SlideShare a Scribd company logo

Introducing the HICLASS Research Programme - Enabling Development of Complex and Secure Aerospace Systems

AdaCore
AdaCore

Mike Bennett Software Technology Specialist, Control Systems, Rolls-Royce

Technology
1 of 16
Download to read offline
© 2019 Rolls-Royce and Other HICLASS Partners. © 2019 Rolls-Royce and HICLASS Partners The information in this document is the property of Rolls-Royce and other HICLASS partners. This information is given in good faith based upon the latest information available to the HICLASS partners, no warranty or representation is given concerning such information, which must not be taken as establishing any contractual or other commitment binding upon the HICLASS partners. The information contained in this document is submitted in confidence and is of the kind contemplated by Section[s] [41 and 43] of the Freedom of Information Act 2000. No UK security classification is applicable to this document. The information contained in this document is not controlled and no export license is required. 1 The HICLASS Research Programme Enabling Development of Complex and Secure Aerospace Systems Mike Bennett, Rolls-Royce Control Systems on behalf of the HICLASS consortium This work was supported by the HICLASS project, funded by the Aerospace Technology Institute and Innovate UK, as project number 113213.
© 2019 Rolls-Royce and Other HICLASS Partners. 2 HICLASS will enable UK industry to build and support the most complex, connected, cyber-secure avionic systems in the world • £32M project over 4 years • Started July 2019 • Led by Rolls-Royce • 16 funded partners • 2 unfunded partners • Engagement with DSTL Project Overview Systems developers, tool suppliers and academics working together to develop integrated solutions
© 2019 Rolls-Royce and Other HICLASS Partners. Opportunity 3. Position for New Markets 4. Ongoing Cost Avoidance 1. Exploit Existing Markets Lower-cost assured software and electronics are key enablers Aerospace High-Integrity Tools and Services 2. Secure Existing Markets Adjacent Markets
© 2019 Rolls-Royce and Other HICLASS Partners. 0 1 2 3 4 5 6 7 8 9 Integrity Complexity Digital Dependence Connectivity Security Safety 4 Increasing Scale and Complexity The systems we can practically build today The systems we’d like to be able to build
© 2019 Rolls-Royce and Other HICLASS Partners. 5 Continuing the journey…. • Model-Based Development • Open Toolchains • Improved Architectures • Improved / Automated / Formal Verification • Pooling niche skills and build community • Enhance understanding of shared problems • Multi-core • Security • Electronic platform technologies Technologies Matured and Expanded ASSET
© 2019 Rolls-Royce and Other HICLASS Partners. 6 Work Package Overview WP4 Integration & Embedding Integrated product demonstrators WP3 Advanced Verification Timing Analysis for complex systems eg. multi-core and distributed Automated, scalable and model- based Early and virtual integration WP2 Future Platforms and Development Integrated Model- Based Engineering Reusable Components and Product Lines Cyber-secure architectures and mechanisms High-Integrity connectivity, networks and data distribution WP1 Domain Exploitation for HICLASS Systems Product opportunities and exploitation for HICLASS systems Develop a cross- industry cyber- security approach for avionics and drive regulation Themes Scope requirements, refine exploitation opportunities and develop cross-industry security approach Develop 34 advanced technologies in 14 complementary work packages Systems developers integrate technologies Advanced hardware platforms and smart sensors Security Verification Technologies
© 2019 Rolls-Royce and Other HICLASS Partners. 7 Technologies Model Based System Engineering Model-Based Software Development Automated Verification for Certification Secure Formal Code Executable Models Rapid Integration of Complex Systems Next Generation Platform 9 electronic and software platform technologies 11 Security Technologies 4 specification and modelling technologies 7 verification and test technologies Multi-Core Processing 3 Multi-Core Technologies Agile Find and Fix
© 2019 Rolls-Royce and Other HICLASS Partners. 8 New Areas - Multi-Core Timing Verification • Online monitoring limits contention and interference within predetermined bounds • Robust allocation & scheduling restricts contention for shared resources and supports graceful degradation • Processor & resource demands obtained via measurement-based analysis • Micro-benchmarks quantify sensitivity to different levels of interference • Multi-cores contain HW resources that are shared between cores causing timing unpredictability • Regulator provides objectives that must be met for certification • How to meet those objectives? 1. Mechanisms 2. Testing and Analysis 3. Building Argument 4. Improving Regulation • FAA/EASA Feedback
© 2019 Rolls-Royce and Other HICLASS Partners. • Current Status: - Safety: many years industry experience. - Security • Many security process standards. • Aerospace security standards (ED-202A/DO-326A) only recently published about to be adopted as Acceptable Means of Compliance - Lack of expertise in certification • Now expressed as customer requirements - Key Issues: • Expertise is theoretical rather practical • Integration of security and safety • Cost effectiveness 9 New Areas – Security (1/2) Security Risk Assessment related activities Airworthiness acceptability matrix 3 – Security Risk Assessment (3.2) 2 - Security Scope Definition (3.1) Certification related activities 1 - Plan for Security Aspects of Certification (PSecAC) 7 - Communication of evidences (PSecAC Summary) Not Acceptable Security Risk 4 - Are security risks acceptable ? Security Development related activities 5 - Security Development (3.4)6 - Security Effectiveness Assurance (3.3) Architecture Modifications Architecture under consideration
© 2019 Rolls-Royce and Other HICLASS Partners. - Share and Develop Best Practice • Create some common elements e.g. Threat Model • Stopping criteria • Advice covering the interaction of security measures with safety, - e.g. safety impact of security measure failure modes - Develop Security Technologies • Binary vulnerability analysis • Cyber-hardening (eg. compiler) • Fuzz testing • On-board Security Information and Event Management (SIEM) • Secure Data Communications, Loading and Update - Engagement with industry working groups 10 New Areas – Security (2/2) One example of some of the technology interactions
© 2019 Rolls-Royce and Other HICLASS Partners. • Dissemination events • Aerospace Software Systems Engineering & Technology (ASSET) partnership - Identification of Gaps! • Work with specific partners on particular topics - Case studies - Supply of tools 11 Engaging with HICLASS
© 2019 Rolls-Royce and Other HICLASS Partners. • The Aerospace Software Systems Engineering & Technology (ASSET) partnership. • ‘Club’ open to all organisations undertaking technical work in aerospace software and systems engineering in the UK - Inc. system suppliers, software houses, tool suppliers, government agencies, academic research organisations) - No NDA / Collaboration Agreement - Publication under Creative Commons Licence • Constitution developed during the SECT-AIR project • Starting small - currently run on a volunteer basis as a pilot with a proposed small subscription fee from 2020 managed through University of York • Sharing best practice in industry-led working groups (eg. Agile and CPD) 12 Offer different perspectives ASSET
© 2019 Rolls-Royce and Other HICLASS Partners. • Rolls Royce in on a software transformation journey • More products, projects and software • Current approach is difficult to sustain 13 Rolls-Royce Exploitation
© 2019 Rolls-Royce and Other HICLASS Partners. • HICLASS is key enabler to the UK to build cyber-secure systems of the future • Important part of enhancing the UK capability in high-integrity systems and software engineering • Highly collaborative with an array of technologies being developed • Main focus in civil aerospace but cross-sector exploitation is expected • Come and talk to us to find out more! 14 Summary and Conclusions
© 2019 Rolls-Royce and Other HICLASS Partners. 15 Partner leads Organisation Lead Contact Rolls-Royce Mike Bennett Adacore Paul Butcher Altran Katie Smith BAE Systems Malcolm Earl Callen-Lenz Martin Ward Cobham Paul Moses Cocotec Philippa Hopcroft D-RisQ Nick Tudor GDUK Matt Saint-Gregory GE Aviation Kevin Grover Leonardo Donald Taylor MBDA Lee Jacques Oxford Daniel Kroening Rapita Systems Adam Barker Southampton Colin Snook Thales Peter Bland Ultra Aleem Saleh York Iain Bate
© 2019 Rolls-Royce and Other HICLASS Partners. 16 WP Breakdown WP1 WP1.1 Future Products and Impact (Rolls-Royce) WP 1.2 Embedded Cyber-Security Standards, Approach and Process (Thales) WP2 WP2.1 Ensuring Data Communication Integrity (Thales) WP2.2 Technologies for Cyber Hardening (GDUK) WP2.3 Full-lifecycle Model-Based Development Environment (Altran) WP2.4 Specification Environment for Complex Systems (Altran) WP2.5 Flexible, Secure and Segregated Software Architecture Frameworks (Rolls-Royce) WP2.6 Enhanced Software Update and Maintenance Capability (Rolls-Royce) WP2.7 Future complex, safety-critical and modular hardware platform (Rolls-Royce) WP3 WP3.1 Automatic formal verification (D-RisQ) WP3.2 Semi-automatic formal verification (DRisQ) WP3.3 Automated Low Level Verification (Rapita) WP3.4 Automated verification tools for event-driven software (Cocotec) WP3.5 SPARK for HICLASS (Adacore) WP3.6 Integrated Framework for Managing the Timing of New Complex Architectures (York) WP3.7 Automated System-Level Testing (Altran) WP4 WP4.1 Future Engine Controls and Monitoring Computing Platform (Rolls- Royce) WP4.2 Innovative Flight Control System (Callen-Lenz) WP4.3 Next Generation Control System (Rapita) WP4.4 Safe & Secure Processing Reference Design (GDUK) WP4.5 Future Power Systems (GE)

Recommended

The Future of Aerospace – More Software Please!
The Future of Aerospace – More Software Please!The Future of Aerospace – More Software Please!
The Future of Aerospace – More Software Please!
AdaCore
 
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
AdaCore
 
Securing the Future of Safety and Security of Embedded Software
Securing the Future of Safety and Security of Embedded SoftwareSecuring the Future of Safety and Security of Embedded Software
Securing the Future of Safety and Security of Embedded Software
AdaCore
 
Spark / Ada for Safe and Secure Firmware Development
Spark / Ada for Safe and Secure Firmware DevelopmentSpark / Ada for Safe and Secure Firmware Development
Spark / Ada for Safe and Secure Firmware Development
AdaCore
 
Approaches to Cyber Resilience and Supply Chain Assurance
Approaches to Cyber Resilience and Supply Chain AssuranceApproaches to Cyber Resilience and Supply Chain Assurance
Approaches to Cyber Resilience and Supply Chain Assurance
Leonardo
 
PM Briefing: Autonomy and big data for defence
PM Briefing: Autonomy and big data for defencePM Briefing: Autonomy and big data for defence
PM Briefing: Autonomy and big data for defence
Defence and Security Accelerator
 
27 July 2017 Innovation nework event: how to create a great proposal
27 July 2017 Innovation nework event: how to create a great proposal27 July 2017 Innovation nework event: how to create a great proposal
27 July 2017 Innovation nework event: how to create a great proposal
Defence and Security Accelerator
 
D pduapi user-manual
D pduapi user-manualD pduapi user-manual
D pduapi user-manual
linhdoanbro
 

Recommended

The Future of Aerospace – More Software Please!
The Future of Aerospace – More Software Please!The Future of Aerospace – More Software Please!
The Future of Aerospace – More Software Please!
AdaCore
 
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
AdaCore
 
Securing the Future of Safety and Security of Embedded Software
Securing the Future of Safety and Security of Embedded SoftwareSecuring the Future of Safety and Security of Embedded Software
Securing the Future of Safety and Security of Embedded Software
AdaCore
 
Spark / Ada for Safe and Secure Firmware Development
Spark / Ada for Safe and Secure Firmware DevelopmentSpark / Ada for Safe and Secure Firmware Development
Spark / Ada for Safe and Secure Firmware Development
AdaCore
 
Approaches to Cyber Resilience and Supply Chain Assurance
Approaches to Cyber Resilience and Supply Chain AssuranceApproaches to Cyber Resilience and Supply Chain Assurance
Approaches to Cyber Resilience and Supply Chain Assurance
Leonardo
 
PM Briefing: Autonomy and big data for defence
PM Briefing: Autonomy and big data for defencePM Briefing: Autonomy and big data for defence
PM Briefing: Autonomy and big data for defence
Defence and Security Accelerator
 
27 July 2017 Innovation nework event: how to create a great proposal
27 July 2017 Innovation nework event: how to create a great proposal27 July 2017 Innovation nework event: how to create a great proposal
27 July 2017 Innovation nework event: how to create a great proposal
Defence and Security Accelerator
 
D pduapi user-manual
D pduapi user-manualD pduapi user-manual
D pduapi user-manual
linhdoanbro
 
8 July 2015: Agile, immersive mission training themed competition
8 July 2015: Agile, immersive mission training themed competition8 July 2015: Agile, immersive mission training themed competition
8 July 2015: Agile, immersive mission training themed competition
Defence and Security Accelerator
 
2017-05-10 Gate4SPICE: "Legacy Software"
2017-05-10 Gate4SPICE: "Legacy Software"2017-05-10 Gate4SPICE: "Legacy Software"
2017-05-10 Gate4SPICE: "Legacy Software"
Alexander Much
 
Accelerator Enduring Challenge Competition Launch Opening Session
Accelerator Enduring Challenge Competition Launch Opening SessionAccelerator Enduring Challenge Competition Launch Opening Session
Accelerator Enduring Challenge Competition Launch Opening Session
Heather-Fiona Egan
 
Is Linux ready for safety related applications?
Is Linux ready for safety related applications?Is Linux ready for safety related applications?
Is Linux ready for safety related applications?
Alexander Much
 
Webinar–2019 Open Source Risk Analysis Report
Webinar–2019 Open Source Risk Analysis ReportWebinar–2019 Open Source Risk Analysis Report
Webinar–2019 Open Source Risk Analysis Report
Synopsys Software Integrity Group
 
Core analysis:State of SDN-NFV in wireless networks 2014
Core analysis:State of SDN-NFV in wireless networks 2014Core analysis:State of SDN-NFV in wireless networks 2014
Core analysis:State of SDN-NFV in wireless networks 2014
Patrick Lopez
 
EB corbos and the L4Re microhypervisor: Open-source automotive safety
EB corbos and the L4Re microhypervisor: Open-source automotive safetyEB corbos and the L4Re microhypervisor: Open-source automotive safety
EB corbos and the L4Re microhypervisor: Open-source automotive safety
Alexander Much
 
Rotary Wing Platforms: Delivering Information Advantage to the Joint Force
Rotary Wing Platforms: Delivering Information Advantage to the Joint ForceRotary Wing Platforms: Delivering Information Advantage to the Joint Force
Rotary Wing Platforms: Delivering Information Advantage to the Joint Force
Leonardo
 
Testing ADAS & Self Driving Cars
Testing ADAS & Self Driving CarsTesting ADAS & Self Driving Cars
Testing ADAS & Self Driving Cars
Automotive IQ
 
TWISummit 2019 - Embracing a Service Mesh
TWISummit 2019 - Embracing a Service MeshTWISummit 2019 - Embracing a Service Mesh
TWISummit 2019 - Embracing a Service Mesh
Thoughtworks
 
MISRA C Chairman - Device Developer Conference 2016
MISRA C Chairman - Device Developer Conference 2016MISRA C Chairman - Device Developer Conference 2016
MISRA C Chairman - Device Developer Conference 2016
Andrew Banks
 
Misra c-2004
Misra c-2004Misra c-2004
Misra c-2004
sand390
 
Webinar Presentation: "Diagnostic Flash Application with OTX"
Webinar Presentation: "Diagnostic Flash Application with OTX"Webinar Presentation: "Diagnostic Flash Application with OTX"
Webinar Presentation: "Diagnostic Flash Application with OTX"
KPIT
 
20140121 cisec-safety criticalsoftwaredevelopment
20140121 cisec-safety criticalsoftwaredevelopment20140121 cisec-safety criticalsoftwaredevelopment
20140121 cisec-safety criticalsoftwaredevelopment
CISEC
 
EENA 2018 - Drones and Public Safety
EENA 2018 - Drones and Public SafetyEENA 2018 - Drones and Public Safety
EENA 2018 - Drones and Public Safety
EENA (European Emergency Number Association)
 
Software Sustainability: preserving the future of research software
Software Sustainability: preserving the future of research softwareSoftware Sustainability: preserving the future of research software
Software Sustainability: preserving the future of research software
Neil Chue Hong
 
Itmgen 4317 security
Itmgen 4317 securityItmgen 4317 security
Itmgen 4317 security
Cisco
 
Migrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
Migrating Critical Applications To The Cloud - ISACA Seattle - SanitizedMigrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
Migrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
Norm Barber
 
Migrating Critical Applications to the Cloud - isaca seattle - sanitized
Migrating Critical Applications to the Cloud - isaca seattle - sanitizedMigrating Critical Applications to the Cloud - isaca seattle - sanitized
Migrating Critical Applications to the Cloud - isaca seattle - sanitized
UnifyCloud
 
Intercloud_Fabric
Intercloud_FabricIntercloud_Fabric
Intercloud_Fabric
Paulo Renato
 
Cisco & red hat open stack solutions
Cisco & red hat open stack solutionsCisco & red hat open stack solutions
Cisco & red hat open stack solutions
Lora O'Haver
 
Losing Control to the Cloud
Losing Control to the CloudLosing Control to the Cloud
Losing Control to the Cloud
Rochester Security Summit
 

More Related Content

What's hot

MISRA C Chairman - Device Developer Conference 2016
MISRA C Chairman - Device Developer Conference 2016MISRA C Chairman - Device Developer Conference 2016
MISRA C Chairman - Device Developer Conference 2016
Andrew Banks
 
Misra c-2004
Misra c-2004Misra c-2004
Misra c-2004
sand390
 
20140121 cisec-safety criticalsoftwaredevelopment
20140121 cisec-safety criticalsoftwaredevelopment20140121 cisec-safety criticalsoftwaredevelopment
20140121 cisec-safety criticalsoftwaredevelopment
CISEC
 

What's hot (16)

8 July 2015: Agile, immersive mission training themed competition
8 July 2015: Agile, immersive mission training themed competition8 July 2015: Agile, immersive mission training themed competition
8 July 2015: Agile, immersive mission training themed competition
 
2017-05-10 Gate4SPICE: "Legacy Software"
2017-05-10 Gate4SPICE: "Legacy Software"2017-05-10 Gate4SPICE: "Legacy Software"
2017-05-10 Gate4SPICE: "Legacy Software"
 
Accelerator Enduring Challenge Competition Launch Opening Session
Accelerator Enduring Challenge Competition Launch Opening SessionAccelerator Enduring Challenge Competition Launch Opening Session
Accelerator Enduring Challenge Competition Launch Opening Session
 
Is Linux ready for safety related applications?
Is Linux ready for safety related applications?Is Linux ready for safety related applications?
Is Linux ready for safety related applications?
 
Webinar–2019 Open Source Risk Analysis Report
Webinar–2019 Open Source Risk Analysis ReportWebinar–2019 Open Source Risk Analysis Report
Webinar–2019 Open Source Risk Analysis Report
 
Core analysis:State of SDN-NFV in wireless networks 2014
Core analysis:State of SDN-NFV in wireless networks 2014Core analysis:State of SDN-NFV in wireless networks 2014
Core analysis:State of SDN-NFV in wireless networks 2014
 
EB corbos and the L4Re microhypervisor: Open-source automotive safety
EB corbos and the L4Re microhypervisor: Open-source automotive safetyEB corbos and the L4Re microhypervisor: Open-source automotive safety
EB corbos and the L4Re microhypervisor: Open-source automotive safety
 
Rotary Wing Platforms: Delivering Information Advantage to the Joint Force
Rotary Wing Platforms: Delivering Information Advantage to the Joint ForceRotary Wing Platforms: Delivering Information Advantage to the Joint Force
Rotary Wing Platforms: Delivering Information Advantage to the Joint Force
 
Testing ADAS & Self Driving Cars
Testing ADAS & Self Driving CarsTesting ADAS & Self Driving Cars
Testing ADAS & Self Driving Cars
 
TWISummit 2019 - Embracing a Service Mesh
TWISummit 2019 - Embracing a Service MeshTWISummit 2019 - Embracing a Service Mesh
TWISummit 2019 - Embracing a Service Mesh
 
MISRA C Chairman - Device Developer Conference 2016
MISRA C Chairman - Device Developer Conference 2016MISRA C Chairman - Device Developer Conference 2016
MISRA C Chairman - Device Developer Conference 2016
 
Misra c-2004
Misra c-2004Misra c-2004
Misra c-2004
 
Webinar Presentation: "Diagnostic Flash Application with OTX"
Webinar Presentation: "Diagnostic Flash Application with OTX"Webinar Presentation: "Diagnostic Flash Application with OTX"
Webinar Presentation: "Diagnostic Flash Application with OTX"
 
20140121 cisec-safety criticalsoftwaredevelopment
20140121 cisec-safety criticalsoftwaredevelopment20140121 cisec-safety criticalsoftwaredevelopment
20140121 cisec-safety criticalsoftwaredevelopment
 
EENA 2018 - Drones and Public Safety
EENA 2018 - Drones and Public SafetyEENA 2018 - Drones and Public Safety
EENA 2018 - Drones and Public Safety
 
Software Sustainability: preserving the future of research software
Software Sustainability: preserving the future of research softwareSoftware Sustainability: preserving the future of research software
Software Sustainability: preserving the future of research software
 

Similar to Introducing the HICLASS Research Programme - Enabling Development of Complex and Secure Aerospace Systems

Itmgen 4317 security
Itmgen 4317 securityItmgen 4317 security
Itmgen 4317 security
Cisco
 
Migrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
Migrating Critical Applications To The Cloud - ISACA Seattle - SanitizedMigrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
Migrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
Norm Barber
 
Cisco & red hat open stack solutions
Cisco & red hat open stack solutionsCisco & red hat open stack solutions
Cisco & red hat open stack solutions
Lora O'Haver
 
Assessing Business Operations Risk With Unified Vulnerability Management in T...
Assessing Business Operations Risk With Unified Vulnerability Management in T...Assessing Business Operations Risk With Unified Vulnerability Management in T...
Assessing Business Operations Risk With Unified Vulnerability Management in T...
Denim Group
 
OCC-Executive-Summary-20150323
OCC-Executive-Summary-20150323OCC-Executive-Summary-20150323
OCC-Executive-Summary-20150323
Les Williams
 
DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)
DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)
DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)
Gerardo Pardo-Castellote
 
Industrial IOT Data Connectivity Standard
Industrial IOT Data Connectivity StandardIndustrial IOT Data Connectivity Standard
Industrial IOT Data Connectivity Standard
Gerardo Pardo-Castellote
 

Similar to Introducing the HICLASS Research Programme - Enabling Development of Complex and Secure Aerospace Systems (20)

Itmgen 4317 security
Itmgen 4317 securityItmgen 4317 security
Itmgen 4317 security
 
Migrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
Migrating Critical Applications To The Cloud - ISACA Seattle - SanitizedMigrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
Migrating Critical Applications To The Cloud - ISACA Seattle - Sanitized
 
Migrating Critical Applications to the Cloud - isaca seattle - sanitized
Migrating Critical Applications to the Cloud - isaca seattle - sanitizedMigrating Critical Applications to the Cloud - isaca seattle - sanitized
Migrating Critical Applications to the Cloud - isaca seattle - sanitized
 
Intercloud_Fabric
Intercloud_FabricIntercloud_Fabric
Intercloud_Fabric
 
Cisco & red hat open stack solutions
Cisco & red hat open stack solutionsCisco & red hat open stack solutions
Cisco & red hat open stack solutions
 
Losing Control to the Cloud
Losing Control to the CloudLosing Control to the Cloud
Losing Control to the Cloud
 
Hogan Kusnadi - Cloud Computing Secutity
Hogan Kusnadi - Cloud Computing SecutityHogan Kusnadi - Cloud Computing Secutity
Hogan Kusnadi - Cloud Computing Secutity
 
PSOCLD 1007 Cisco Hybrid Cloud Platform for Google Cloud
PSOCLD 1007 Cisco Hybrid Cloud Platform for Google CloudPSOCLD 1007 Cisco Hybrid Cloud Platform for Google Cloud
PSOCLD 1007 Cisco Hybrid Cloud Platform for Google Cloud
 
1305 eurocloud jfriedrich
1305 eurocloud jfriedrich1305 eurocloud jfriedrich
1305 eurocloud jfriedrich
 
Detailed Analysis of Security Challenges in the Domain of Hybrid Cloud
Detailed Analysis of Security Challenges in the Domain of Hybrid CloudDetailed Analysis of Security Challenges in the Domain of Hybrid Cloud
Detailed Analysis of Security Challenges in the Domain of Hybrid Cloud
 
OpenStack Benelux Conference 2014 | Openstack Iaas and the Future of Applicat...
OpenStack Benelux Conference 2014 | Openstack Iaas and the Future of Applicat...OpenStack Benelux Conference 2014 | Openstack Iaas and the Future of Applicat...
OpenStack Benelux Conference 2014 | Openstack Iaas and the Future of Applicat...
 
Assessing Business Operations Risk With Unified Vulnerability Management in T...
Assessing Business Operations Risk With Unified Vulnerability Management in T...Assessing Business Operations Risk With Unified Vulnerability Management in T...
Assessing Business Operations Risk With Unified Vulnerability Management in T...
 
SecureCloud Project
SecureCloud ProjectSecureCloud Project
SecureCloud Project
 
Introduction to the CSA Cloud Controls Matrix
Introduction to the CSA Cloud Controls MatrixIntroduction to the CSA Cloud Controls Matrix
Introduction to the CSA Cloud Controls Matrix
 
RA TechED 2019 - SS16 - Security Where and Why do I start
RA TechED 2019 - SS16 - Security Where and Why do I startRA TechED 2019 - SS16 - Security Where and Why do I start
RA TechED 2019 - SS16 - Security Where and Why do I start
 
Migrating to Cloud? 5 motivations and 10 key security architecture considerat...
Migrating to Cloud? 5 motivations and 10 key security architecture considerat...Migrating to Cloud? 5 motivations and 10 key security architecture considerat...
Migrating to Cloud? 5 motivations and 10 key security architecture considerat...
 
Tech equity - Cloud presentation
Tech equity - Cloud presentationTech equity - Cloud presentation
Tech equity - Cloud presentation
 
OCC-Executive-Summary-20150323
OCC-Executive-Summary-20150323OCC-Executive-Summary-20150323
OCC-Executive-Summary-20150323
 
DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)
DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)
DDS - The Proven Data Connectivity Standard for the Industrial IoT (IIoT)
 
Industrial IOT Data Connectivity Standard
Industrial IOT Data Connectivity StandardIndustrial IOT Data Connectivity Standard
Industrial IOT Data Connectivity Standard
 

More from AdaCore

RCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standardsRCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standards
AdaCore
 
Rust and the coming age of high integrity languages
Rust and the coming age of high integrity languagesRust and the coming age of high integrity languages
Rust and the coming age of high integrity languages
AdaCore
 
Developing Future High Integrity Processing Solutions
Developing Future High Integrity Processing SolutionsDeveloping Future High Integrity Processing Solutions
Developing Future High Integrity Processing Solutions
AdaCore
 
Taming event-driven software via formal verification
Taming event-driven software via formal verificationTaming event-driven software via formal verification
Taming event-driven software via formal verification
AdaCore
 
Pushing the Boundary of Mostly Automatic Program Proof
Pushing the Boundary of Mostly Automatic Program ProofPushing the Boundary of Mostly Automatic Program Proof
Pushing the Boundary of Mostly Automatic Program Proof
AdaCore
 
RCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standardsRCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standards
AdaCore
 
Product Lines and Ecosystems: from customization to configuration
Product Lines and Ecosystems: from customization to configurationProduct Lines and Ecosystems: from customization to configuration
Product Lines and Ecosystems: from customization to configuration
AdaCore
 
Adaptive AUTOSAR - The New AUTOSAR Architecture
Adaptive AUTOSAR - The New AUTOSAR ArchitectureAdaptive AUTOSAR - The New AUTOSAR Architecture
Adaptive AUTOSAR - The New AUTOSAR Architecture
AdaCore
 
Software Engineering for Robotics - The RoboStar Technology
Software Engineering for Robotics - The RoboStar TechnologySoftware Engineering for Robotics - The RoboStar Technology
Software Engineering for Robotics - The RoboStar Technology
AdaCore
 
The Application of Formal Methods to Railway Signalling Software
The Application of Formal Methods to Railway Signalling SoftwareThe Application of Formal Methods to Railway Signalling Software
The Application of Formal Methods to Railway Signalling Software
AdaCore
 
Ada 202x A broad overview of relevant news
Ada 202x A broad overview of relevant newsAda 202x A broad overview of relevant news
Ada 202x A broad overview of relevant news
AdaCore
 

More from AdaCore (20)

RCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standardsRCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standards
 
Have we a Human Ecosystem?
Have we a Human Ecosystem?Have we a Human Ecosystem?
Have we a Human Ecosystem?
 
Rust and the coming age of high integrity languages
Rust and the coming age of high integrity languagesRust and the coming age of high integrity languages
Rust and the coming age of high integrity languages
 
SPARKNaCl: A verified, fast cryptographic library
SPARKNaCl: A verified, fast cryptographic librarySPARKNaCl: A verified, fast cryptographic library
SPARKNaCl: A verified, fast cryptographic library
 
Developing Future High Integrity Processing Solutions
Developing Future High Integrity Processing SolutionsDeveloping Future High Integrity Processing Solutions
Developing Future High Integrity Processing Solutions
 
Taming event-driven software via formal verification
Taming event-driven software via formal verificationTaming event-driven software via formal verification
Taming event-driven software via formal verification
 
Pushing the Boundary of Mostly Automatic Program Proof
Pushing the Boundary of Mostly Automatic Program ProofPushing the Boundary of Mostly Automatic Program Proof
Pushing the Boundary of Mostly Automatic Program Proof
 
RCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standardsRCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standards
 
Product Lines and Ecosystems: from customization to configuration
Product Lines and Ecosystems: from customization to configurationProduct Lines and Ecosystems: from customization to configuration
Product Lines and Ecosystems: from customization to configuration
 
Adaptive AUTOSAR - The New AUTOSAR Architecture
Adaptive AUTOSAR - The New AUTOSAR ArchitectureAdaptive AUTOSAR - The New AUTOSAR Architecture
Adaptive AUTOSAR - The New AUTOSAR Architecture
 
Software Engineering for Robotics - The RoboStar Technology
Software Engineering for Robotics - The RoboStar TechnologySoftware Engineering for Robotics - The RoboStar Technology
Software Engineering for Robotics - The RoboStar Technology
 
MISRA C in an ISO 26262 context
MISRA C in an ISO 26262 contextMISRA C in an ISO 26262 context
MISRA C in an ISO 26262 context
 
Application of theorem proving for safety-critical vehicle software
Application of theorem proving for safety-critical vehicle softwareApplication of theorem proving for safety-critical vehicle software
Application of theorem proving for safety-critical vehicle software
 
The Application of Formal Methods to Railway Signalling Software
The Application of Formal Methods to Railway Signalling SoftwareThe Application of Formal Methods to Railway Signalling Software
The Application of Formal Methods to Railway Signalling Software
 
Bounded Model Checking for C Programs in an Enterprise Environment
Bounded Model Checking for C Programs in an Enterprise EnvironmentBounded Model Checking for C Programs in an Enterprise Environment
Bounded Model Checking for C Programs in an Enterprise Environment
 
Multi-Core (MC) Processor Qualification for Safety Critical Systems
Multi-Core (MC) Processor Qualification for Safety Critical SystemsMulti-Core (MC) Processor Qualification for Safety Critical Systems
Multi-Core (MC) Processor Qualification for Safety Critical Systems
 
Ada 202x A broad overview of relevant news
Ada 202x A broad overview of relevant newsAda 202x A broad overview of relevant news
Ada 202x A broad overview of relevant news
 
Verification and Validation of Robotic Assistants
Verification and Validation of Robotic AssistantsVerification and Validation of Robotic Assistants
Verification and Validation of Robotic Assistants
 
An Alternative Approach to DO-178B
An Alternative Approach to DO-178BAn Alternative Approach to DO-178B
An Alternative Approach to DO-178B
 
MISRA C – Recent developments and a road map to the future
MISRA C – Recent developments and a road map to the futureMISRA C – Recent developments and a road map to the future
MISRA C – Recent developments and a road map to the future
 

Recently uploaded

TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 

Recently uploaded (20)

Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 

Introducing the HICLASS Research Programme - Enabling Development of Complex and Secure Aerospace Systems

  • 1. © 2019 Rolls-Royce and Other HICLASS Partners. © 2019 Rolls-Royce and HICLASS Partners The information in this document is the property of Rolls-Royce and other HICLASS partners. This information is given in good faith based upon the latest information available to the HICLASS partners, no warranty or representation is given concerning such information, which must not be taken as establishing any contractual or other commitment binding upon the HICLASS partners. The information contained in this document is submitted in confidence and is of the kind contemplated by Section[s] [41 and 43] of the Freedom of Information Act 2000. No UK security classification is applicable to this document. The information contained in this document is not controlled and no export license is required. 1 The HICLASS Research Programme Enabling Development of Complex and Secure Aerospace Systems Mike Bennett, Rolls-Royce Control Systems on behalf of the HICLASS consortium This work was supported by the HICLASS project, funded by the Aerospace Technology Institute and Innovate UK, as project number 113213.
  • 2. © 2019 Rolls-Royce and Other HICLASS Partners. 2 HICLASS will enable UK industry to build and support the most complex, connected, cyber-secure avionic systems in the world • £32M project over 4 years • Started July 2019 • Led by Rolls-Royce • 16 funded partners • 2 unfunded partners • Engagement with DSTL Project Overview Systems developers, tool suppliers and academics working together to develop integrated solutions
  • 3. © 2019 Rolls-Royce and Other HICLASS Partners. Opportunity 3. Position for New Markets 4. Ongoing Cost Avoidance 1. Exploit Existing Markets Lower-cost assured software and electronics are key enablers Aerospace High-Integrity Tools and Services 2. Secure Existing Markets Adjacent Markets
  • 4. © 2019 Rolls-Royce and Other HICLASS Partners. 0 1 2 3 4 5 6 7 8 9 Integrity Complexity Digital Dependence Connectivity Security Safety 4 Increasing Scale and Complexity The systems we can practically build today The systems we’d like to be able to build
  • 5. © 2019 Rolls-Royce and Other HICLASS Partners. 5 Continuing the journey…. • Model-Based Development • Open Toolchains • Improved Architectures • Improved / Automated / Formal Verification • Pooling niche skills and build community • Enhance understanding of shared problems • Multi-core • Security • Electronic platform technologies Technologies Matured and Expanded ASSET
  • 6. © 2019 Rolls-Royce and Other HICLASS Partners. 6 Work Package Overview WP4 Integration & Embedding Integrated product demonstrators WP3 Advanced Verification Timing Analysis for complex systems eg. multi-core and distributed Automated, scalable and model- based Early and virtual integration WP2 Future Platforms and Development Integrated Model- Based Engineering Reusable Components and Product Lines Cyber-secure architectures and mechanisms High-Integrity connectivity, networks and data distribution WP1 Domain Exploitation for HICLASS Systems Product opportunities and exploitation for HICLASS systems Develop a cross- industry cyber- security approach for avionics and drive regulation Themes Scope requirements, refine exploitation opportunities and develop cross-industry security approach Develop 34 advanced technologies in 14 complementary work packages Systems developers integrate technologies Advanced hardware platforms and smart sensors Security Verification Technologies
  • 7. © 2019 Rolls-Royce and Other HICLASS Partners. 7 Technologies Model Based System Engineering Model-Based Software Development Automated Verification for Certification Secure Formal Code Executable Models Rapid Integration of Complex Systems Next Generation Platform 9 electronic and software platform technologies 11 Security Technologies 4 specification and modelling technologies 7 verification and test technologies Multi-Core Processing 3 Multi-Core Technologies Agile Find and Fix
  • 8. © 2019 Rolls-Royce and Other HICLASS Partners. 8 New Areas - Multi-Core Timing Verification • Online monitoring limits contention and interference within predetermined bounds • Robust allocation & scheduling restricts contention for shared resources and supports graceful degradation • Processor & resource demands obtained via measurement-based analysis • Micro-benchmarks quantify sensitivity to different levels of interference • Multi-cores contain HW resources that are shared between cores causing timing unpredictability • Regulator provides objectives that must be met for certification • How to meet those objectives? 1. Mechanisms 2. Testing and Analysis 3. Building Argument 4. Improving Regulation • FAA/EASA Feedback
  • 9. © 2019 Rolls-Royce and Other HICLASS Partners. • Current Status: - Safety: many years industry experience. - Security • Many security process standards. • Aerospace security standards (ED-202A/DO-326A) only recently published about to be adopted as Acceptable Means of Compliance - Lack of expertise in certification • Now expressed as customer requirements - Key Issues: • Expertise is theoretical rather practical • Integration of security and safety • Cost effectiveness 9 New Areas – Security (1/2) Security Risk Assessment related activities Airworthiness acceptability matrix 3 – Security Risk Assessment (3.2) 2 - Security Scope Definition (3.1) Certification related activities 1 - Plan for Security Aspects of Certification (PSecAC) 7 - Communication of evidences (PSecAC Summary) Not Acceptable Security Risk 4 - Are security risks acceptable ? Security Development related activities 5 - Security Development (3.4)6 - Security Effectiveness Assurance (3.3) Architecture Modifications Architecture under consideration
  • 10. © 2019 Rolls-Royce and Other HICLASS Partners. - Share and Develop Best Practice • Create some common elements e.g. Threat Model • Stopping criteria • Advice covering the interaction of security measures with safety, - e.g. safety impact of security measure failure modes - Develop Security Technologies • Binary vulnerability analysis • Cyber-hardening (eg. compiler) • Fuzz testing • On-board Security Information and Event Management (SIEM) • Secure Data Communications, Loading and Update - Engagement with industry working groups 10 New Areas – Security (2/2) One example of some of the technology interactions
  • 11. © 2019 Rolls-Royce and Other HICLASS Partners. • Dissemination events • Aerospace Software Systems Engineering & Technology (ASSET) partnership - Identification of Gaps! • Work with specific partners on particular topics - Case studies - Supply of tools 11 Engaging with HICLASS
  • 12. © 2019 Rolls-Royce and Other HICLASS Partners. • The Aerospace Software Systems Engineering & Technology (ASSET) partnership. • ‘Club’ open to all organisations undertaking technical work in aerospace software and systems engineering in the UK - Inc. system suppliers, software houses, tool suppliers, government agencies, academic research organisations) - No NDA / Collaboration Agreement - Publication under Creative Commons Licence • Constitution developed during the SECT-AIR project • Starting small - currently run on a volunteer basis as a pilot with a proposed small subscription fee from 2020 managed through University of York • Sharing best practice in industry-led working groups (eg. Agile and CPD) 12 Offer different perspectives ASSET
  • 13. © 2019 Rolls-Royce and Other HICLASS Partners. • Rolls Royce in on a software transformation journey • More products, projects and software • Current approach is difficult to sustain 13 Rolls-Royce Exploitation
  • 14. © 2019 Rolls-Royce and Other HICLASS Partners. • HICLASS is key enabler to the UK to build cyber-secure systems of the future • Important part of enhancing the UK capability in high-integrity systems and software engineering • Highly collaborative with an array of technologies being developed • Main focus in civil aerospace but cross-sector exploitation is expected • Come and talk to us to find out more! 14 Summary and Conclusions
  • 15. © 2019 Rolls-Royce and Other HICLASS Partners. 15 Partner leads Organisation Lead Contact Rolls-Royce Mike Bennett Adacore Paul Butcher Altran Katie Smith BAE Systems Malcolm Earl Callen-Lenz Martin Ward Cobham Paul Moses Cocotec Philippa Hopcroft D-RisQ Nick Tudor GDUK Matt Saint-Gregory GE Aviation Kevin Grover Leonardo Donald Taylor MBDA Lee Jacques Oxford Daniel Kroening Rapita Systems Adam Barker Southampton Colin Snook Thales Peter Bland Ultra Aleem Saleh York Iain Bate
  • 16. © 2019 Rolls-Royce and Other HICLASS Partners. 16 WP Breakdown WP1 WP1.1 Future Products and Impact (Rolls-Royce) WP 1.2 Embedded Cyber-Security Standards, Approach and Process (Thales) WP2 WP2.1 Ensuring Data Communication Integrity (Thales) WP2.2 Technologies for Cyber Hardening (GDUK) WP2.3 Full-lifecycle Model-Based Development Environment (Altran) WP2.4 Specification Environment for Complex Systems (Altran) WP2.5 Flexible, Secure and Segregated Software Architecture Frameworks (Rolls-Royce) WP2.6 Enhanced Software Update and Maintenance Capability (Rolls-Royce) WP2.7 Future complex, safety-critical and modular hardware platform (Rolls-Royce) WP3 WP3.1 Automatic formal verification (D-RisQ) WP3.2 Semi-automatic formal verification (DRisQ) WP3.3 Automated Low Level Verification (Rapita) WP3.4 Automated verification tools for event-driven software (Cocotec) WP3.5 SPARK for HICLASS (Adacore) WP3.6 Integrated Framework for Managing the Timing of New Complex Architectures (York) WP3.7 Automated System-Level Testing (Altran) WP4 WP4.1 Future Engine Controls and Monitoring Computing Platform (Rolls- Royce) WP4.2 Innovative Flight Control System (Callen-Lenz) WP4.3 Next Generation Control System (Rapita) WP4.4 Safe & Secure Processing Reference Design (GDUK) WP4.5 Future Power Systems (GE)