Keynote Speakers

Romain Bernard

MBSA in the Aeronautic Safety Standard ARP4761

Abstract: In the past decades, aircraft development process has progressively benefited from the various model-based techniques, applied from initial phases of design specification to compliance demonstration activities. In a domain where safety and regulatory constraints are major drivers, robustness and experience are key elements: introducing new techniques is a challenge. Introduction of Model-based Safety Assessment approach into an aerospace standard constitutes an important step in the recognition of model-based techniques. This keynote will present the genesis of MBSA activities within Dassault Aviation that motivated efforts to include this approach into the next update of the ARP 4761/ED-135. The potential MBSA application scope being particularly large, we will focus on the application considered in the frame of this aerospace standard, detail the current status of standardization activities and provide some perspectives for the future (application of the standard and the method in future aerospace projects).

Bio: Romain Bernard is working as a security engineer in the System Architecture Department of the System Engineering Division of Dassault Aviation. In the frame of a PhD thesis (Airbus/ONERA/LaBRI), he investigated the use of AltaRica-based MBSA techniques for multi-system purpose and the refinement of AltaRica language. He joined Dassault Aviation as multi-system safety engineer on civil aircraft development, contributed to the elaboration of a multi-system model failure propagation model and to the promotion of the MBSA through participation to EUROCAE WG63 in charge of ARP4761/ED135 update. His interests include model-based system engineering, multi-disciplinary connexions, safety/security assessment processes.

Keynote: Tuesday September 12

Link to slides

Marcel Verhoef
Marcel Verhoef

From Documents to Models: Towards Digital Continuity

: Model-based techniques are slowly gaining momentum in industrial practice. The potential benefits are apparent to the early adopters and on specific steps of the development life cycle this can now also be convincingly demonstrated. MBSE is here to stay, however, current standards (such as ECSS in case of the European Space sector) are predominantly based on a document based workflow supported by reviews based on human inspection. Introduction of MBSE into this context is not simply replacing documents by models (or generating documents from models for that matter). The real promise of MBSE lies in the consistent use throughout the life cycle, creating what we call "digital continuity" making explicit connections across each development phase, across engineering disciplines, and across the supply chain, from cradle to grave. In this talk, we investigate what challenges we are facing today to achieve that vision, and what this could mean in terms of new research challenges for academia. In this context, it is interesting to look at safety and dependability, as this cross cutting concern typically brings together all these aspects.

Bio: Marcel Verhoef is working as a software engineer in the Software Systems Division of the Directorate of Technology, Engineering and Quality of the European Space Agency. He is based at ESTEC, providing support to several several space missions currently under development and he manages several R&D activities on applied formal methods to support model-based design and analysis of space systems. His current research interests include software requirements, model-based systems and software engineering, execution architectures and dependability. He is co-convenor of a space industry working group to define a handbook for fault-detection, isolation and recovery for spacecraft. He is author of two textbooks on the practical application of formal techniques in industry and has written over 25 scientific papers.

Keynote: Wednesday September 13

Link to slides