Your browser does not support JavaScript! Skip to main content
Free 30-day trial DO-178C Handbook RapiCoupling Preview DO-178C Multicore Training Multicore Resources
Rapita Systems
 

Industry leading verification tools

Rapita Verification Suite (RVS)

RapiTest - Functional testing for critical software RapiCover - Low-overhead coverage analysis for critical software RapiTime - In-depth execution time analysis for critical software RapiTask - RTOS scheduling visualization RapiCoverZero - Zero-footprint coverage analysis RapitimeZero - Zero-footprint timing analysis RapiTaskZero - Zero-footprint event-level scheduling analysis RVS Qualification Kits - Tool qualification for DO-178 B/C and ISO 26262 projects RapiCoupling - DCCC analysis

Multicore Verification

MACH178 - Multicore Avionics Certification for High-integrity DO-178C projects MACH178 Foundations - Lay the groundwork for A(M)C 20-193 compliance Multicore Timing Solution - Solving the challenges of multicore timing analysis RapiDaemon - Analyze interference in multicore systems

Other

RTBx - The ultimate data logging solution Sim68020 - Simulation for the Motorola 68020 microprocessor

RVS Software Policy

Software licensing Product life cycle policy RVS Assurance issue policy RVS development roadmap

Industry leading verification services

Engineering Services

V&V Services Data Coupling & Control Coupling Object code verification Qualification Training Consultancy Tool Integration Support

Latest from Rapita HQ

Latest news

Rapita partners with Asterios Technologies to deliver solutions in multicore certification
SAIF Autonomy to use RVS to verify their groundbreaking AI platform
RVS 3.22 Launched
Hybrid electric pioneers, Ascendance, join Rapita Systems Trailblazer Partnership Program
View News

Latest from the Rapita blog

How emulation can reduce avionics verification costs: Sim68020
Multicore timing analysis: to instrument or not to instrument
How to certify multicore processors - what is everyone asking?
Data Coupling Basics in DO-178C
View Blog

Latest discovery pages

Military Drone Certifying Unmanned Aircraft Systems
control_tower DO-278A Guidance: Introduction to RTCA DO-278 approval
Picture of a car ISO 26262
DCCC Image Data Coupling & Control Coupling
View Discovery pages

Upcoming events

DASC 2025
2025-09-14
DO-178C Multicore In-person Training (Fort Worth, TX)
2025-10-01
DO-178C Multicore In-person Training (Toulouse)
2025-11-04
HISC 2025
2025-11-13
View Events

Technical resources for industry professionals

Latest White papers

Mitigation of interference in multicore processors for A(M)C 20-193
Sysgo WP
Developing DO-178C and ED-12C-certifiable multicore software
DO178C Handbook
Efficient Verification Through the DO-178C Life Cycle
View White papers

Latest Videos

How to make AI safe in autonomous systems with SAIF
Rapita Systems - Safety Through Quality
Simulation for the Motorola 68020 microprocessor with Sim68020
AI-driven Requirements Traceability for Faster Testing and Certification
View Videos

Latest Case studies

GMV case study front cover
GMV verify ISO26262 automotive software with RVS
Kappa: Verifying Airborne Video Systems for Air-to-Air Refueling using RVS
Supporting DanLaw with unit testing and code coverage analysis for automotive software
View Case studies

Other Resources

 Webinars

 Brochures

 Product briefs

 Technical notes

 Research projects

 Multicore resources

Discover Rapita

Who we are

The company menu

  • About us
  • Customers
  • Distributors
  • Locations
  • Partners
  • Research projects
  • Contact us
  • Careers
  • Working at Rapita

Industries

  Civil Aviation (DO-178C)   Automotive (ISO 26262)   Military & Defense   Space

US office

+1 248-957-9801
info@rapitasystems.com Rapita Systems, Inc., 41131 Vincenti Ct., Novi, MI 48375, USA

UK office

+44 (0)1904 413945
info@rapitasystems.com Rapita Systems Ltd., Atlas House, Osbaldwick Link Road, York, YO10 3JB, UK

Spain office

+34 93 351 02 05
info@rapitasystems.com Rapita Systems S.L., Parc UPC, Edificio K2M, c/ Jordi Girona, 1-3, Barcelona 08034, Spain
Back to Top Contact Us

Automating schedulability analysis of on-board software on the Solar Orbiter

Automating schedulability analysis of on-board software on the Solar Orbiter

  Download
.

The Solar Orbiter is a joint project by the European Space Agency® (ESA) and the National Aeronautics and Space Administration® (NASA) to study the behaviour of the Sun. Due to be launched in 2017, the Solar Orbiter’s payload of telemetry equipment includes the Energetic Particle Detector (EPD) suite of five telescopes, designed to measure the energy created by solar particles.

The University of Alcala, the developers of the onboard software for the Instrument Control Unit (ICU) of the EPD, selected Rapita Verification Suite (RVS) to support schedulability analysis for the ICU software.

Summary

The challenge

  • To create a measurement-based analysis of Solar Orbiter on-board software for schedulability.

The solution

  • To collect worst-case execution time data for individual tasks using RVS integrated with other tools.

The benefits

  • Developers were able to analyze different design alternatives with different elements with worst-case execution time (WCET) data.
  • The effectiveness of the test suites were improved by measuring code coverage at the same time.

The challenge

Schedulability analysis aims to provide guarantees of deadline satisfaction. To automate the schedulability analysis of the on-board software, the project required an integration between RVS and the MAST (Modeling and Analysis Suite for real Time applications) analysis tool.

The University of Alcala’s integration was based on a new framework (MICOBS) for developing modeldriven component-based embedded software systems under a multi-platform approach and integrating different development and analysis technologies.

The project chose RVS to perform the on-target worst-case execution analysis. Apart from analysing the worst-case execution time (WCET), RVS could also measure code coverage in compliance with ESA’s ECSS-E-40C standard, in addition to ISO 26262 and DO-178B guidelines.

The solution

The preferred solution was to carry out tests of each of the components and service libraries that are part of the system using RVS. This means that schedulability analysis could be performed without the need to take timing measures on the complete system.

The overall schedulability analysis solution is based on the execution time measurements of:

  • The component reactions to the reception of a message or the notification of an event
  • The code of the service libraries

The WCET measurements are obtained by analysing each component and service library separately, using on-target measurement and subsequent WCET analysis based on the measurements. In order to perform the final system-level schedulability analysis, a transformation has to be used to obtain, from the MICOBS models, the appropriate MAST model.

The RVS toolset is used to perform the WCET analysis. Apart from analysing the WCET, the RapiCover component of the toolset is also capable of measuring code coverage in a variety of levels up to and including MC/DC.

In order to analyse the WCET using RVS, an appropriate set of test benches has to be defined. These test benches could comprise the unit tests used for software validation and code coverage analysis or they could be developed ad-hoc, a solution that, in principle, might provide a less pessimistic measurement of the WCET.

MICOBS allows the integration of the data obtained from RVS together with the specification of the configuration parameters than were used for each component or service library, as well as the platform on which they were run.

This information is used by MICOBS to create an instance of a particular analysis-oriented model (AOM) instance that will be later used during the transformation that will produce the MAST model of the complete system.

In this final stage, MICOBS forces the definition of the vector of parameter values used to configure each element and the platform on which the system is to be deployed.

The benefits

Using this integration, the developers could rapidly analyze different design alternatives with different elements once they had worst-case execution time (WCET) data.

Next Steps

To learn how RVS can help reduce the cost and effort of software verification, see our product page.

To enquire about what Rapita can do for you, contact us.

Other case studies

Case study

Collins Aerospace: DO-178C code coverage analysis

Case study

Alenia Aermacchi (Leonardo) M-346

Case study

DO-178B Level A Embraer FCS

Case study

Cobham Aerospace Connectivity: RapiCover continues to deliver on the most challenging targets

  • Solutions
    • Rapita Verification Suite
    • RapiTest
    • RapiCover
    • RapiTime
    • RapiTask
    • MACH178
    • Verification and Validation Services
    • Qualification
    • Training
    • Integration
  • Latest

    • Latest menu

    • News
    • Blog
    • Events
    • Videos
  • Downloads

    • Downloads menu

    • Brochures
    • Webinars
    • White Papers
    • Case Studies
    • Product briefs
    • Technical notes
    • Software licensing
  • Company

    • Company menu

    • About Rapita
    • Careers
    • Customers
    • Distributors
    • Industries
    • Locations
    • Partners
    • Research projects
    • Contact
  • Discover
    • Multicore Timing Analysis
    • Embedded Software Testing Tools
    • Worst Case Execution Time
    • WCET Tools
    • Code coverage for Ada, C & C++
    • MC/DC Coverage
    • Verifying additional code for DO-178C
    • Timing analysis (WCET) & Code coverage for MATLAB® Simulink®
    • Data Coupling & Control Coupling
    • Aerospace Software Testing
    • DO-178C
    • Meeting DO-178C Objectives
    • AC 20-193 and AMC 20-193
    • Meeting A(M)C 20-193 Objectives
    • Certifying eVTOL
    • Cerifying UAS

All materials © Rapita Systems Ltd. 2025 - All rights reserved | Privacy information | Trademark notice Subscribe to our newsletter