Software development and verification has become increasingly important for all aerospace systems. The number of software lines of code in aerospace systems continues to increase. Military aircraft systems manufacturers face a particular challenge for software development and verification of safety-critical systems. Because military aircraft systems integrators often rely on suppliers familiar with the civil market, the infrastructure and familiarity with RTCA DO-178C "Software Considerations in Airborne Systems and Equipment Certification" is often leveraged as part of supplier contracts. However, DO-178C is not identical with military software verification practices such methods prescribed in United States Department of Defense Handbook MIL-HDBK-516C "Airworthiness Certification Criteria", United States Department of Defense Standard Practice MIL-STD-882E "System Safety", and other military guidance. Further complicating the landscape is that military aircraft have the requirement to fly in civil airspace, and therefore their communication, navigation, and surveillance equipment standards must map to DO-178C for compatibility with civil requirements. This paper discusses the similarities and differences between the various approaches to software development, integrity, and verification between military and civil aircraft, provides options for harmonization of the various approaches, and discusses future challenges and opportunities related to software verification in military aircraft systems.
展开▼