bannerd

A. Introduction

B. Institutional Requirements

C. Project Software Requirements

D. Topics

E. Tools, References, and Terms

F. SPAN
(NASA Only)

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 8 Next »

Human Rated Requirements in SWEHB

1. Introduction 

This new set of software requirements is a model based on the following documents:

  • The NASA-STD-8719.29 "NASA Technical Requirements for Human-Rating" is the bases for this new section of requirements.
  • There is a companion document "Additional NASA software technical requirements for human" which breaks out the software related requirements. 

The model also contains additional support pages necessary to demonstrate the full scope of the new requirements.  

1.1 Model Pages

Error rendering macro 'children'

null

2. Requirements

The NASA-STD-8719.29 "NASA Technical Requirements for Human-Rating" is the bases for this new section of requirements.

There is a companion document "Additional NASA software technical requirements for human" which breaks out the software related requirements. 

2.1 Project Software Requirements

A home will need to be found for the new requitements and topics.  That home is modeled in the new C. Project Software Requirements page.  a new section is added below the third column requirements from Chapter 5 of NPR7150.2.

Requirements pages are modeled after the current SWE pages and only a few are modeled currently. In total there are 18 identified. For modeling purposes the SWE numbers will be in the 800 series so that references and other features of the SWEHB will work properly. We will need to be custodians of the numbering because there is not a numbering scheme in the standard that will work for this project. These requirements were derived from the document "Additional NASA software technical requirements for human.docx". Additional requirements exist on the standard and may be factored in later. SWE Titles in bold are modeled for review due to their size. Many of the components of a SWE are found in these requirements in the document. 

SWE TitleRequirement

SWE-801 - Single Failure Tolerance

4.3.1 The space system shall provide at least single failure tolerance to catastrophic events, with specific levels of failure tolerance and implementation (similar or dissimilar redundancy) derived via an integration of the design and safety analysis (required by NPR 8705.2).
SWE-802 - Inadvertent Operator Action4.3.3 The space system shall be designed to tolerate inadvertent operator action (minimum of one inadvertent action), as verified by a human error analysis, without causing a catastrophic event.
SWE-803 - Operator Action With Single System Failure

4.3.4 The space system shall tolerate inadvertent operator action, as described in Section 4.3.3, in the presence of any single system failure.

SWE-804 - Mitigate Hazardous Behavior Of Critical Software

4.3.5 The space system shall provide the capability to mitigate the hazardous behavior of critical software where the hazardous behavior would result in a catastrophic event.

SWE-805 - Detect And Annunciate Faults

4.3.6 The space system shall provide the capability to detect and annunciate faults that affect critical systems, subsystems, or crew health.

SWE-806 - Fault Recovery

4.3.7 The space system shall provide the capability to isolate and recover from faults identified during system development or mission operations that would result in a catastrophic event.

SWE-807 - Data Analysis

4.3.8 The space system shall provide the capability to utilize health and status data (including system performance data) of critical systems and subsystems to facilitate anomaly resolution during and after the mission.

SWE-808 - Autonomous Operation

4.3.9 The crewed space system shall provide the capability for autonomous operation of system and subsystem functions which, if lost, would result in a catastrophic event.

SWE-809 - Crew Operations

4.4.1 The crewed space system shall provide the capability for the crew to monitor, operate, and control the crewed space system and subsystems, where: 

  1. The capability is necessary to execute the mission; or
  2. The capability would prevent a catastrophic event; or
  3. The capability would prevent an abort.
SWE-810 - Crew Override

4.4.2 The crewed space system shall provide the capability for the crew to manually override higher level software control and automation (such as automated abort initiation, configuration change, and mode change) when the transition to manual control of the system will not cause a catastrophic event.

SWE-811 - Crew Control

4.4.3 The space system shall provide the capability for humans to remotely monitor, operate, and control the crewed system elements and subsystems, where:

  1. The remote capability is necessary to execute the mission; or
  2. The remote capability would prevent a catastrophic event; or
  3. The remote capability would prevent an abort.

SWE-812 - Crew Flight Control

4.5.1 The crewed space system shall provide the capability for the crew to manually control the flight path and attitude of their spacecraft, with the following exception: during the atmospheric portion of Earth ascent when  structural and thermal margins have been determined to negate the benefits of manual control.

SWE-813 - Crew Control Of Uncrewed Spacecraft

4.6.1 The space system shall provide the capability for the crew to monitor, operate, and control an uncrewed spacecraft during proximity operations, where:

  1. The capability is necessary to execute the mission; or
  2. The capability would prevent a catastrophic event; or
  3. The capability would prevent an abort.
SWE-814 - Interface with Launch Vehicle

4.7.1.3 The crewed space system shall monitor the Earth ascent launch vehicle performance and automatically initiate an abort when an impending catastrophic failure is detected.

SWE-815 - Crew Initiate Ascent Abort Sequence

4.7.1.4.1 The space system shall provide the capability for the crew to initiate the Earth ascent abort sequence.

SWE-816 - Ground Initiate Ascent Abort Sequence

4.7.1.4.2 The space system shall provide the capability for the ground control to initiate the Earth ascent abort sequence.

SWE-817 - Interface With Range Safety Destruct System

4.7.1.5 If a range safety destruct system is incorporated into the design, the space system shall automatically initiate the Earth ascent abort sequence when range safety destruct commands are received onboard, with an adequate time delay prior to destruction of the launch vehicle to allow a successful abort.

SWE-818 - Autonomous Mission Abort

4.7.2 Earth Orbit Systems.  The crewed space system shall provide the capability to autonomously abort the mission from Earth orbit by targeting and performing a deorbit to a safe landing on Earth.

3. Other Sections

3.1 New "C. Software Project Requirements" page

This new page has an additional section below the Chapter 5 table. This new table contains the Software Human Rated Requirements. 

New C. Project Software Requirements

3.2

4. To Do

These items are to be done as a part of implementing the HR requirements. 

DescriptionCompleted

Notes

Add a SWEREF for NASA-STD-8719.29 SWEREF-458

added to SWE-801

New "C. Software Project Requirements - HR" page  New C. Project Software Requirements 
Build 5 Test SWEs

SWE-801 - Single Failure Tolerance

SWE-802 - Inadvertent Operator Action

SWE-804 - Mitigate Hazardous Behavior Of Critical Software

SWE-809 - Crew Operations

SWE-812 - Crew Flight Control


Add "Additional NASA software technical requirements for human.docx" as a reference (SWEREF) or embed in a Topic that points back to the 800 series SWEs. 








  • No labels
Page Editor: Tim Crumbley
NASA Official: Tim Crumbley
Accessibility
NASA Software Engineering Handbook - A service of the NASA Office of the Chief Engineer
NASA Privacy Statement
______________________________________________________________________________