Railways Applications - Rolling stock applications - Software on Board Rolling Stock

1.1 This European Standard specifies the process and technical requirements for the development of software for programmable electronic systems for use in rolling stock applications. Outside the scope of this standard is software that: - is part of signalling equipment (CENELEC sub-committee SC9XA applications) installed on board trains, or - does not contribute to, and is segregated from Rolling Stock operational functions. 1.2 This European Standard is applicable exclusively to software and the interaction between software and the system of which it is part. 1.3 Entry intentionally left empty 1.4 This European Standard applies to safety-related as well as non-safety-related software, including for example: - application programming, - operating systems, - support tools, - firmware. Application programming comprises high level programming, low level programming and special purpose programming (for example: programmable logic controller ladder logic). 1.5 This European Standard also addresses the use of pre-existing software and tools. Such software may be used, if the specific requirements in 7.3.4.7 and 6.5.4.16 on pre-existing software and for tools in 6.7 are fulfilled. 1.6 Software developed according to a valid version of EN 50128 is considered as compliant to this standard. Software previously developed in accordance with any version of EN 50128 is also considered as compliant and not subject to the requirements on pre-existing software. SIL1-SIL4 software developed under EN 50657 also complies with EN 50128:2011. 1.7 This European Standard considers that modern application design often makes use of software that is suitable as a basis for various applications. Such software is then configured by application data for producing the executable software for the application. This European Standard applies to such software. In addition, specific requirements for application data will be given. 1.8 Entry intentionally left empty 1.9 This European Standard is not intended to be retrospective. It therefore applies primarily to new developments and only applies in its entirety to existing systems if these are subjected to major modifications. For minor changes, only 9.2 applies. However, application of this European Standard during upgrades and maintenance of existing software is recommended. 1.10 The relevant sections of this software standard are also applicable to programmable components (e.g. FPGA and CPLD), in addition to the applicable hardware standard (e.g. EN 50129, EN 50155, EN 61508 2). However, requirements of this software standard that are already covered by the applicable hardware standard do not need to be re-addressed. When it is possible to exhaustively test the programmable logic for all possible inputs and internal logic states, this European Standard does not apply.

Bahnanwendungen - Anwendungen für Schienenfahrzeuge - Software auf Schienenfahrzeugen

Applications ferroviaires - Applications du matériel roulant - Logiciels embarqués

1.1 La présente Norme européenne spécifie les exigences de processus et techniques applicables au développement de logiciels pour des systèmes électroniques programmables utilisés dans les applications pour le matériel roulant. Un logiciels est hors du domaine d’application de la présente norme si : - il fait partie d’équipement de signalisation (applications du sous-comité SC9XA du CENELEC) installé à bord d’ ou - il ne contribue pas aux, et est séparé des, fonctions opperationnelles du Matériel Roulant 1.2 La présente Norme européenne est exclusivement applicable au logiciel et à l'interaction entre le logiciel et le système auquel il appartient. 1.3 Volontairement laissé vide 1.4 La présente Norme européenne s'applique à tous les logiciels, qu'il s'agisse de logiciels relatifs à la sécurité ou non, notamment : - la programmation d'applications, - les systèmes d'exploitation, - les outils, - les microprogrammes. La programmation d'applications inclut la programmation de haut niveau, la programmation de bas niveau et la programmation spécifique personnalisée (par exemple : la logique à contacts d'un contrôleur logique programmable). 1.5 La présente Norme européenne traite également de l'utilisation de logiciels et d'outils préexistants. Ces logiciels peuvent être utilisés si les exigences spécifiques en 7.3.4.7 et 6.5.4.16 relatives aux logiciels préexistants et celles en 6.7 relatives aux outils sont satisfaites. 1.6 Un logiciel développé conformément à une version valide de l'EN 50128 est considéré comme conforme à la présente Norme. Un logiciel développé conformément à une version quelconque de l'EN 50128 sera également considéré comme conforme et non soumis aux exigences relatives aux logiciels préexistants. Pour un logiciel SIL1-SIL4 dans le domaine d’application de la présente norme, les exigences incluses dans la présente Norme Européenne sont équivalentes aux exigences logicielles de l’EN 50128:2011. 1.7 La présente Norme européenne considère que la conception moderne d'applications utilise fréquemment des logiciels qui conviennent comme base pour diverses applications. Ces logiciels sont ensuite configurés par des données d'application, afin de produire le logiciel exécutable pour l'application. La présente Norme européenne s'applique à de tels logiciels. De plus, les exigences spécifiques concernant les données d'application seront fournies. 1.8 Volontairement laissé vide 1.9 La présente Norme européenne n'est pas destinée à être rétroactive. Elle s'applique donc principalement aux nouveaux développements et n'est applicable dans son intégralité aux systèmes existants que s'ils font l'objet de modifications importantes. Pour les modifications mineures, seul le Paragraphe 9.2 s'applique. Cependant, il est recommandé d'appliquer la présente Norme européenne pendant les mises à niveau et la maintenance des logiciels existants. 1.10 Les sections pertinentes de la présente norme de logiciel s'appliquent également aux composants programmables (par exemple les FPGA (Field-Programmable Gate Array, circuits intégrés prédiffusés programmables) et les CPLD (Complex Programmable Logic Device, réseaux logiques programmables complexes)), en plus de la norme de matériel applicable (par exemple, EN 50129, EN 50155, EN 61508-2). Cependant, les exigences de la présente norme logiciel qui sont déjà couvertes par la norme matériel applicable n’ont pas besoin d’être re-traitées. Lorsqu'il est impossible de soumettre à test de manière exhaustive la logique programmable pour toutes les données d'entrée et tous les états logiques internes possibles, la présente Norme Européenne ne s’applique pas.

Železniške naprave - Vozna sredstva - Programska oprema za tirna vozila

1.1 Ta evropski standard določa procesne in tehnične zahteve za razvoj programske opreme za programirljive elektronske sisteme, ki se uporabljajo za tirna vozila.    
Programska oprema, ki je del opreme za signalizacijo (krmiljenje in zaščita železniških naprav), nameščene na vlakih, ne sodi na področje uporabe tega standarda.    
Programska oprema, ki ne izvaja železniških aplikacij in ki se ne povezuje s funkcijami tirnih vozil, ne sodi na področje uporabe tega standarda, če je ločena od železniške programske opreme.
1.2 Ta evropski standard se uporablja izključno za programsko opremo in interakcijo med programsko opremo ter sistemom, katerega del je ta oprema.
1.3 Namerno izbrisano
1.4 Ta evropski standard se uporablja za programsko opremo, ki je povezana z varnostjo, in programsko opremo, ki ni povezana z varnostjo, vključno z na primer:
– programiranjem aplikacij,
– operacijskimi sistemi,
– orodji za podporo,
– vdelano programsko opremo.
Programiranje aplikacij zajema programiranje na visoki ravni, programiranje na nizki ravni in programiranje za posebne namene (na primer: programirljivi logični krmilnik z lestvično logiko).
1.5 Ta evropski standard obravnava tudi uporabo že obstoječe programske opreme in orodij. Taka programska oprema se lahko uporabi, če so izpolnjene zahteve iz točk 7.3.4.7 in 6.5.4.16 za že obstoječo programsko opremo in zahteve iz točke 6.7 za orodja.
1.6 Programska oprema, razvita v skladu z veljavno različico standarda EN 50128, je skladna s tem standardom. Programska oprema, ki je bila predhodno razvita v skladu s katero koli različico standarda EN 50128, je tudi skladna in zanjo ne veljajo zahteve za že obstoječo programsko opremo.
1.7 Ta evropski standard upošteva, da se pri sodobnem načrtovanju aplikacij pogosto uporablja programska oprema, ki je primerna kot osnova za različne aplikacije. Taka programska oprema se nato konfigurira s podatki aplikacije, da nastane izvršljiva programska oprema za določeno aplikacijo. Ta evropski standard velja za vso programsko opremo in za posebne zahteve za aplikacijske podatke.
1.8 Namerno izbrisano
1.9 Ta evropski standard ni retrospektiven. Velja torej predvsem za nov razvoj in v celoti velja le za obstoječe sisteme, če pri njih pride do večjih sprememb. Pri manjših spremembah velja le točka 9.2. Uporaba tega evropskega standarda se kljub temu priporoča med nadgradnjami in vzdrževanjem obstoječe programske opreme.
1.10 Pri programirljivih komponentah (vključno s FPGA in CPLD) je treba poleg veljavnega standarda za strojno opremo (npr. EN 50129, EN 50155, IEC 61508-2) upoštevati ustrezne dele tega standarda za programsko opremo, če ni mogoče izčrpno preskusiti programirljive logike za vse možne vhode in interna logična stanja.
Vendar pa opravil, ki jih že obravnava standard za strojno opremo, ni treba ponoviti pri uporabi tega standarda za programsko opremo.

General Information

Status
Published
Publication Date
10-Aug-2017
Current Stage
6060 - Document made available
Due Date
11-Aug-2017
Completion Date
11-Aug-2017

Buy Standard

Standard
EN 50657:2017
English language
140 pages
sale 10% off
Preview
sale 10% off
Preview

e-Library read for
1 day

Standards Content (sample)

SLOVENSKI STANDARD
SIST EN 50657:2017
01-oktober-2017
Železniške naprave - Vozna sredstva - Programska oprema za tirna vozila

Railway applications - Rolling stock applications - Software on board of rolling stock

Bahnanwendungen - Telekommunikationstechnik, Signaltechnik und
Datenverarbeitungssysteme - Software für Eisenbahnsteuerungs- und
Überwachungssysteme

Applications ferroviaires - Systèmes de signalisation, de télécommunication et de

traitement - Logiciels pour systèmes de commande et de protection ferroviaire
Ta slovenski standard je istoveten z: EN 50657:2017
ICS:
35.080 Programska oprema Software
45.060.01 Železniška vozila na splošno Railway rolling stock in
general
SIST EN 50657:2017 en

2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
SIST EN 50657:2017
---------------------- Page: 2 ----------------------
SIST EN 50657:2017
EUROPEAN STANDARD EN 50657
NORME EUROPÉENNE
EUROPÄISCHE NORM
August 2017
ICS 35.080; 35.240.60
English Version
Railways Applications - Rolling stock applications - Software on
Board Rolling Stock

Applications ferroviaires - Applications du matériel roulant - Bahnanwendungen - Anwendungen für Schienenfahrzeuge

Logiciels embarqués - Software auf Schienenfahrzeugen

This European Standard was approved by CENELEC on 2017-05-08. CENELEC members are bound to comply with the CEN/CENELEC

Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration.

Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC

Management Centre or to any CENELEC member.

This European Standard exists in three official versions (English, French, German). A version in any other language made by translation

under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Management Centre has the

same status as the official versions.

CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,

Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia,

Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden,

Switzerland, Turkey and the United Kingdom.
European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels

© 2017 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.

Ref. No. EN 50657:2017 E
---------------------- Page: 3 ----------------------
SIST EN 50657:2017
EN 50657:2017 (E)
Contents Page

European foreword ........................................................................................................................................... 8

Introduction ....................................................................................................................................................... 9

1 Scope ....................................................................................................................................................... 12

2 Normative references ............................................................................................................................. 13

3 Terms, definitions and abbreviations ................................................................................................... 13

3.1 Terms and definitions ..................................................................................................................... 13

3.2 Abbreviations .................................................................................................................................. 19

4 Objectives, conformance and software integrity levels ...................................................................... 20

5 Software management and organization .............................................................................................. 21

5.1 Organization, roles and responsibilities .......................................................................................... 21

5.1.1 Objective ................................................................................................................. 21

5.1.2 Requirements .......................................................................................................... 21

5.2 Personnel competence ................................................................................................................... 25

5.2.1 Objectives ............................................................................................................... 25

5.2.2 Requirements .......................................................................................................... 25

5.3 Lifecycle issues and documentation ............................................................................................... 25

5.3.1 Objectives ............................................................................................................... 25

5.3.2 Requirements .......................................................................................................... 25

6 Software assurance ................................................................................................................................ 28

6.1 Software testing .............................................................................................................................. 28

6.1.1 Objective ................................................................................................................. 28

6.1.2 Input documents ..................................................................................................... 28

6.1.3 Output documents ................................................................................................... 28

6.1.4 Requirements .......................................................................................................... 29

6.2 Software verification ........................................................................................................................ 29

6.2.1 Objective ................................................................................................................. 29

6.2.2 Input documents ..................................................................................................... 30

6.2.3 Output documents ................................................................................................... 30

6.2.4 Requirements .......................................................................................................... 30

6.3 Software validation .......................................................................................................................... 31

6.3.1 Objective ................................................................................................................. 31

6.3.2 Input documents ..................................................................................................... 31

6.3.3 Output documents ................................................................................................... 31

6.3.4 Requirements .......................................................................................................... 32

6.4 Software assessment ..................................................................................................................... 33

6.4.1 Objective ................................................................................................................. 33

6.4.2 Input documents ..................................................................................................... 33

6.4.3 Output documents ................................................................................................... 33

6.4.4 Requirements .......................................................................................................... 33

6.5 Software quality assurance ............................................................................................................. 35

6.5.1 Objectives ............................................................................................................... 35

6.5.2 Input documents ..................................................................................................... 35

6.5.3 Output documents ................................................................................................... 35

6.5.4 Requirements .......................................................................................................... 35

6.6 Modification and change control ..................................................................................................... 38

---------------------- Page: 4 ----------------------
SIST EN 50657:2017
EN 50657:2017 (E)

6.6.1 Objectives ............................................................................................................... 38

6.6.2 Input documents ..................................................................................................... 38

6.6.3 Output documents ................................................................................................... 38

6.6.4 Requirements .......................................................................................................... 38

6.7 Support tools and languages .......................................................................................................... 39

6.7.1 Objectives ............................................................................................................... 39

6.7.2 Input documents ..................................................................................................... 39

6.7.3 Output documents ................................................................................................... 39

6.7.4 Requirements .......................................................................................................... 39

7 Software development ............................................................................................................................ 42

7.1 Lifecycle and documentation for software ...................................................................................... 42

7.1.1 Objectives ............................................................................................................... 42

7.1.2 Requirements .......................................................................................................... 42

7.2 Software requirements .................................................................................................................... 42

7.2.1 Objectives ............................................................................................................... 42

7.2.2 Input documents ..................................................................................................... 42

7.2.3 Output documents ................................................................................................... 43

7.2.4 Requirements .......................................................................................................... 43

7.3 Architecture and Design.................................................................................................................. 45

7.3.1 Objectives ............................................................................................................... 45

7.3.2 Input documents ..................................................................................................... 45

7.3.3 Output documents ................................................................................................... 45

7.3.4 Requirements .......................................................................................................... 46

7.4 Component design .......................................................................................................................... 52

7.4.1 Objectives ............................................................................................................... 52

7.4.2 Input documents ..................................................................................................... 52

7.4.3 Output documents ................................................................................................... 52

7.4.4 Requirements .......................................................................................................... 52

7.5 Component implementation and testing ......................................................................................... 54

7.5.1 Objectives ............................................................................................................... 54

7.5.2 Input documents ..................................................................................................... 54

7.5.3 Output documents ................................................................................................... 54

7.5.4 Requirements .......................................................................................................... 54

7.6 Integration ....................................................................................................................................... 55

7.6.1 Objectives ............................................................................................................... 55

7.6.2 Input documents ..................................................................................................... 55

7.6.3 Output documents ................................................................................................... 55

7.6.4 Requirements .......................................................................................................... 56

7.7 Overall Software Testing / Final Validation ..................................................................................... 57

7.7.1 Objectives ............................................................................................................... 57

7.7.2 Input documents ..................................................................................................... 57

7.7.3 Output documents ................................................................................................... 57

7.7.4 Requirements .......................................................................................................... 58

7.8 Development of Software configured by application data ............................................................... 59

7.8.1 Objective ................................................................................................................. 59

7.8.2 Requirements .......................................................................................................... 59

8 Systems configured by application data: development of application data ..................................... 60

8.1 Objectives ....................................................................................................................................... 60

8.2 Input documents ............................................................................................................................. 60

8.3 Output documents .......................................................................................................................... 61

8.4 Requirements ................................................................................................................................. 61

8.4.1 Application Development Process .......................................................................... 61

8.4.2 Application Requirements Specification .................................................................. 62

---------------------- Page: 5 ----------------------
SIST EN 50657:2017
EN 50657:2017 (E)

8.4.3 Architecture and Design .......................................................................................... 62

8.4.4 Application Data Production .................................................................................... 63

8.4.5 Application Integration and Testing ......................................................................... 63

8.4.6 Application Validation and Assessment .................................................................. 64

8.4.7 Application preparation procedures and tools ......................................................... 64

9 Software deployment and maintenance ............................................................................................... 64

9.1 Software deployment ...................................................................................................................... 64

9.1.1 Objective ................................................................................................................. 64

9.1.2 Input documents ..................................................................................................... 64

9.1.3 Output documents ................................................................................................... 64

9.1.4 Requirements .......................................................................................................... 65

9.2 Software maintenance .................................................................................................................... 66

9.2.1 Objective ................................................................................................................. 66

9.2.2 Input documents ..................................................................................................... 66

9.2.3 Output documents ................................................................................................... 66

9.2.4 Requirements .......................................................................................................... 67

Annex A (normative) Criteria for the Selection of Techniques and Measures .......................................... 69

A.1 General ........................................................................................................................................... 69

A.2 Clauses tables ................................................................................................................................ 70

A.3 Detailed tables ................................................................................................................................ 77

Annex B (normative) Key software roles and responsibilities ................................................................... 82

Annex C (informative) Documents Control Summary ................................................................................. 95

Annex D (informative) Bibliography of techniques ...................................................................................... 97

D.1 Artificial Intelligence Fault Correction .............................................................................................. 97

D.2 Analysable Programs ...................................................................................................................... 97

D.3 Avalanche/Stress Testing ............................................................................................................... 98

D.4 Boundary Value Analysis ................................................................................................................ 98

D.5 Backward Recovery ........................................................................................................................ 99

D.6 Cause Consequence Diagrams ...................................................................................................... 99

D.7 Checklists ....................................................................................................................................... 99

D.8 Control Flow Analysis.................................................................................................................... 100

D.9 Common Cause Failure Analysis ................................................................................................. 100

D.10 Data Flow Analysis........................................................................................................................ 100

D.11 Data Flow Diagrams ..................................................................................................................... 101

D.12 Data Recording and Analysis ........................................................................................................ 101

D.13 Decision Tables and Truth Tables ................................................................................................ 102

D.14 Defensive Programming ............................................................................................................... 102

D.15 Coding Standards and Style Guide ............................................................................................... 103

D.16 Diverse Programming ................................................................................................................... 104

D.17 Dynamic Reconfiguration .............................................................................................................. 105

D.18 Equivalence Classes and Input Partition Testing.......................................................................... 105

D.19 Error Detecting and Correcting Codes .......................................................................................... 106

D.20 Error Guessing .............................................................................................................................. 106

D.21 Error Seeding ................................................................................................................................ 106

D.22 Event Tree Analysis ...................................................................................................................... 107

D.23 Fagan Inspections......................................................................................................................... 107

---------------------- Page: 6 ----------------------
SIST EN 50657:2017
EN 50657:2017 (E)

D.24 Failure Assertion Programming .................................................................................................... 107

D.25 SEEA – Software Error Effect Analysis ......................................................................................... 108

D.26 Fault Detection and Diagnosis ...................................................................................................... 108

D.27 Finite State Machines/State Transition Diagrams ......................................................................... 109

D.28 Formal Methods ............................................................................................................................ 110

D.28.1 General ................................................................................................................. 110

D.28.2 CSP – Communicating Sequential Processes ...................................................... 110

D.28.3 CCS – Calculus of Communicating Systems ........................................................ 111

D.28.4 HOL – Higher Order Logic .................................................................................... 111

D.28.5 LOTOS .................................................................................................................. 111

D.28.6 OBJ ....................................................................................................................... 111

D.28.7 Temporal logic ...................................................................................................... 112

D.28.8 VDM – Vienna Development Method .................................................................... 112

D.28.9 Z method ............................................................................................................... 113

D.28.10 B method ............................................................................................................... 113

D.28.11 Model Checking .................................................................................................... 114

D.29 Formal Proof ................................................................................................................................. 114

D.30 Forward Recovery ......................................................................................................................... 114

D.31 Graceful Degradation .................................................................................................................... 115

D.32 Impact Analysis ............................................................................................................................. 115

D.33 Information Hiding / Encapsulation ............................................................................................... 115

D.34 Interface Testing ........................................................................................................................... 116

D.35 Language Subset .......................................................................................................................... 116

D.36 Memorizing Executed Cases ........................................................................................................ 116

D.37 Metrics .......................................................................................................................................... 117

D.38 Modular Approach ......................................................................................................................... 117

D.39 Performance Modelling ................................................................................................................. 118

D.40 Performance Requirements .......................................................................................................... 118

D.41 Probabilistic Testing ...................................................................................................................... 119

D.42 Process Simulation ....................................................................................................................... 119

D.43 Prototyping / Animation ................................................................................................................. 120

D.44 Recovery Block ............................................................................................................................. 120

D.45 Response Timing and Memory Constraints .................................................................................. 120

D.46 Re-Try Fault Recovery Mechanisms............................................................................................. 120

D.47 Safety Bag .................................................................................................................................... 121

D.48 Software Configuration Management ........................................................................................... 121

D.49 Strongly Typed Programming Languages .................................................................................... 121

D.50 Structure Based Testing ............................................................................................................... 122

D.51 Structure Diagrams ....................................................................................................................... 122

D.52 Structured Methodology ................................................................................................................ 123

D.53 Structured Programming ............................................................................................................... 123

D.54 Suitable Programming languages ................................................................................................. 124

D.55 Time Petri Nets ............................................................................................................................. 125

D.56 Walkthroughs / Design Reviews ................................................................................................... 125

D.57 Object Oriented Programming ...................................................................................................... 125

D.58 Traceability .................................................................................................................................... 126

---------------------- Page: 7 ----------------------
SIST EN 50657:2017
EN 50657:2017 (E)

D.59 Metaprogramming ......................................................................................................................... 126

D.60 Procedural programming .............................................................................................................. 127

D.61 Clause intentionally left empty ...................................................................................................... 127

D.62 Clause inten
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.