Project: High Integrity Model Compiler
Within the recent years, model-based development (MBD) has emerged as one of the major innovation vectors in the development of software-intensive systems. The core idea of MBD is to formalize a given knowledge in a high-abstraction model and use this representation to perform verification and automatically derive an implementation in the form of source code. The translation process from high-level models to source code is particularly critical as it must ensure all properties already verified on the model still hold on the generated source code. In the case of safety-critical systems, the safe deployment of a model-based development process and the use of automatically generated code thus require the availability of appropriate qualification material for the code generation toolset. Qualification material is a set of artifacts (requirements, verification reports and development plans), which provides evidence that an appropriate industrial development process has been put in place. Up to now, no such material is commercially available for some of the modelling languages mostly used in the aerospace and automotive doCOs: Simulink and Stateflow._x000D__x000D_The Hi-MoCo project intends to answer to a concrete and compelling industrial need by productizing:_x000D__x000D_* An open and flexible code generation framework to automate the generation of source code from languages for modelling functional behavior like Simulink, Stateflow and Scicos. _x000D_* A portion of DO-178C qualification material (DO-178C is the new revision of the international standard for avionic software certification). _x000D__x000D_The industrial appeal of such products is confirmed by the evidence provided by Airbus France which demonstrates that a code generator coupled with qualification material ensures:_x000D__x000D_* A decrease of development costs by a factor of 3 for a process involving auto-coding for the 75% of the application volume;_x000D_* An increase of quality by eliminating errors introduced in the coding phase._x000D_* A significant decrease of unit testing (the verification activities performed on the model do not need to be repeated on the generated code)._x000D__x000D_In addition, within Hi-MoCo we also plan to investigate on the development of an alternative customized graphical user interface for modelling functional behavior, possibly as an extensions of existing open modelling tools like TOPCASED or Papyrus. This technology will finally provide effective UML-based functional graphical modeling._x000D__x000D_The Hi-MoCo project fits within a consistant strategy which connects several R&D projects all constructively collaborating to provide an open development platform for the model-based development of high-integrity systems. The Hi-MoCo core technology will be based on the technical results achieved within the Gene-Auto project (ITEA 05018, 2006-2008). The first input for Hi-MoCo is thus the industrial feedback provided for Gene-Auto by major European primes in the avionics, automotive and space industry. Hi-MoCo will also collaborate with Project P, currently submitted to the French System@tic and Aerospace Valley clusters. While Hi-MoCo focuses on productizing the technology for code generation from functional behavior modelling languages developed within Gene-Auto, Project P target system-wide code generation and formal verification of software architectures designed using a heterogeneous set of modelling languages (including SysML, MARTE, UML, AADL, ...). From this perspective, Project P could rely on Hi-MoCo for the code generation from some functional behavior modelling languages, extending its capabilities to support additional source or target languages and including optimizations for specific architectures (for example, multi-cores). The collaboration with Project P is assured by the fact that AdaCore and INPT/IRIT are both major actors in Project P._x000D_ _x000D_Following the path traced by TOPCASED and OPEES, the Hi-MoCo technology will be marketed as commercial open-source software, meaning that recipients of the Hi-MoCo technology will have access to its source and binary code under licensing terms that allow running the software, studying it, modifying it and redistributing it to third parties in original or modified form freely._x000D__x000D_The project consortium will be composed by AdaCore, INPT/IRIT and Krates. Both INPT/IRIT and Krates were core Ps of the ITEA Gene-Auto project. AdaCore has been in contact with the Gene-Auto consortium since 2008 to evaluate the development of an Ada back-end for Gene-Auto and, with IRIT, is a leading P of Project P. All Hi-MoCo Ps are also participating to the OPEES project. _x000D__x000D_
| Acronym | Hi-MoCo (Reference Number: 6037) |
| Duration | 01/04/2011 - 31/03/2014 |
| Project Topic | The Hi-MoCo project aims to develop and productise an open and qualifiable model-based code generation tool-chain for the development of high-integrity, real-time, embedded systems. The code generator is intended to be usable both from existing and new modelling environments. |
|
Project Results (after finalisation) |
1. Development of sofware code generator for Simulink and its integration with static analysis tools_x000D_2. Significant part of qualification materials for DO-178 for this tool_x000D_3. Validation of the toolset on industrial case studies; new contacts with the industrial users_x000D_4. A follow-up projet has been started with European Space Agency to integrate the toolchain in the recommended forflow for space primes |
| Network | Eurostars |
| Call | Eurostars Cut-Off 5 |
Project partner
| Number | Name | Role | Country |
|---|---|---|---|
| 3 | AdaCore SAS | Coordinator | France |
| 3 | IB Krates OÜ | Partner | Estonia |
| 3 | Institut National Polytechnique de Toulouse/Institut de Recherche en Informatique de Toulouse | Partner | France |