Safety-critical software testing in airborne systems : the modified condition/decision coverage criterion
Author(s)
Dupuy, Arnaud (Arnaud Guillaume), 1973-
DownloadFull printable version (6.988Mb)
Advisor
Nancy G. Leveson.
Terms of use
Metadata
Show full item recordAbstract
In order to be certified by the FAA, airborne software must comply with the D0-178B standard. For the unit testing of safety-critical software, this standard requires the testing process to meet a strong source code structure coverage criterion, referred to as Modified Condition/Decision Coverage criterion. This part of the standard is controversial in the aviation community, in particular because the coverage criterion is apparently not related to the safety of the software. In this thesis, we follow the letter of the D0-1788 standard to perform the unit testing of the Attitude Control Sy stem of the HETE-2 satellite. This allowed us to gain some insights on the D0- 1788 testing procedure, and to prove that in the case of the considered software, this method was well adapted.
Description
Thesis (S.M.)--Massachusetts Institute of Technology, Dept. of Aeronautics and Astronautics, 1999. Includes bibliographical references (p. 112-113).
Date issued
1999Department
Massachusetts Institute of Technology. Department of Aeronautics and AstronauticsPublisher
Massachusetts Institute of Technology
Keywords
Aeronautics and Astronautics