Space product assurance - Software product assurance

This Standard defines a set of software product assurance requirements to be used for the development and maintenance of software for space systems. Space systems include manned and unmanned spacecraft, launchers, payloads, experiments and their associated ground equipment and facilities. Software includes the software component of firmware.
This Standard also applies to the development or reuse of non­deliverable software which affects the quality of the deliverable product or service provided by a space system, if the service is implemented by software.
ECSS-Q-ST-80 interfaces with space engineering and management, which are addressed in the Engineering (-E) and Management (-M) branches of the ECSS System, and explains how they relate to the software product assurance processes.
This standard may be tailored for the specific characteristic and constraints of a space project in conformance with ECSS-S-ST-00.
Tailoring of this Standard to a specific business agreement or project, when software product assurance requirements are prepared, is also addressed in clause 4.3.

Raumfahrtproduktsicherung - Software-Produktsicherung

Assurance produit des projets spatiaux - Assurance produit logiciel

La présente norme définit un ensemble d’exigences d’assurance produit logiciel à utiliser pour le développement et la maintenance des logiciels des systèmes spatiaux. Les systèmes spatiaux comprennent les véhicules spatiaux automatisés ou à pilotage manuel, les lanceurs, les charges utiles, les expériences et leurs équipements et moyens sol associés. Les logiciels incluent les composants logiciel intégrés au microprogramme.
La présente norme s’applique aussi au développement ou à la réutilisation de logiciels non livrables qui affectent la qualité du produit ou service livrable fourni par un système spatial, si le service est rempli par des logiciels.
La norme ECSS-Q-ST-80 interagit avec l’ingénierie et le management des produits spatiaux, traités dans les branches Ingénierie (-E) et Management (-M) du système ECSS, et explique comment ils sont liés aux processus d’assurance produit logiciel.
La présente norme peut être adaptée aux caractéristiques et contraintes spécifiques d'un projet spatial, conformément à l'ECSS-S-ST-00.
L’adaptation de cette norme à un accord commercial ou projet spécifique lors de l’élaboration des exigences d’assurance produit logiciel est définie dans le paragraphe 4.3.

Zagotavljanje varnih proizvodov v vesoljski tehniki - Zagotavljanje varne programske opreme

Ta standard določa niz zahtev za zagotavljanje varne programske opreme, ki se uporablja za razvoj in vzdrževanje programske opreme za vesoljske sisteme. Vesoljski sistemi vključujejo vesoljska plovila s posadko in brez nje, lansirnike, tovor, poskuse ter pripadajočo opremo in objekte na zemlji. Programska oprema vključuje programsko komponento vdelane programske opreme.
Ta standard se uporablja tudi za razvoj ali ponovno uporabo programske opreme, ki je ni mogoče dobaviti in ki vpliva na kakovost dobavljenega izdelka ali storitve, ki jo zagotavlja vesoljski sistem, če se storitev izvaja s programsko opremo.
ECSS-Q-ST-80 se navezuje na vesoljski inženiring in upravljanje, ki ju obravnavata veji inženiringa (-E) in upravljanja (-M) sistema ECSS, ter pojasnjuje njuno povezavo s postopki zagotavljanja varne programske opreme.
Ta standard se lahko prilagodi posameznim lastnostim in omejitvam vesoljskega projekta v skladu s standardom ECSS-S-ST-00.
V točki 4.3. je obravnavana tudi prilagoditev tega standarda posebni poslovni pogodbi ali projektu, zlasti pri pripravi zahtev za zagotavljanje varnosti programske opreme.

General Information

Status
Published
Publication Date
27-Nov-2018
Technical Committee
Current Stage
6060 - Definitive text made available (DAV) - Publishing
Due Date
28-Nov-2018
Completion Date
28-Nov-2018

Buy Standard

Standard
EN 16602-80:2019 - BARVE na PDF-str 23
English language
117 pages
sale 10% off
Preview
sale 10% off
Preview

e-Library read for
1 day

Standards Content (sample)

SLOVENSKI STANDARD
SIST EN 16602-80:2019
01-februar-2019
Zagotavljanje varnih proizvodov v vesoljski tehniki - Zagotavljanje varne
programske opreme
Space product assurance - Software product assurance
Raumfahrtproduktsicherung - Software-Produktsicherung
Assurance produit des projets spatiaux - Assurance produit logiciel
Ta slovenski standard je istoveten z: EN 16602-80:2018
ICS:
35.080 Programska oprema Software
49.140 Vesoljski sistemi in operacije Space systems and
operations
SIST EN 16602-80:2019 en,fr,de

2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
SIST EN 16602-80:2019
---------------------- Page: 2 ----------------------
SIST EN 16602-80:2019
EUROPEAN STANDARD
EN 16602-80
NORME EUROPÉENNE
EUROPÄISCHE NORM
November 2018
ICS 35.080; 49.140
English version
Space product assurance - Software product assurance

Assurance produit des projets spatiaux - Assurance Raumfahrtproduktsicherung - Software-

produit logiciel Produktsicherung
This European Standard was approved by CEN on 12 October 2018.

CEN and CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for

giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical

references concerning such national standards may be obtained on application to the CEN-CENELEC Management Centre or to

any CEN and CENELEC member.

This European Standard exists in three official versions (English, French, German). A version in any other language made by

translation under the responsibility of a CEN and CENELEC member into its own language and notified to the CEN-CENELEC

Management Centre has the same status as the official versions.

CEN and CENELEC members are the national standards bodies and national electrotechnical committees of Austria, Belgium,

Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany,

Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania,

Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United Kingdom.

CEN-CENELEC Management Centre:
Rue de la Science 23, B-1040 Brussels

© 2018 CEN/CENELEC All rights of exploitation in any form and by any means Ref. No. EN 16602-80:2018 E

reserved worldwide for CEN national Members and for
CENELEC Members.
---------------------- Page: 3 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
Table of contents

European Foreword ................................................................................................... 7

1 Scope ....................................................................................................................... 8

2 Normative references ............................................................................................. 9

3 Terms, definitions and abbreviated terms .......................................................... 10

3.1 Terms for other standards ....................................................................................... 10

3.2 Terms specific to the present standard ................................................................... 10

3.3 Abbreviated terms................................................................................................... 16

3.4 Nomenclature ......................................................................................................... 18

4 Space system software product assurance principles ..................................... 19

4.1 Introduction ............................................................................................................. 19

4.2 Organization of this Standard ................................................................................. 20

4.3 Tailoring of this Standard ........................................................................................ 22

5 Software product assurance programme implementation ............................... 23

5.1 Organization and responsibility ............................................................................... 23

5.1.1 Organization.............................................................................................. 23

5.1.2 Responsibility and authority ...................................................................... 23

5.1.3 Resources ................................................................................................. 24

5.1.4 Software product assurance manager/engineer ........................................ 24

5.1.5 Training ..................................................................................................... 24

5.2 Software product assurance programme management ........................................... 25

5.2.1 Software product assurance planning and control ..................................... 25

5.2.2 Software product assurance reporting ....................................................... 26

5.2.3 Audits ........................................................................................................ 27

5.2.4 Alerts......................................................................................................... 27

5.2.5 Software problems .................................................................................... 27

5.2.6 Nonconformances ..................................................................................... 28

5.2.7 Quality requirements and quality models ................................................... 29

---------------------- Page: 4 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)

5.3 Risk management and critical item control .............................................................. 29

5.3.1 Risk management ..................................................................................... 29

5.3.2 Critical item control .................................................................................... 29

5.4 Supplier selection and control ................................................................................. 30

5.4.1 Supplier selection ...................................................................................... 30

5.4.2 Supplier requirements ............................................................................... 30

5.4.3 Supplier monitoring ................................................................................... 30

5.4.4 Criticality classification .............................................................................. 31

5.5 Procurement ........................................................................................................... 31

5.5.1 Procurement documents ........................................................................... 31

5.5.2 Review of procured software component list ............................................. 31

5.5.3 Procurement details .................................................................................. 32

5.5.4 Identification .............................................................................................. 32

5.5.5 Inspection ................................................................................................. 32

5.5.6 Exportability .............................................................................................. 32

5.6 Tools and supporting environment .......................................................................... 32

5.6.1 Methods and tools ..................................................................................... 32

5.6.2 Development environment selection ......................................................... 33

5.7 Assessment and improvement process .................................................................. 34

5.7.1 Process assessment ................................................................................. 34

5.7.2 Assessment process ................................................................................. 34

5.7.3 Process improvement ............................................................................... 35

6 Software process assurance ............................................................................... 37

6.1 Software development life cycle .............................................................................. 37

6.1.1 Life cycle definition .................................................................................... 37

6.1.2 Process quality objectives ......................................................................... 37

6.1.3 Life cycle definition review ......................................................................... 37

6.1.4 Life cycle resources .................................................................................. 37

6.1.5 Software validation process schedule ....................................................... 38

6.2 Requirements applicable to all software engineering processes ............................. 38

6.2.1 Documentation of processes ..................................................................... 38

6.2.2 Software dependability and safety ............................................................. 39

6.2.3 Handling of critical software ...................................................................... 41

6.2.4 Software configuration management ......................................................... 43

6.2.5 Process metrics ........................................................................................ 45

6.2.6 Verification ................................................................................................ 46

6.2.7 Reuse of existing software ........................................................................ 49

---------------------- Page: 5 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)

6.2.8 Automatic code generation ........................................................................ 52

6.3 Requirements applicable to individual software engineering processes or

activities .................................................................................................................. 53

6.3.1 Software related system requirements process ......................................... 53

6.3.2 Software requirements analysis ................................................................ 53

6.3.3 Software architectural design and design of software items ...................... 55

6.3.4 Coding ...................................................................................................... 56

6.3.5 Testing and validation ............................................................................... 57

6.3.6 Software delivery and acceptance ............................................................. 62

6.3.7 Operations ................................................................................................ 63

6.3.8 Maintenance ............................................................................................. 64

7 Software product quality assurance ................................................................... 66

7.1 Product quality objectives and metrication .............................................................. 66

7.1.1 Deriving of requirements ........................................................................... 66

7.1.2 Quantitative definition of quality requirements ........................................... 66

7.1.3 Assurance activities for product quality requirements ................................ 66

7.1.4 Product metrics ......................................................................................... 66

7.1.5 Basic metrics ............................................................................................. 67

7.1.6 Reporting of metrics .................................................................................. 67

7.1.7 Numerical accuracy ................................................................................... 67

7.1.8 Analysis of software maturity ..................................................................... 68

7.2 Product quality requirements .................................................................................. 68

7.2.1 Requirements baseline and technical specification ................................... 68

7.2.2 Design and related documentation ............................................................ 69

7.2.3 Test and validation documentation ............................................................ 69

7.3 Software intended for reuse .................................................................................... 70

7.3.1 Customer requirements ............................................................................. 70

7.3.2 Separate documentation ........................................................................... 70

7.3.3 Self-contained information ......................................................................... 70

7.3.4 Requirements for intended reuse .............................................................. 70

7.3.5 Configuration management for intended reuse .......................................... 70

7.3.6 Testing on different platforms .................................................................... 71

7.3.7 Certificate of conformance ........................................................................ 71

7.4 Standard ground hardware and services for operational system ............................. 71

7.4.1 Hardware procurement ............................................................................. 71

7.4.2 Service procurement ................................................................................. 71

7.4.3 Constraints ................................................................................................ 72

---------------------- Page: 6 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)

7.4.4 Selection ................................................................................................... 72

7.4.5 Maintenance ............................................................................................. 72

7.5 Firmware ................................................................................................................ 72

7.5.1 Device programming ................................................................................. 72

7.5.2 Marking ..................................................................................................... 73

7.5.3 Calibration ................................................................................................. 73

Annex A (informative) Software documentation .................................................. 74

Annex B (normative) Software product assurance plan (SPAP) - DRD ............. 80

B.1 DRD identification ................................................................................................... 80

B.1.1 Requirement identification and source document ...................................... 80

B.1.2 Purpose and objective ............................................................................... 81

B.2 Expected response ................................................................................................. 82

B.2.1 Scope and content .................................................................................... 82

B.2.2 Special remarks ........................................................................................ 86

Annex C (normative) Software product assurance milestone report

(SPAMR) - DRD .................................................................................................... 87

C.1 DRD identification ................................................................................................... 87

C.1.1 Requirement identification and source document ...................................... 87

C.1.2 Purpose and objective ............................................................................... 88

C.2 Expected response ................................................................................................. 88

C.2.1 Scope and content .................................................................................... 88

C.2.2 Special remarks ........................................................................................ 89

Annex D (normative) Tailoring of this Standard based on software

criticality............................................................................................................... 90

D.1 Software criticality categories ................................................................................. 90

D.2 Applicability matrix .................................................................................................. 91

Annex E (informative) List of requirements with built-in tailoring

capability ............................................................................................................ 102

Annex F (informative) Document organization and content at each

milestone............................................................................................................ 103

F.1 Introduction ........................................................................................................... 103

F.2 ECSS-Q-ST-80 Expected Output at SRR ............................................................. 103

F.3 ECSS-Q-ST-80 Expected Output at PDR ............................................................. 105

F.4 ECSS-Q-ST-80 Expected Output at CDR ............................................................. 110

F.5 ECSS-Q-ST-80 Expected Output at QR ............................................................... 112

F.6 ECSS-Q-ST-80 Expected Output at AR ................................................................ 113

---------------------- Page: 7 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
F.7 ECSS-Q-ST-80 Expected Output not associated with any specific milestone

review ................................................................................................................... 115

Bibliography ........................................................................................................... 117

Figures

Figure 4-1: Software related processes in ECSS Standards ................................................. 20

Figure 4-2: Structure of this Standard ................................................................................... 21

Figure A-1 : Overview of software documents ...................................................................... 74

Tables

Table A-1 : ECSS-E-ST-40 and ECSS-Q-ST-80 Document requirements list (DRL) ............ 75

Table B-1 : SPAP traceability to ECSS-E-ST-40 and ECSS-Q-ST-80 clauses ..................... 80

Table C-1 : SPAMR traceability to ECSS-Q-ST-80 clauses .................................................. 87

Table D-1 : Software criticality categories ............................................................................. 90

Table D-2 : Applicability matrix based on software criticality ................................................. 91

---------------------- Page: 8 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
European Foreword

This document (EN 16602-80:2018) has been prepared by Technical Committee CEN/CLC/JTC 5

“Space”, the secretariat of which is held by DIN (Germany).
This document (EN 16602-80:2018) originates from ECSS-Q-ST-80C Rev.1.

This European Standard shall be given the status of a national standard, either by publication of an

identical text or by endorsement, at the latest by May 2019, and conflicting national standards shall be

withdrawn at the latest by May 2019.

Attention is drawn to the possibility that some of the elements of this document may be the subject of

patent rights. CEN [and/or CENELEC] shall not be held responsible for identifying any or all such

patent rights.

This document has been prepared under a standardization request given to CEN by the European

Commission and the European Free Trade Association.

This document has been developed to cover specifically space systems and will therefore have

precedence over any EN covering the same scope but with a wider do-main of applicability (e.g. :

aerospace).

According to the CEN-CENELEC Internal Regulations, the national standards organisations of the

following countries are bound to implement this European Standard: Austria, Belgium, Bulgaria,

Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of

Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,

Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia,

Spain, Sweden, Switzerland, Turkey and the United Kingdom.
---------------------- Page: 9 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
Scope
This Standard defines a set of software product assurance requirements to be
used for the development and maintenance of software for space systems.
Space systems include manned and unmanned spacecraft, launchers, payloads,
experiments and their associated ground equipment and facilities. Software
includes the software component of firmware.
This Standard also applies to the development or reuse of non-deliverable
software which affects the quality of the deliverable product or service
provided by a space system, if the service is implemented by software.
ECSS-Q-ST-80 interfaces with space engineering and management, which are
addressed in the Engineering (-E) and Management (-M) branches of the ECSS
System, and explains how they relate to the software product assurance
processes.

This standard may be tailored for the specific characteristic and constraints of a

space project in conformance with ECSS-S-ST-00.
Tailoring of this Standard to a specific business agreement or project, when
software product assurance requirements are prepared, is also addressed in
clause 4.3.
---------------------- Page: 10 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
Normative references
The following normative documents contain provisions which, through
reference in this text, constitute provisions of this ECSS Standard. For dated
references, subsequent amendments to, or revision of any of these publications
do not apply, However, parties to agreements based on this ECSS Standard are

encouraged to investigate the possibility of applying the more recent editions of

the normative documents indicated below. For undated references, the latest
edition of the publication referred to applies.
EN reference Reference in text Title
EN 16601-00-01 ECSS-S-ST-00-01 ECSS system — Glossary of terms
EN 16003-40 ECSS-E-ST-40 Space engineering — Software general requirements
EN 16602-10 ECSS-Q-ST-10 Space product assurance – Product assurance
management
EN 16602-10-04 ECSS-Q-ST-10-04 Space product assurance – Critical-item control
EN 16602-10-09 ECSS-Q-ST-10-09 Space product assurance – Nonconformance control
system
EN 16602-20 ECSS-Q-ST-20 Space product assurance – Quality assurance
EN 16602-30 ECSS-Q-ST-30 Space product assurance – Dependability
EN 16602-40 ECSS-Q-ST-40 Space product assurance – Safety
EN 16601-10 ECSS-M-ST-10 Space project management – Project planning and
implementation
EN 16601-10-01 ECSS-M-ST-10-01 Space project management –Organization and
conduct of reviews
EN 16601-40 ECSS-M-ST-40 Space project management – Configuration and
information management
EN 16601-80 ECSS-M-ST-80 Space project management – Risk management
ISO/IEC 15504 Part Software engineering - Process assessment – Part 2:
2:2003 Performing an assessment - First Edition
---------------------- Page: 11 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
Terms, definitions and abbreviated terms
3.1 Terms for other standards
For the purpose of this Standard, the terms and definitions from ECSS-S-ST-00-01
apply.
NOTE The terms and definitions are common for the
ECSS-E-ST-40 and ECSS-Q-ST-80 Standards.
3.2 Terms specific to the present standard
3.2.1 automatic code generation
generation of source code with a tool from a model
3.2.2 code coverage
percentage of the software that has been executed (covered) by the test suite
3.2.3 competent assessor
person who has demonstrated the necessary skills, competencies and
experience to lead a process assessment in conformance with ISO/IEC 15504
NOTE Adapted from ISO/IEC 15504:1998, Part 9.
3.2.4 condition
boolean expression not containing boolean operators
3.2.5 configurable code
code (source code or executable code) that can be tailored by setting values of
parameters
NOTE This definition covers in particular classes of
configurable code obtained by the following
configuration means:
• configuration based on the use of a
compilation directive;
• configuration based on the use of a link
directive;
• configuration performed through a
parameter defined in a configuration file;
---------------------- Page: 12 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
• configuration performed through data
defined in a database with impact on the
actually executable parts of the software
(e.g. parameters defining branch structures
that result in the non-execution of existing
parts of the code).
3.2.6 COTS, OTS, MOTS software
for the purpose of this Standard, commercial-off-the-shelf, off-the-shelf and
modified-off-the-shelf software for which evidence of use is available
3.2.7 critical software
software of criticality category A, B or C
NOTE See ECSS-Q-ST-80, Annex D.1 – Software
criticality categories.
3.2.8 deactivated code
code that, although incorporated through correct design and coding, is
intended to execute in certain software product configurations only, or in none
of them
[SOURCE: adapted from RTCA/DO-178B]
3.2.9 decision
boolean expression composed of conditions and zero or more boolean operators
that are used in a control construct.
NOTE 1 For example: “if.....then .....else” or the “case”
statement are control construct.
NOTE 2 A decision without a boolean operator is a
condition.
NOTE 3 If a condition appears more than once in a
decision, each occurrence is a distinct condition.
3.2.10 decision coverage
measure of the part of the program within which every point of entry and exit
is invoked at least once and every decision has taken “true” and “false” values
at least once.
NOTE Decision coverage includes, by definition,
statement coverage.
3.2.11 existing software
any software developed outside the business agreement to which this Standard
is applicable, including software from previous developments provided by the
supplier, software from previous developments provided by the customer,
COTS, OTS and MOTS software, freeware and open source software
---------------------- Page: 13 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
3.2.12 integration testing
testing in which software components, hardware components, or both are
combined and tested to evaluate the interaction between them
[SOURCE: IEEE 610.12:1990]
3.2.13 logical model
implementation-independent model of software items used to analyse and
document software requirements
3.2.14 margin philosophy
rationale for margins allocated to the performance parameters and computer
resources of a development, and the way to manage these margins during the
execution of the project
3.2.15 metric
defined measurement method and the measurement scale
NOTE 1 Metrics can be internal or external, and direct or
indirect.
NOTE 2 Metrics include methods for categorising
qualitative data.
[SOURCE: ISO/IEC 9126-1:2001]
3.2.16 migration
porting of a software product to a new environment
3.2.17 mission products
products and services delivered by the space system
NOTE For example: Communications services, science
data.
3.2.18 modified condition and decision coverage
measure of the part of the program within which every point of entry and exit
has been invoked at least once, every decision in the program has taken “true”
and “false” values at least once, and each condition in a decision has been
shown to independently affect that decision’s outcome
NOTE A condition is shown to independently affect a
decision’s outcome by varying that condition
while holding fixed all other possible
conditions.
3.2.19 operational
for the purpose of this Standard, related to the software operation
NOTE It is not related to the spacecraft operation.
---------------------- Page: 14 ----------------------
SIST EN 16602-80:2019
EN 16602-80:2018 (E)
3.2.20 portability
capability of software to be transferred from one
environment to another
3.2.21 quality characteristics
set of attributes of a software product by which its quality is
described and evaluated
NOTE A software quality characteristic can have
multiple levels of sub-characteristics.
3.2.22 quality model
set of characteristics and the relationships between them which
provide the basis for specifying quality requirements and evaluating quality
[SOURCE: ISO/IEC 9126-1:2001]
3.2.23 real-time
pertaining to a system or mode of operation in which computation is performed
durin
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.