1、AECMA Technical Report Rapport Technique AECMA AECMA Fachbericht TR 9109 Edition 1 March 2003 PUBLISHED BY THE EUROPEAN ASSOCIATION OF AEROSPACE INDUSTRIES - STANDARDIZATION klk - type 2, a Technical Committee has collected data of a different kind from that which is normally published as a European
2、 Standard. The Quality Domain decided to publish this document in the form of a Technical Report of type 1 in order to facilitate the updating of this document. Copyright Association Europeene des Constructeurs de Materiel Aerospatial Provided by IHS under license with AECMANot for ResaleNo reproduc
3、tion or networking permitted without license from IHS-,-,-Page 3 TR 9109: 03-03 Contents Page Foreword 1 1 .I 1.2 1.3 1.4 2 2.1 2.2 2.3 3 3.1 3.2 3.2.1 3.2.2 3.2.3 3.2.4 3.2.5 3.2.6 3.2.7 3.2.8 4 4.1 4.2 5 5.1 5 6 6 6 6 6 7 7 7 7 8 8 8 8 8 8 8 9 9 10 10 10 10 10 11 5.2 5.3 5.4 5.5 5.6 5.7 6 6.1 6.2
4、6.2.1 6.2.2 6.3 6.4 I nt roduct ion Purpose Model and structure of the document Handling of different standards Tailoring approach Scope Types of related systems covered by this guide are Types of acquisition covered by this guide System aspects relating to software development and maintenance Refer
5、en ces General Informative references AECMA ECSS I EEE/EI A ISO/IEC JTCl/SC7 “Information Technology - Software Engineering” IS0 / TC 176 “Quality management and Quality assurance” NATO AU250 “Group of National Directors for Quality Assurance” Miscellaneous Definitions and acronyms Definitions Acron
6、yms Management responsibility Relationship between the size of the quality management group and the project organisations Integration of the quality management personnel into the project teams Differences between manufacturing and software development organisations and their influence on the structu
7、re of the quality organisation Interfaces between the quality organisation and the configuration management and the Qualification and Certification organisations Training Risk management Software metrication RTCA SC-167 / EUROCAE WG-12 11 11 12 12 12 12 12 Resource management 13 Provision of resourc
8、es 13 Human resources 13 General 13 Competence, awareness and training 13 Infrastructure 13 Work environment 14 Copyright Association Europeene des Constructeurs de Materiel Aerospatial Provided by IHS under license with AECMANot for ResaleNo reproduction or networking permitted without license from
9、 IHS-,-,-Page 4 TR 9109: 03-03 7 7.1 7.2 7.2.1 7.2.2 7.2.3 7.2.4 7.2.5 7.2.6 7.3 7.3.1 7.3.1 8 8.1 8.1 .I 8.1.2 8.2 8.2.1 8.2.2 8.3 8.3.1 8.3.2 8.3.3 8.4 8.4.1 8.4.2 8.5 9 9.1 9.2 10 10.1 10.2 10.3 11 11.1 11.2 11.3 12 12.1 12.2 12.3 12.4 12.5 Tables Product real isat ion General considerations Mapp
10、ing onto IS0 12207 clauses Planning of realisation process Customer related processes Design and development Purchasing Production and service operations Control of measuring and monitoring devices Aerospace requirements Avionics requirements Space requirements Measurement, analysis and improvement
11、General guidance Software measurement process framework Outcomes of the process Measurement and monitoring of QMS performance Customer satisfaction Internal quality audits Measurement and monitoring of software processes Reference model for processes and process capability Performing an assessment P
12、rocess improvement Measurement and monitoring of software product Software product quality model Evaluation of software product Control of non-conformities Certification Quality system Software aspects of certification and flight approval Software life cycle data General Types of software life cycle
13、 data Characteristics of software life cycle data Additional considerations Software re-use Tool qualification Alternative methods Tailoring process General Responsibility for the tailoring process Processes / activities /tasks tailoring Software life cycle data tailoring Drivers for tailoring Table
14、 1 - Mapping between DO-178B/ED-I2B and IEEE/EIA 12207.1 Software Life Cycle Data Table 2 - Impact of the drivers for tailoring 14 14 16 16 16 17 17 17 17 17 18 18 19 19 19 20 20 20 20 20 21 21 21 21 22 22 22 23 23 23 24 24 25 25 26 27 27 27 28 28 28 28 29 29 26 30 Copyright Association Europeene de
15、s Constructeurs de Materiel Aerospatial Provided by IHS under license with AECMANot for ResaleNo reproduction or networking permitted without license from IHS-,-,-Page 5 TR 9109: 03-03 Foreword The increasing internationalisation of aerospace companies and their activities requires the adoption of a
16、 policy which no longer relies solely on national standards. Currently a mixture of national and international standards is being used in the civil-, military- and space- sectors. World-wide acceptance and recognition can only be reached, if company certification and product qualification are based
17、on internationally accepted standards. The adoption of a set of internationally accepted standards will be a source of major savings to the aerospace industry and customers alike. National and international committees and industrial bodies, responsible for the development and authorisation and/or pu
18、blication of standards, have already recognised the need to harmonise the existing standards. It is to be expected that in the not too distant future, customer requirements outside of the new harmonised international standards will become the exception rather than the rule and will be the subject of
19、 special negotiation. However, it must be admitted that current progress is very slow. In view of the number of national and international standards currently in circulation and preparation, it is certainly justified to ask whether yet another document governing software development and maintenance
20、is really necessary. It is in fact, due to the plethora of documents, of which none have been conceived specifically for software quality and engineering within the European aerospace industry, that the need for a guide for software quality management was identified. When defining the software devel
21、opment concept to be adopted at the start of a new project, management is confronted with a list of questions that have to be answered, including: What level of quality is required for the product? Which of the current international standards should be adopted, especially since there is a considerab
22、le degree of replication? Since all standards have their strengths and weaknesses, is it advisable (or even permitted) to select only parts from different standards to make up a new whole? Should the current trend towards the integration of civil and military software development requirements be tak
23、en into account? Can the differences between the routes to civil and military certification affect the project? How can the need for a closer integration of quality and engineering requirements be accommodated? How can the project ensure that the development of the software does not take place to th
24、e detriment of the overall system aims? Can the project define a software development process that is manageable, efficient and at the same time assures the delivery of a product, which meets its specification, within budget, time and to the specified quality level? With so many issues, it was felt
25、that a guide through this jungle had become necessary. It is the intention of this guide to help with the interpretation and tailoring of existing standards and point out their strengths and weaknesses. The guide will also give an indication of the currently planned updates to the standards and any
26、new trends under discussion. Copyright Association Europeene des Constructeurs de Materiel Aerospatial Provided by IHS under license with AECMANot for ResaleNo reproduction or networking permitted without license from IHS-,-,-Page 6 TR 9109: 03-03 1 Introduction 1 .I Purpose The purpose of this docu
27、ment is to provide guidance to the European aerospace industry in the interpretation, application and tailoring of existing international standards relevant to software. Software standards required by the customer (acquirer) obviously must be adhered to, but where a degree of freedom is permitted, t
28、his guide sets out to indicate possible approaches for harmonising the contractual requirements with project management interests. This document is a pure guideline and shall not be used as a prescriptive standard. 1.2 Model and structure of the document IS0 9001 :2000 has been recognised as the sta
29、ndard closest to the needs of European aerospace software quality management, whereas IS0 12207 specifically covers the software life-cycle aspects. Therefore the structure of this document is based on IS0 9001:2000 but takes into account IS0 12207. Some subjects very important to aerospace software
30、 such as software quality system certification, software product certification and to flight approval are not fully covered by those two IS0 standards. Therefore references are also made in this document to DO-178B/ED-I2B. This Guideline also aims at providing an interpretation of the standards and
31、recommendations referenced in paragraph 3 below from the standpoint of software and giving an overview of the interrelationships between individual standards. The following subjects are considered in this document: - Requirements and guidelines - Use of international standards - Company-wide and pro
32、ject-specific aspects - System and software aspects - Quality and engineering aspects - Process and product aspects 1.3 Handling of different standards The standards, discussed in this guideline, say what and not how, organisations must generate their own in- house procedures and demonstrate their f
33、ulfilment of the requirement of the standards. It is strongly recommended that in dealing with subcontractors the same approach is adopted. 1.4 Tailoring approach To satisfy currently typical software project requirements, it is necessary to select and tailor sections from different international st
34、andards. The tailoring process plays a very important role in the definition of the processes outputs. For this reason, Section 12 of this guideline provides pointers to the application of the tailoring process. In approaching tailoring, four major areas must be considered: a) b) Both processes and
35、data produced can, and should, be tailored. It must be clear to those performing the tailoring processes, which of the requirements selected from the standards lend themselves to tailoring and which do not. Copyright Association Europeene des Constructeurs de Materiel Aerospatial Provided by IHS und
36、er license with AECMANot for ResaleNo reproduction or networking permitted without license from IHS-,-,-Page 7 TR 9109: 03-03 c) Tailoring is not an end in itself, there must be a logical reason behind the application of any tailoring process. The need for the adaptation of standard requirements to
37、a particular project is generally driven by considerations such as: level of software safety criticality, requirements for maintainability, specific project constraints (multinational, fixed price, delivery intervals, national security considerations, etc.), product characteristics, etc. d) Tailorin
38、g is potentially dangerous and if not properly controlled can lead to the definition of a software life-cycle process that, in the short term supports a fast and cheap project, but ultimately can lead to a product that does not fulfil the contract and cannot be sold off. Therefore it is essential, t
39、hroughout the tailoring process, to always respect the integrity and safety aspects of the final product. 2 Scope This guide is intended to help in the generation of project specific software standards by interpreting and adapting existing or planned international standards. It does not attempt to r
40、eplace them. For the purposes of this guide, the term Software includes software developed or acquired by the contractor as well as software provided by the customer for integration into the system. Unless otherwise stated, this document bases its recommendations regarding: a) quality management sys
41、tems: on IS0 9001 :2000; b) software life cycle processes: on IS0 12207. which are generally recognised by most software developing organisations as well as their customers. 2.1 - Flight and Mission (hardware and firmware, I/O drivers, BIT, data, application software, etc.) - Ground (hardware and fi
42、rmware, OS drivers, BIT, operation and maintenance, application software, etc.) - Software engineering environment (software tools for development and maintenance, testing and evaluation, simulation, hardware and firmware, OS drivers, BIT, etc.) Types of related systems covered by this guide are 2.2
43、 Types of acquisition covered by this guide i) i) iii) iv) v) vi) Development (contractor internal either alone or within project consortia) Development (sub-contracted by the contractor) Commercial Off The Shelf (COTS) Re-use of existing software (with or without modification) Customer furnished so
44、ftware (with or without modification) Mixture of any combination of the above. 2.3 During the conception and definition of a software development project it is the responsibility of the quality management to ensure that the following system and project aspects System aspects relating to software dev
45、elopment and maintenance i) Architecture (functional distribution, hardware and software configuration items, etc.) i) Interfaces (system, sub-system, hardware, software, etc.) iii) Safety (analysis, classification, etc.) iv) Configuration management (products, environments, etc.) v) Risk management
46、 vi) Qualification and verification vi) Certification and flight approval Copyright Association Europeene des Constructeurs de Materiel Aerospatial Provided by IHS under license with AECMANot for ResaleNo reproduction or networking permitted without license from IHS-,-,-Page 8 TR 9109: 03-03 viii) D
47、elivery ix) Additional considerations (user-modifiable software, option-selectable software, field loadable x) Planning and resource management software, etc.) are identified and planned for, that appropriate processes and procedures are defined, agreed and placed on project. Quality management shou
48、ld assure the adherence to the processes and procedures through participation and the performance of planned quality actions .e. inspections, audits and reviews. Although this guide addresses software only, an integrated system approach should be considered: .e. an approach where software, hardware,
49、 human interfaces, infrastructure and processes are integrated into one system and where the corresponding disciplines and technologies are incorporated into the system engineering discipline. 3 References 3.1 General The following International Standards and Technical Reports are referred to in this guide and contain information relevant to aerospace software. 3.2 3.2.1 AECMA prEN 91 O0 (Edition P2:2001), Aerospace series - Qualify managemenf sysfems - Requiremenfs (b
