From our base in the UK Midlands, we provide support for organisations across the world that need to create software for real-time embedded systems that are reliable, secure and safe.
Our highly-experienced team employs an industry-proven engineering process that integrates ‘Time-Triggered‘ (TT) software architectures with patented run-time monitoring techniques.
We have created some short examples to illustrate the types of projects that we have supported:
- Controller for a domestic washing machine (IEC 60730 / IEC 60335, ‘Class B’)
- Dealing with ‘SOUP’ in a medical infusion pump (IEC 62304, ‘Class C’)
- Industrial monitoring system (IEC 61508, ‘SIL 2’)
- Controller for an Industrial Robot (IEC 61508, ‘SIL 3’)
- Determining that a machinery-operator is ‘in place’ (ISO 13849, ‘PL e’)
- An automotive ECU designed using ‘ASIL decomposition’ (ISO 26262, ‘ASIL B’)
- ‘Steering-Column Lock Controller’ for a high-volume passenger car (ISO 26262, ‘ASIL D’)
- Controller for an autonomous road vehicle (ISO 26262, ‘ASIL D’)
- Using TT Wrappers in civilian aircraft systems (DO-178C / DO-254)
- Developing high-reliability space-based systems (ECSS-E-ST-40C, ECSS-Q-ST-80C)
- These are simply examples of the type of project that we can support.
- If your organisation needs to create reliable / secure / safe embedded systems – in any sector – then we may be able to help.
- We offer a cost-effective and time-efficient evaluation process for our technology and services.
- We take on up to 10 new projects every year and deliver our services on a worldwide basis.
Join us at AutoSens in Brussels (17-20 September 2018)
We are pleased to announce that Dr Michael J. Pont (Executive Director, SafeTTy Systems Ltd) has been invited to present at the AutoSens event in Brussels in September 2018.
The team at AutoSens argue that:
Before cars can be connected, engineers must first connect. The most influential vehicle perception event, invites 800 of the world’s leading minds in ADAS and autonomous vehicles to meet again throughout 2018. The AutoSens experience is replicated on both sides of the Atlantic, with events at at AutoWorld in Brussels, Belgium, and the Michigan Science Center in Detroit, Michigan USA. Two exclusive, unique venues providing the perfect backdrop for the continuation of technical discussion concerning the future of vehicle perception technology. The show in Detroit took place in May, and the flagship event in Brussels takes place this September with an Awards Ceremony. Each event is a week of discussions, collaborations, debates, business meetings, interactive learning, autonomous driving demonstrations and technology showcasing.
In Brussels, Dr Pont will give a presentation entitled: “Improving confidence in the safety of ADAS and AV designs that incorporate ‘unqualified’ software or hardware components”.
Learn more about this presentation …
Dr Pont comments: “The development of safe and reliable autonomous road vehicles presents a very significant challenge, and the AutoSens event in Brussels will provide an excellent opportunity for discussions. Some of our automotive customers have also been invited to present at this event, and I look forward to hearing what they have to say. In addition, I hope to have the opportunity to meet some new organisations that we may be able to support in the future with our state-of-the-art ‘Time Triggered’ technology.”
Latest RTL ‘Time-Triggered Reference Designs’
Our public ‘Time-Triggered Reference Designs’ (TTRDs) can be downloaded from this website.
Used in conjunction with the ‘ERES2‘ book, our public TTRDs are designed to illustrate ways in which state-of-the-art ‘Time Triggered‘ (TT) software architectures can be used to support the development of a wide range of safe / reliable / secure embedded systems.
In addition to our public TTRDs, we provide a range of more advanced code examples – free of charge – to ReliabiliTTy licensees.
In many cases, our customers develop their application software by building on an RTL TTRD, supported by training and / or consultancy services from our team. The combination of this advanced code framework and highly-experienced support can significantly reduce the development effort (and time) required to create a reliable TT design and achieve compliance with international safety standards.
RTL TTRDs are available on request:
- to organisations that hold a full ReliabiliTTy Technology Licence;
- to organisations that hold an active ReliabiliTTy Technology Evaluation Licence (RTEL);
Many new customers obtain their RTL TTRDs as part of a SafeTTy Solutions package.
Learn more about RTL TTRDs …
The Engineering of Reliable Embedded Systems (Second Edition) by Michael J. Pont
‘The Engineering of Reliable Embedded Systems’ (ERES2) documents an industry-proven approach to the development of software for reliable, real-time embedded systems, based on the use of second-generation ‘Time Triggered’ (TT) architectures.
What distinguishes TT approaches is that it is possible to model the expected system behaviour precisely. This means that: [i] during the development process, we can demonstrate that all of the requirements have been met; and [ii] at run time, we can detect problems very quickly.
The end result is that we can have a high level of confidence that a TT system will either: [i] operate precisely as required; or [ii] move into an appropriate state if a problem occurs.
The above characteristics mean that appropriately-implemented TT systems provide a particularly effective means of meeting the requirements of various international safety standards.
In order to illustrate how the TT techniques presented in ERES2 can be employed in practical designs, five detailed case studies are included. These studies describe the development of embedded control and monitoring systems for the following products:
- an industrial alarm sounder unit (IEC 61508, SIL 2);
- a domestic washing machine (IEC 60730, Class B);
- a hospital radiotherapy machine (IEC 62304, Class C);
- a steering-column lock for a passenger car (ISO 26262, ASIL D);
- an aircraft jet engine (DO-178C, Level A).
DuplicaTTor® Evaluation Board
Our DuplicaTTor® Evaluation Board (DEB-0405) is aimed primarily at organisations that wish to develop industrial / generic designs in compliance with IEC 61508 (up to ‘SIL 3’); machinery designs in compliance with ISO 13849 (up to Pl e Cat 4); household goods in compliance with IEC 60730 / IEC 60335 (up to Class C); medical equipment in compliance with IEC 62304 (up to Class C); and automotive designs in compliance with ISO 26262 (up to ASIL D).
DEB-0405 can also be used to prototype civil aircraft designs in compliance with DO-178C (up to ‘DAL A’)..
Learn more about our evaluation hardware.
The SafeTTy Certified™ Programme
The internationally-recognised SafeTTy Certified programme is designed to help people obtain the skills needed to develop reliable, secure and safe embedded systems using ‘Time Triggered‘ (TT) software architectures – and provide evidence that they possess such skills.
The programme starts at “Level 1” and progresses to “Level 3”.
In our view:
- Level 1 represents the minimum qualification level that should be expected from an individual involved in the development of real-time embedded systems that are intended to be reliable, but where failure has no direct safety implications.
- Level 2 represents the minimum qualification level that should be expected from an individual involved in the development of real-time embedded systems that may have some safety implications (for example, designs developed in compliance with IEC 61508 or in compliance with ISO 26262), and / or where system failure could prove very expensive (e.g. deep-sea products, satellite systems).
- Level 3 represents an appropriate qualification level for an individual who is involved in the development of real-time embedded systems that are safety-critical in nature (for example, designs developed in compliance with IEC 61508 up to ‘SIL 3’ / ‘SIL 4’ or in compliance with ISO 26262 up to “ASIL D”, or in compliance with DO-178C up to “Level A”).
For experienced developers, we offer the option of Direct Entry to Level 2: this means that it is not necessary to complete Level 1 of this programme before attempting the intermediate-level training and examination.
Learn more about the SafeTTy Certified programme …
– Investigate our specialised Evaluation Hardware for safety-related systems –