Adding assurance to automatically generated code

Author

Denney, Ewen ; Fischer, Bernd ; Schumann, Johann

Author_Institution

NASA Ames Res. Center, USA

fYear

2004

fDate

25-26 March 2004

Firstpage

297

Lastpage

299

Abstract

Code to estimate position and attitude of a spacecraft or aircraft belongs to the most safety-critical parts of flight software. The complex underlying mathematics and abundance of design details make it error-prone and reliable implementations costly. AutoFilter is a program synthesis tool for the automatic generation of state estimation code from compact specifications. It can automatically produce additional safety certificates which formally guarantee that each generated program individually satisfies a set of important safety policies. These safety policies (e.g., array-bounds, variable initialization) form a core of properties which are essential for high-assurance software. Here we describe the AutoFilter system and its certificate generator and compare our approach to the static analysis tool PolySpace.

Keywords

aerospace computing; formal specification; program compilers; safety-critical software; software tools; AutoFilter; PolySpace; array-bounds; automatically generated code; flight software; formal specification; high-assurance software; program synthesis tool; safety certificates; safety policies; safety-critical software; state estimation code; static analysis tool; variable initialization; Certification; Extraterrestrial measurements; Navigation; Noise measurement; Position measurement; Software safety; Space vehicles; State estimation; Velocity measurement; Wheels;

fLanguage

English

Publisher

ieee

Conference_Titel

High Assurance Systems Engineering, 2004. Proceedings. Eighth IEEE International Symposium on

ISSN

1530-2059

Print_ISBN

0-7695-2094-4

Type

conf

DOI

10.1109/HASE.2004.1281768

Filename

1281768