© Copyright 2013 Rockwell Collins All rights reserved.
Company Official and Proprietary
Rockwell Collins and Formal Methods
September 20, 2013
© Copyright 2013 Rockwell CollinsAll rights reserved. Company Official and Proprietary 2
Insert pictures into these angled boxes. Height should be 3.44 inches.
Who we are:An innovator in the design, production and support of aerospace and defense solutions
• A global company operating from more than 60 locations in 27 countries• 20,000 employees with 4700 engineers• A balanced business across markets: Government 58%, Commercial 42%• $4.7 billion in sales (2012)
Our core competencies include . . .
Communication/Navigation Flight Control
Information Electronic Warfare Management
Simulation
Situational Awareness
Rockwell Collins demonstrates a commitment to innovation with 9 % of sales as IR&D investment: Double the industry average
© Copyright 2013 Rockwell CollinsAll rights reserved. Company Official and Proprietary 3
Aviation Electronics and Airborne / Mobile Communications Systems for Commercial and
Military Applications Worldwide
Rockwell Collins
© Copyright 2013 Rockwell CollinsAll rights reserved. Company Official and Proprietary 4
Advanced Technology Center
Charter: Identify, Develop and Mature Technologies that Provide Growth for Rockwell CollinsSupport Business Units in Evaluation of Advanced TechnologyPartner with Companies and Universities for Advanced Research
Key Technology Areas:Formal Methods
Networked Communication Systems
Radio and Optical Systems
Navigation and Control
Avionics & Cabin Systems
Information Assurance
Automated Analysis
Info & Computing Systems
Modeling and Simulation
© Copyright 2013 Rockwell CollinsAll rights reserved. Company Official and Proprietary 5
Trusted Systems
• 18 Research Engineers• Technical Expertise
– Cyber• Defense• Operations
– Information Assurance• Encryption• Data Separation• Data Security
– Formal Methods• Thoerem Proving• Model Checking• Symbolic Execution
PhD47%
MS35%
BS18%
Education
E312%
E447%
E524%
E618%
E Grade
© 2013 Rockwell Collins, All rights reserved. Slide 6
Today
Technology Progression in Avionics Technology
Pneumatic Electromechanical Analog Digital
Federated ElectronicsElectromechanical and Pneumatic
Instruments
Optical Networking
Technology
Networked Avionics
Avionics
1930-1960 2010+ 1970-2010
© 2013 Rockwell Collins, All rights reserved. Slide 7
Software Complexity Explosion!
Our customers have recognized this problem and are sounding the alarm!
Our customers have recognized this problem and are sounding the alarm!
© 2013 Rockwell Collins All rights reserved.
Rockwell Collins Proprietary Information
Utility of Formal Methods
• Ex post facto verification– Has been used to meet certification requirements
• Common Criteria EAL 6+– Finds subtle errors
• Early detection of errors– Allows errors to be addressed early in design process– Less rework -> lower costs
• Increase of automation– Push button implementation, testing, and verification– Remove humans from tedious, error prone activities
8
© 2013 Rockwell Collins All rights reserved.
Rockwell Collins Proprietary Information
AAMP5 MicrocodeVerification
(PVS)
1994 1996 1998 2000 2002 2004 20061992 2008 2010
AAMP-FVMicrocodeVerification
(PVS)
AAMP5Partitioning
(PVS)
JEM JavaμProc(PVS)
FGS ModeConfusion
Study(PVS)
FCP 2002Microcode
(ACL2)AAMP7
SeparationKernel(ACL2)
FGS ModeConfusion
PVS)FGS Safety
Analysis(RSML-e, NuSMV) ADGS 2100
(Simulink,NuSMV)
NASA Aviation Safety
AFRL
GreenhillsIntegrity
RTOS(ACL2)
Mixed Crit. Architectures
vFaat(ACL2,PVS)
NSA
SHADE(ACL2)
Turnstile(SPARK)
GuardolApp
(ACL2, Prover)
2012
AF Crypto Mod
Crypto Control(Prover)
DataFlow Logic(ACL2)
Cyber Seedling(ACL2) DARPA
META(AADL)
AVM(AADL)
FM Application(Kind)
Guardol(ACL2,Prover)
CerTA FCS(NuSMV, Prover)
System Arch Tools
(AADL)
© 2013 Rockwell Collins All rights reserved.
Rockwell Collins Proprietary Information
FY 13 Formal Methods Projects
Customer Program(complete)
DARPA C2M2L (FY13)
DARPA HACMS (FY17)
DARPA Rapid (FY16)
NASA AFCS (FY16)
AFRL SwPI (FY15)
NASA FCSR (FY13)
AFRL CertaAMOR (ongoing)
CPSD PikeWerks (FY13)
SPAWAR DornerWorks (FY14)
Internal Auto Test (FY13)
NSA Guardol (FY14)
10
Compositional reasoning
Data flow analysis
DO-178C formal methods guidebook
example
Requirements modeling and analysis
Software cost reduction
Robust firewall / guard
© 2013 Rockwell Collins All rights reserved.
Rockwell Collins Proprietary Information
Potential Formal Methods Application Areas
• Cyber– Vulnerability analysis– Cyber resilient design– Demonstrate salient properties of
cyber payloads
• Unmanned Systems– Design, V&V of
adaptive/autonomous behavior
• Rapid Capability Deployment– Insertion of new
technology/capability into fielded high assurance systems
11
© 2013 Rockwell Collins All rights reserved.
Rockwell Collins Proprietary Information
Contact Information
• Corporate Web Site– www.rockwellcollins.com– www.rockwellcollins.com/Careers.aspx
• Formal Specification and Analysis Job Posting– https://rockwellcollins.taleo.net/careersection/jobdetail.ftl?job=577014
• Ray Richards– [email protected]– 319 295 6709
12