prEN 16154
(Main)Air Traffic Management - Software assurance levels
Air Traffic Management - Software assurance levels
The present document is for the production of assurance evidence for software used in ground-based systems and their constituents.
This Community Specification on Software Assurance Levels (SWAL) is intended to apply to software that is part of the EATMN, focusing only on it’s “ground” segment and providing a reference against which stakeholders can assess their own practices for software specification, design, development, operation, maintenance, evolution and decommissioning.
This Community Specification defines the Technical, Operational and Maintenance requirements for Software Assurance Levels to demonstrate compliance with the applicable (see Annex A) Essential Requirements of the Regulation (EC) N° 552/2004 of the European Parliament and of the Council on the interoperability of the European Air Traffic network (“the Interoperability regulation”).
Requirements in the present document which refer to “should” statements or recommendations in the normatively referenced material (2.1) are to be interpreted as fully normative (“shall”) for the purpose of compliance with the present document.
Flugverkehrsmanagement - Software-Sicherheitsanforderungsstufen
Das vorliegende Dokument befasst sich mit der Erstellung eines Nachweises zur Gewährleistung der Soft-ware-Sicherheit, die in bodengestützten Systemen und ihren Komponenten verwendet wird.
Diese Gemeinschaftliche Spezifikation zu Software-Sicherheitsanforderungsstufen (SWAL) soll für Software gelten, die Teil des europäischen Flugverkehrsmanagementnetzes ist und bezieht sich nur auf das bodengestützte Segment. Sie bildet eine Referenz, gegen die die Anspruchsgruppen ihre eigenen Verfahren zu Spezifikation, Auslegung, Entwicklung, Betrieb, Wartung, Weiterentwicklung und Außerbetriebnahme von Software überprüfen können.
Diese Gemeinschaftliche Spezifikation legt die Anforderungen für die Software-Sicherheitsanforderungsstufen hinsichtlich Technik, Betrieb und Wartung fest, um die Einhaltung der gültigen (siehe Anhang A) Grund¬legenden Anforderungen der Verordnung (EG) Nr. 552/2004 des Europäischen Parlaments und des Rates zur Interoperabilität des europäischen Flugverkehrsmanagementnetzes (Interoperabilitäts-Verordnung) nachzu¬weisen.
Anforderungen in diesem Dokument, die sich auf Soll-Bestimmungen oder Empfehlungen im verpflichtenden Referenzmaterial (2.1) beziehen, sind zur Einhaltung des vorliegenden Dokuments als verpflichtend zu interpretieren.
Gestion du trafic aérien - Niveaux d'assurance logicielle
Le présent document est destiné à la production des preuves d’assurance pour les logiciels utilisés dans les systèmes basés au sol et leurs composants.
La présente Spécification communautaire relative aux Niveaux d’Assurance Logicielle (NIVAL) est destinée à s’appliquer aux logiciels faisant partie du REGTA, en se focalisant seulement sur son segment « sol » et fournissant une référence par rapport à laquelle les parties intéressées peuvent évaluer leurs propres pratiques en matière de spécification, conception, développement, exploitation, entretien, évolution et de retrait de service.
La présente Spécification Communautaire définit les exigences techniques, d’exploitation et d’entretien relatives aux Niveaux d’Assurance Logicielle pour démontrer la conformité aux Exigences essentielles applicables (Voir Annexe A) du Règlement (CE) N° 552/2004 du Parlement Européen et du Conseil concernant l’interopérabilité du Réseau Européen de gestion du Trafic Aérien (« le règlement sur l’interopérabilité »).
Les exigences du présent document qui font référence aux déclarations ou recommandations avec « il convient » dans les documents normativement référencés (2.1) doivent être interprétées comme entièrement normatives (« doit ») pour les besoins de conformité au présent document.
Upravljanje zračnega prometa - Stopnje varovanja programske opreme
General Information
Standards Content (Sample)
SLOVENSKI STANDARD
01-december-2010
8SUDYOMDQMH]UDþQHJDSURPHWD6WRSQMHYDURYDQMDSURJUDPVNHRSUHPH
Air Traffic Management - Software assurance levels
Flugverkehrsmanagement - Software-Sicherheitsanforderungsstufen
Gestion du trafic aérien - Niveaux d'assurance logicielle
Ta slovenski standard je istoveten z: prEN 16154
ICS:
03.220.50 =UDþQLWUDQVSRUW Air transport
35.240.60 Uporabniške rešitve IT v IT applications in transport
transportu in trgovini and trade
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.
EUROPEAN STANDARD
DRAFT
NORME EUROPÉENNE
EUROPÄISCHE NORM
September 2010
ICS
English Version
Air Traffic Management - Software assurance levels
Gestion du trafic aérien - Niveaux d'assurance logicielle Flugverkehrsmanagement - Software-
Sicherheitsanforderungsstufen
This draft European Standard is submitted to CEN members for enquiry. It has been drawn up by the Technical Committee CEN/TC 377.
If this draft becomes a European Standard, CEN members are bound to comply with the CEN/CENELEC Internal Regulations which
stipulate the conditions for giving this European Standard the status of a national standard without any alteration.
This draft European Standard was established by CEN in three official versions (English, French, German). A version in any other language
made by translation under the responsibility of a CEN member into its own language and notified to the CEN Management Centre has the
same status as the official versions.
CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland,
Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland and United Kingdom.
Recipients of this draft are invited to submit, with their comments, notification of any relevant patent rights of which they are aware and to
provide supporting documentation.
Warning : This document is not a European Standard. It is distributed for review and comments. It is subject to change without notice and
shall not be referred to as a European Standard.
EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION
EUROPÄISCHES KOMITEE FÜR NORMUNG
Management Centre: Avenue Marnix 17, B-1000 Brussels
© 2010 CEN All rights of exploitation in any form and by any means reserved Ref. No. prEN 16154:2010: E
worldwide for CEN national Members.
Contents Page
Foreword . 4
Introduction . 5
1 Scope . 6
2 References. 6
3 Terms and definitions . 7
4 Software Assurance Levels (SWAL) . 7
4.1 Allocation . 8
4.2 Likelihood assessment . 8
4.3 Likelihood justification . 8
5 SWAL Objectives per Process . 9
5.1 General . 9
5.2 Primary Life Cycle Processes . 9
5.2.1 The Acquisition Process . 9
5.2.2 The Supply Process . 9
5.2.3 The Development Process . 9
5.2.4 The Operation Process . 9
5.2.5 The Maintenance Process . 9
5.3 Supporting Life Cycle Processes . 9
5.3.1 The Documentation Process . 9
5.3.2 The Configuration Management Process . 10
5.3.3 The Quality Assurance Process . 10
5.3.4 The Verification Process . 10
5.3.5 The Joint Review Process . 10
5.3.6 The Audit Process . 10
5.3.7 The Problem/Change Resolution Process . 10
5.4 Organisational Life Cycle Processes . 10
5.5 COTS processes . 10
5.5.1 COTS planning process . 10
5.5.2 COTS acquisition process . 11
5.5.3 COTS verification process . 11
5.5.4 COTS configuration management process . 11
Annex SA (normative) . 12
Annex A (normative) Checklist . 17
A.1 Interoperability Regulation Annex II Essential Requirements Part A: General requirements . 17
A.2 Interoperability Regulation Annex II Essential Requirements Part B: Specific requirements . 24
A.2.1 Systems and procedures for airspace management . 24
A.2.2 Systems and procedures for air traffic flow management . 25
A.2.3 Systems and procedures for air traffic services . 26
A.2.4 Communication systems and procedures for ground-to-ground, air-to-ground and air-to-air
communications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
A.2.5 Navigation systems and procedures . 31
A.2.6 Surveillance systems and procedures . 31
A.2.7 Systems and procedures for aeronautical information services . 32
A.2.8 Systems and procedures for the use of meteorological information . 33
Annex B (informative) Title of this document in the official languages . 34
Bibliography . 35
Foreword
This document (prEN 16154:2010) has been prepared by Technical Committee CEN/TC 377 “Air Traffic
Management”, the secretariat of which is held by DIN.
This document is currently submitted to the CEN Enquiry.
This document has been prepared under a mandate given to the CEN by the European Commission and
developed in cooperation with EUROCAE to support Essential Requirements of the Single European Sky
Interoperability Regulation.
Under this regulation, the use of a Community Specification (CS) is a means of compliance to the Essential
Requirements of the Regulation and/or the relevant implementing rules for interoperability.
For the relationship with the Single European Sky Interoperability Regulation see Annex SA, the Standards
Annex, of this document.
Introduction
The European Union launched the "Single European Sky" (SES) Legislation in 2002 which was adopted in 2004.
The SES legislation is based on a framework of 4 regulations, which includes the Interoperability Regulation
(EC 552/2004). The objective of the Interoperability Regulation is to ensure interoperability of the European Air
Traffic Management Network (EATMN) consistent with air navigation services.
An increasing proportion of functions of the EATMN are implemented by software and these functions are
becoming more safety-critical. It is therefore necessary to define guidance on how to standardise the assurances
that may be provided for software.
1 Scope
The present document is for the production of assurance evidence for software used in ground-based systems
and their constituents.
This Community Specification on Software Assurance Levels (SWAL) is intended to apply to software that is part
of the EATMN, focusing only on it’s “ground” segment and providing a reference against which stakeholders can
assess their own practices for software specification, design, development, operation, maintenance, evolution and
decommissioning.
This Community Specification defines the Technical, Operational and Maintenance requirements for Software
Assurance Levels to demonstrate compliance with the applicable (see Annex A) Essential Requirements of the
Regulation (EC) N° 552/2004 of the European Parliament and of the Council on the interoperability of the
European Air Traffic network (“the Interoperability regulation”).
Requirements in the present document which refer to “should” statements or recommendations in the normatively
referenced material (2.1) are to be interpreted as fully normative (“shall”) for the purpose of compliance with the
present document.
2 References
The following referenced documents are indispensable for the application of the present document. For dated
references, only the edition cited applies. For non-specific references, the latest edition of the referenced
document (including any amendments) applies.
2.1 Normative references
1)
EUROCAE ED-153 (august 2009), Guidelines for ANS software safety assurance .
2.2 Informative references
ED-109 Guidelines for the Communication Navigation Surveillance and Air Traffic Management (CNS/ATM)
systems software integrity assurance
IEC 61508 Functional Safety of electrical/electronic/programmable electronic safety-related systems
Regulation (EC) No 552/2004 (as amended) of the Regulation of the European Parliament and of the Council of
10 March 2004 on the interoperability of the European Air Traffic Management network (interoperability
Regulation), OJ L 96, 31.03.2004 as amended by Regulation (EC) No 1070/2009 of the European Parliament and
of the Council of 21 October 2009 amending Regulations (EC) No 549/2004, (EC) No 550/2004, (EC) No
551/2004, (EC) No 552/2004 in order to improve the performance and sustainability of the European aviation
system
1) ED 153 has been made available to the responsible CEN technical body, CEN/TC 377 ‘Air Traffic Management’, as
document TC377 N 112.
3 Terms and definitions
For the purposes of this document, the following terms and definitions apply.
3.1
ANS
Air Navigation Service
3.2
COTS
Commercial off the shelf software, means a commercial available application sold by vendors through public
catalogue listings and not intended to be customised or enhanced;
3.3
CS
Community Specification
3.4
EATMN
European Air Traffic Management Network
3.5
EC
European Commission
3.6
EUROCAE
European Organisation for Civil Aviation Equipment
3.7
SES
Single European Sky
3.8
Software
means computer programmes and corresponding configuration data, including non-developmental software, but
excluding electronic items, namely application specific integrated circuits, programmable gate arrays or solid-state
logic controllers.
NOTE Non-developmental software includes proprietary software, COTS software, re-used software
3.9
SWAL
Software Assurance Level
4 Software Assurance Levels (SWAL)
The processes detailed below are those that are required in order to be able t
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.