Mitsubishi Electric R&D Centre Europe faced the challenge of confirming the safety and reliability of more than 300,000 lines of code
A key component of Europe’s leading R&D community, Mitsubishi Electric R&D Centre Europe (MERCE) researches and develops innovative solutions relating to energy, environment, and communications technologies, including air conditioning and power electronics systems, as well as wireless, optical, and network technologies. The reliability, efficiency, and quality of the company’s products are of the highest importance to MERCE. From information communication technologies to power modules, MERCE uses the best-in-class laboratory equipment and reliable software methodologies to ensure safe, high-quality technologies.
MERCE faced the challenge of confirming the safety and reliability of more than 300,000 lines of code to make up a new, safety-critical embedded software which is intrinsically very complex.
The embedded software is used in a variety of configurations, which means it needs to function on a variety of different materials, each with their own constraints. The equipment’s sensors could receive a large variety of different signals, generating different inputs for the software’s code functions. Testing the software in production is complex and time-consuming, and it is impossible to manually test for every possible input.
Safety-critical software must take into account all possible values for these inputs. But to be sure that the software responds in a predetermined way no matter the input requires developers to use tools that are more extensive than traditional tests. With mathematical tools, this becomes possible. MERCE’s mission is to find such advanced, mathematically based tools and to design adequate methodology for their effective usage.
This is the reason why MERCE chose TrustInSoft to provide their research team with the tools they needed to do such kind of source code analysis. TrustInSoft Analyzer provided the mathematical solution to prove the correctness of the software development process, from code development perspective, using formal methods.
Ensuring the safety and reliability of complex technological systems requires surmounting certain challenges to secure software development:
The safety-critical embedded software used in the technology reviewed by MERCE requires a robust code verification to avoid these kinds of challenges that accompany software development and which could lead to safety concerns in the technology and final product.
Researchers at MERCE needed to be sure that no matter what the inputs received by sensors, the software would continue to behave in a deterministic, expected way.
Provided with TrustInSoft Analyzer, MERCE was able to take software verification to the next level. MERCE conducted a comprehensive code review by running source code through the analyzer, allowing for:
Thanks to these powerful benefits of using the formal methods approach, the development team also benefits from more confidence overall that the code they review does not contain any errors that could jeopardize the safety-critical product.
Tackling the size and the complexity of C code we had to review was not an easy task. It was even quite ambitious when we started this project. TrustInSoft provided to us not only the right tool powered by Formal Methods, which gave us the correctness guarantee level we needed, but also an outstanding hyper-reactive support that allowed MERCE to Get the Job Done.
- David Mentré, Research Manager, Mitsubishi Electric R&D Centre Europe
MERCE secures safety-critical embedded software with TrustInSoft Analyzer, to be absolutely sure of their robustness, and to promote their reliability and safety, whatever the environment. Ensuring that the software behaves in a prescribed way, no matter the inputs it receives from the real world, is of the highest importance.
Interested to find out how TrustInSoft Analyzer can help your team? Contact us to schedule a demo!