Your browser does not support JavaScript! Skip to main content
Free 30-day trial DO-178C Handbook RapiCoupling Preview DO-178C Multicore Training Multicore Resources
Rapita Systems
 

Industry leading verification tools & services

Rapita Verification Suite (RVS)

  RapiTest - Unit/system testing  RapiCover - Structural coverage analysis  RapiTime - Timing analysis (inc. WCET)  RapiTask - Scheduling visualization  RapiCoverZero - Zero footprint coverage analysis  RapiTimeZero - Zero footprint timing analysis  RapiTaskZero - Zero footprint scheduling analysis  RapiCouplingPreview - DCCC analysis

Multicore Verification

  MACH178  MACH178 Foundations  Multicore Timing Solution  RapiDaemons

Engineering Services

  V&V Services  Data Coupling & Control Coupling  Object code verification  Qualification  Training  Consultancy  Tool Integration  Support

Industries

  Civil Aviation (DO-178C)   Automotive (ISO 26262)   Military & Defense   Space

Other

RTBx Mx-Suite Software licensing Product life cycle policy RVS Assurance issue policy RVS development roadmap

Latest from Rapita HQ

Latest news

SAIF Autonomy to use RVS to verify their groundbreaking AI platform
RVS 3.22 Launched
Hybrid electric pioneers, Ascendance, join Rapita Systems Trailblazer Partnership Program
Magline joins Rapita Trailblazer Partnership Program to support DO-178 Certification
View News

Latest from the Rapita blog

How to certify multicore processors - what is everyone asking?
Data Coupling Basics in DO-178C
Control Coupling Basics in DO-178C
Components in Data Coupling and Control Coupling
View Blog

Latest discovery pages

control_tower DO-278A Guidance: Introduction to RTCA DO-278 approval
Picture of a car ISO 26262
DCCC Image Data Coupling & Control Coupling
Additional Coe verification thumb Verifying additional code for DO-178C
View Discovery pages

Upcoming events

DO-178C Multicore In-person Training (Bristol)
2025-04-29
XPONENTIAL 2025
2025-05-19
Avionics and Testing Innovations 2025
2025-05-20
DO-178C Multicore In-person Training (Fort Worth, TX)
2025-05-28
View Events

Technical resources for industry professionals

Latest White papers

Mitigation of interference in multicore processors for A(M)C 20-193
Sysgo WP
Developing DO-178C and ED-12C-certifiable multicore software
DO178C Handbook
Efficient Verification Through the DO-178C Life Cycle
View White papers

Latest Videos

Rapita Systems - Safety Through Quality
Simulation for the Motorola 68020 microprocessor with Sim68020
AI-driven Requirements Traceability for Faster Testing and Certification
Multicore software verification with RVS 3.22
View Videos

Latest Case studies

GMV case study front cover
GMV verify ISO26262 automotive software with RVS
Kappa: Verifying Airborne Video Systems for Air-to-Air Refueling using RVS
Supporting DanLaw with unit testing and code coverage analysis for automotive software
View Case studies

Other Resources

 Webinars

 Brochures

 Product briefs

 Technical notes

 Research projects

 Multicore resources

Discover Rapita

Who we are

The company menu

  • About us
  • Customers
  • Distributors
  • Locations
  • Partners
  • Research projects
  • Contact us

US office

+1 248-957-9801
info@rapitasystems.com
Rapita Systems, Inc.
41131 Vincenti Ct.
Novi
MI 48375
USA

UK office

+44 (0)1904 413945
info@rapitasystems.com
Rapita Systems Ltd.
Atlas House
Osbaldwick Link Road
York, YO10 3JB
UK

Spain office

+34 93 351 02 05
info@rapitasystems.com
Rapita Systems S.L.
Parc UPC, Edificio K2M
c/ Jordi Girona, 1-3
Barcelona 08034
Spain

Working at Rapita

Careers

Careers menu

  • Current opportunities & application process
  • Working at Rapita
Back to Top Contact Us

Automating schedulability analysis of on-board software on the Solar Orbiter

Breadcrumb

  1. Home

Automating schedulability analysis of on-board software on the Solar Orbiter

  Download
.

The Solar Orbiter is a joint project by the European Space Agency® (ESA) and the National Aeronautics and Space Administration® (NASA) to study the behaviour of the Sun. Due to be launched in 2017, the Solar Orbiter’s payload of telemetry equipment includes the Energetic Particle Detector (EPD) suite of five telescopes, designed to measure the energy created by solar particles.

The University of Alcala, the developers of the onboard software for the Instrument Control Unit (ICU) of the EPD, selected Rapita Verification Suite (RVS) to support schedulability analysis for the ICU software.

Summary

The challenge

  • To create a measurement-based analysis of Solar Orbiter on-board software for schedulability.

The solution

  • To collect worst-case execution time data for individual tasks using RVS integrated with other tools.

The benefits

  • Developers were able to analyze different design alternatives with different elements with worst-case execution time (WCET) data.
  • The effectiveness of the test suites were improved by measuring code coverage at the same time.

The challenge

Schedulability analysis aims to provide guarantees of deadline satisfaction. To automate the schedulability analysis of the on-board software, the project required an integration between RVS and the MAST (Modeling and Analysis Suite for real Time applications) analysis tool.

The University of Alcala’s integration was based on a new framework (MICOBS) for developing modeldriven component-based embedded software systems under a multi-platform approach and integrating different development and analysis technologies.

The project chose RVS to perform the on-target worst-case execution analysis. Apart from analysing the worst-case execution time (WCET), RVS could also measure code coverage in compliance with ESA’s ECSS-E-40C standard, in addition to ISO 26262 and DO-178B guidelines.

The solution

The preferred solution was to carry out tests of each of the components and service libraries that are part of the system using RVS. This means that schedulability analysis could be performed without the need to take timing measures on the complete system.

The overall schedulability analysis solution is based on the execution time measurements of:

  • The component reactions to the reception of a message or the notification of an event
  • The code of the service libraries

The WCET measurements are obtained by analysing each component and service library separately, using on-target measurement and subsequent WCET analysis based on the measurements. In order to perform the final system-level schedulability analysis, a transformation has to be used to obtain, from the MICOBS models, the appropriate MAST model.

The RVS toolset is used to perform the WCET analysis. Apart from analysing the WCET, the RapiCover component of the toolset is also capable of measuring code coverage in a variety of levels up to and including MC/DC.

In order to analyse the WCET using RVS, an appropriate set of test benches has to be defined. These test benches could comprise the unit tests used for software validation and code coverage analysis or they could be developed ad-hoc, a solution that, in principle, might provide a less pessimistic measurement of the WCET.

MICOBS allows the integration of the data obtained from RVS together with the specification of the configuration parameters than were used for each component or service library, as well as the platform on which they were run.

This information is used by MICOBS to create an instance of a particular analysis-oriented model (AOM) instance that will be later used during the transformation that will produce the MAST model of the complete system.

In this final stage, MICOBS forces the definition of the vector of parameter values used to configure each element and the platform on which the system is to be deployed.

The benefits

Using this integration, the developers could rapidly analyze different design alternatives with different elements once they had worst-case execution time (WCET) data.

Next Steps

To learn how RVS can help reduce the cost and effort of software verification, see our product page.

To enquire about what Rapita can do for you, contact us.

Other case studies

Case study

Collins Aerospace: DO-178C code coverage analysis

Case study

Alenia Aermacchi (Leonardo) M-346

Case study

DO-178B Level A Embraer FCS

Case study

Cobham Aerospace Connectivity: RapiCover continues to deliver on the most challenging targets

  • Solutions
    • Rapita Verification Suite
    • RapiTest
    • RapiCover
    • RapiTime
    • RapiTask
    • MACH178
    • Verification and Validation Services
    • Qualification
    • Training
    • Integration
  • Latest

    • Latest menu

    • News
    • Blog
    • Events
    • Videos
  • Downloads

    • Downloads menu

    • Brochures
    • Webinars
    • White Papers
    • Case Studies
    • Product briefs
    • Technical notes
    • Software licensing
  • Company

    • Company menu

    • About Rapita
    • Careers
    • Customers
    • Distributors
    • Industries
    • Locations
    • Partners
    • Research projects
    • Contact
  • Discover
    • Multicore Timing Analysis
    • Embedded Software Testing Tools
    • Worst Case Execution Time
    • WCET Tools
    • Code coverage for Ada, C & C++
    • MC/DC Coverage
    • Verifying additional code for DO-178C
    • Timing analysis (WCET) & Code coverage for MATLAB® Simulink®
    • Data Coupling & Control Coupling
    • Aerospace Software Testing
    • Automotive Software Testing
    • Certifying eVTOL
    • DO-178C
    • AC 20-193 and AMC 20-193
    • ISO 26262
    • What is CAST-32A?

All materials © Rapita Systems Ltd. 2025 - All rights reserved | Privacy information | Trademark notice Subscribe to our newsletter