic testing and analysis Hardware Accomplishment Summary should be submitted to show compliance to the PHAC and a Hardware Configuration Index should be submitted to define the production baseline that is the subject of the Hardware Identification and Compliance Statement in the Hardware Accomplishment Summary 4 5 Resources editFAR Part 23 25 1301 1309 FAR Part 27 29 AC 23 25 1309 1Certification in Europe editReplace FAA with EASA JAA or CAA Replace CFR with CS Replace AC with AMC Acceptable Means of Compliance or AMJ Advisory Material Joint See also editAvionics Hazard analysis DO 178C similar to DO 254 ED 80 but for software ARP4761 safety assessment ARP4754 systems CAST 31Further reading editPolicy documents Here are all the latest documents 2023 AMC 20 152A Development Assurance for Airborne Electronic Hardware AEH 2020 CAST 27 Clarifications on the use of RTCA Document DO 254 and EUROCAE Document ED 80 Design Assurance Guidance for Airborne Electronic Hardware 2006 External links editDO 254 Docs amp Papers Articles Blogs Training and other free resources to get started 2023 DO 254 Glossary of Terms 2023 AC 25 1309 1A AC 25 1309 1B DO 254 In Hardware Verification Paper from Aldec DO 254 Explained https www cadence com content dam cadence www global en US documents solutions aerospace and defense do 254 explained wp pdf DO 254 Technical Papers from Mentor Graphics DO 254 Web Sites The DO 254 User s Group http www do254site com has chapters in the US and in EU While the charter of this group is not to write a DO 254 A standard participants exchange about needs usability of emerging technologies dedicated solutions training good practices for expertise and also provide input to the certification authorities for consideration as means of compliance in addition to the current regulatory materials The US chapter is Chaired by Tammy Reeve President of Patmos Engineering Services RTCA org is where the publication can be acquired Articles Blogs Training and other free resources to get started 2023References edit a b AC 20 152 FAA Office AIR 100 2007 DO 254 p 3 a b DO 254 p 5 For a simple hardware item extensive documentation of the design process is unnecessary The supporting processes of verification and configuration management need to be performed and documented for a simple hardware item but extensive documentation is not needed Thus there is reduced overhead in designing a simple hardware item to comply with this document The main impact of this document is intended to be on the design of complex hardware items a b c Simple Electronic Hardware and RTCA Document DO 254 and EUROCAE Document ED 80 Design Assurance Guidance for Airborne Electronic Hardware PDF Certification Authorities Software Team Position CAST 30 FAA August 2007 Retrieved 2019 09 30 a b c 8110 105 Simple And Complex Electronic Hardware Approval Guidance PDF FAA Order FAA 1 2 2008 07 13 Retrieved 2019 09 04 AC 20 152 doesn t recognize RTCA DO 254 as a way to demonstrate compliance to regulations for simple micro coded components Retrieved from https en wikipedia org w index php title DO 254 amp oldid 1206071636, wikipedia, wiki, book, books, library,

article

, read, download, free, free download, mp3, video, mp4, 3gp, jpg, jpeg, gif, png, picture, music, song, movie, book, game, games.