A safety-critical function requires a fault-tolerant platform on which it can be safely executed with high reliability. Exemplary, the flight control function, the autonomous drive control function or even the automated teller machine function are safety-critical functions hosted on fault-tolerant platforms. Before starting the design of such platforms, some fundamental questions shall be answered:

(1) What are the safety requirements of such fault-tolerant platforms?
(2) What are the design aspects will be followed to fulfil those safety requirements?
(3) How to verify and certify such fault-tolerant platforms?

Our expertise in Aircraft & System Development Process (ARP4754) and Safety Assessment Process (ARP4761) will help you answer the first and third question. Answering the second question is essential to specify the cloud illustrated above, which is the core of the system engineering and the know-how behind it. To approach a fault-tolerant behaviour in the control platform, duplex, triplex, quadruplex, n-duplex, or n-triplex are possible concepts for the control architecture. The aircraft’s mission and the required level of safety are the main design criteria, specially when it comes to take a decision about the architecture of the control platform.

If that what you are interested in or where you need support in, just contact us!