Re: VxWorks and safety related systems

comp.lang.ada
 help / color / mirror / Atom feed

* Re: VxWorks and safety related systems
       [not found] <382C2D36.C24AB060@gecm.com>
@ 1999-11-23  0:00 ` Rakesh Malhotra
  0 siblings, 0 replies; only message in thread
From: Rakesh Malhotra @ 1999-11-23  0:00 UTC (permalink / raw)

Hi

What kind of info are you looking for ?    I have been developing safety
systems for over 10 years and read through DEF STAN a long time ago; 
however, I work mostly in the railroad industry which has its own sets
of standards.  In Europe the most common is RIA-23 or the CENELEC one.  
These are a bit less stringent than DEF STAN specially at the higher SIL
levels.    The railroad standards have SIL levels from 0 to 4.   The
systems I have worked on were SIL 3.  However, I know several people who
have worked on several SIL 4 systems.

The systems were specified and designed very rigorously.  This includes
the use of a lot of common techniques e.g. FTA, FMEA, SFMEA, Hazard
Analysis etc.   In addition every single line of code had to be tested.

At SIL 3 or higher the use of an OS is _not_ recommended; hence we chose
not to use any OS.    The programming language used was Ada (1983) - I
did the first system in 1990.  Subsequently, I have done several more
safety systems ( > 3) and have used Ada in each of them _very_
successfully.    If you are in the USA, some of these systems have been
and are being done in the US (I mention this only because software folks
in the US seem to have some kind of aversion to Ada without even
understanding what it is or having ever looked at it.  They just feed
off of each others comments).  

At SIL 3 DEF STAN will probably recommend the use of a Static Code
Analyser - the only ones I have used are SPADE and SPARK (the first is
for Pascal, the 2nd for Ada).  These are sold by Praxis Systems in the
UK - check out www.praxis.com.   I do not think that there is such a
thing for C, C++ or Java.      

(As an aside, I have also developed and am developing high integrity
systems in C, C++.  If for some reason you choose to use these
languages, it helps to use a tool like PC-Lint. - this tool should
actually be used for all projects, but should be mandatory for high
integrity ones).

Again if you want more info, send me email and I will try to help or if
you are in the US we can talk on the phone.

Rakesh
Comments are my own and do not reflect the views of my company.

David H Smith wrote:
> 
> I'm looking for info on projects that have used VxWorks in safety
> related systems. For those of you aware of Defstan 00-56, I'm talking
> about SIL 3 systems.
> 
> Dave Smith

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~1999-11-23  0:00 UTC | newest]

Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
     [not found] <382C2D36.C24AB060@gecm.com>
1999-11-23  0:00 ` VxWorks and safety related systems Rakesh Malhotra

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox