Qualkitdo SLVNV Tor

DO Qualification Kit
Simulink Verification and Validation

Tool Operational Requirements
R2015b, September 2015
How to Contact MathWorks

Latest news:
www.mathworks.com
Sales and services:
www.mathworks.com/sales_and_services
User community:
www.mathworks.com/matlabcentral
Technical support:
www.mathworks.com/support/contact_us
Phone:
508-647-7000
The MathWorks, Inc.

3 Apple Hill Drive
Natick, MA 01760-2098
DO Qualification Kit: Simulink Verification and Validation Tool Operational Requirements
COPYRIGHT 20092015 by The MathWorks, Inc.

The software described in this document is furnished under a license agreement. The software may be used or copied only under
the terms of the license agreement. No part of this manual may be photocopied or reproduced in any form without prior written
consent from The MathWorks, Inc.
FEDERAL ACQUISITION: This provision applies to all acquisitions of the Program and Documentation by, for, or through the
federal government of the United States. By accepting delivery of the Program or Documentation, the government hereby agrees
that this software or documentation qualifies as commercial computer software or commercial computer software documentation
as such terms are used or defined in FAR 12.212, DFARS Part 227.72, and DFARS 252.227-7014. Accordingly, the terms and
conditions of this Agreement and only those rights specified in this Agreement, shall pertain to and govern the use, modification,
reproduction, release, performance, display, and disclosure of the Program and Documentation by the federal government (or
other entity acquiring for or through the federal government)and shall supersede any conflicting contractual terms or conditions.
If this License fails to meet the governments needs or is inconsistent in any respect with federal procurement law, the
government agrees to return the Program and Documentation, unused, to The MathWorks, Inc.
Trademarks
MATLAB and Simulink are registered trademarks of The MathWorks, Inc. See www.mathworks.com/trademarks for a
list of additional trademarks. Other product or brand names may be trademarks or registered trademarks of their respective
holders.
Patents
MathWorks products are protected by one or more U.S. patents. Please see www.mathworks.com/patents for more
information.
Revision History
March 2009
September 2009
April 2010
March 2010
September 2010
April 2011
September 2011
March 2012
September 2012
March 2013
September 2013
March 2014
October 2014
March 2015
September 2015
New for Version 1.0 (Applies to Release 2009a)

Revised for Version 1.1 (Applies to Release 2009b)
Rereleased for Version 1.1.1 (Applies to Release 2009bSP1)
Revised for Version 1.2 (Applies to Release 2010a)
Revised for DO Qualification Kit Version 3.0 (Applies to Release 2015b)
Contents
1 Introduction ...................................................................................................................................... 1-1
1.1 Simulink Verification and Validation Product Description ..................................................... 1-2
2 Operational Requirements ................................................................................................................ 2-1
2.1 DO-178C/DO-331 Checks Operational Requirements ........................................................... 2-2
2.2 DO-178C/DO-331 Checks and Model Advisor User Information ........................................ 2-19
2.3 Model Coverage Operational Requirements ......................................................................... 2-20
2.4 Model Coverage User Information ........................................................................................ 2-30
3 Installation ........................................................................................................................................ 3-1
4 Operational Environment ................................................................................................................. 4-1
vi
1 Introduction
This document comprises the Tool Operational Requirements (reference DO-330 Section
10.3.1) for the following capabilities of the Simulink Verification and Validation verification
product:
DO-178C/DO-331 checks
Model coverage
The document identifies:
Features of the Simulink Verification and Validation product.

The environment in which the Simulink Verification and Validation product is installed
(reference DO-330, Sections 10.2.4 and 10.3.2).
This document is intended for use in the DO-330 tool qualification process for TQL-5 tools. The
applicant needs to:
Review the Tool Operational Requirements for applicability in the project or program
under consideration.
Configure the Tool Operational Requirements in the project or programs configuration
management system.
Complete the Tool Operational Requirements and make the document available for review.
See documentation for the following products at the MathWorks Documentation Center,
R2015b:
DO Qualification Kit (for DO-178)

Simulink
Stateflow
1.1 Simulink Verification and Validation Product

Description
Verify models and generated code
Simulink Verification and Validation automates requirements tracing, modeling standards

compliance checking, and model coverage analysis.
You can create detailed requirements traceability reports, author your own modeling style
checks, and develop check configurations to share with engineering teams. Requirements
documentation can be linked to models, test cases, and generated code. You can generate
harness models for testing model components and code, and use model coverage analysis to
ensure that models have been thoroughly tested.
Simulink Verification and Validation provides modeling standards checks for the DO-178, ISO
26262, IEC 61508 and related industry standards.
Key Features
Compliance checking for MAAB style guidelines and high-integrity system design
guidelines (DO-178, ISO 26262, IEC-61508, and related industry standards)
Model Advisor Configuration Editor, including custom check authoring
Requirements Management Interface for traceability of model objects, code, and tests to
requirements documents
Automatic test-harness generation for subsystems
Component testing via simulation, software-in-the-loop (SIL), and processor-in-the-loop
(PIL)
Programmable scripting interface for automating compliance checking, requirements
traceability analysis, and component testing
1-2
2 Operational Requirements
2.1 DO-178C/DO-331 Checks Operational

Requirements
The Simulink Verification and Validation product includes the Model Advisor
DO-178C/DO-331 modeling standards checks, which help you define and implement consistent
design guidelines. These guidelines can be applied across projects and development teams. The
Model Advisor finds unwanted model properties, such as incorrect or deprecated blocks and
block parameters, incorrect fonts, and misplaced objects.
Types of checks include:
Block parameter settings

Model configuration parameter settings
Code generator settings
Production hardware parameter settings
Simulink and Stateflow diagnostic parameter settings
Model connections
Compatibility of reference models, libraries and S-functions
Model style considerations
Requirement management interface consistency
The purpose of this capability is to verify that Simulink and Stateflow models comply with
modeling standards, and to verify that the code generator settings are set properly to provide
traceable code that complies with standards.
You can find the DO-178C/DO-331 checks in the Model Advisor > By Product > Simulink
Verification and Validation > Modeling Standards > DO-178C/DO-331 Checks subfolder.
2-2
The following table lists the Simulink Verification and Validation DO-178C/DO-331 checks
that are provided with the DO Qualification Kit, along with the corresponding DO-331 section
to which each check applies. The user is responsible for ensuring that the tool features they rely
on to eliminate, reduce or automate the process are sufficiently covered by Tool Operational
Requirements (reference DO-300 Section 6.2.1.aa).
Note The DO-178C/DO-331 checks can contain two sections: an analysis section
for reviewing the model and an action section for automatically fixing warnings
and failures. The DO Qualification Kit covers the DO-178C/DO-331 check
analysis, not the check actions.
The DO Qualification Kit does not cover Model Advisor check exclusions.
DO-178C/DO-331 Checks Operational Requirements Summary

Check Title
Check ID
Requirement Description
ID
Check safety-related optimization DO178C_01

settings
mathworks.do178.OptionSet
DO-331 References
Simulink Verification and

Validation shall verify that the
model optimization
configuration parameters
comply with the Modeling
Guidelines for High-Integrity
Systems, R2015b.
MB.6.3.1.e High-level
requirements conform to
standards
MB.6.3.2.e Low-level
standards
MB.6.3.1.g Algorithms are
accurate
For details, refer to Check
safety-related optimization
accurate
settings in Simulink
MB.6.3.3.b Software
Verification and Validation DO- architecture is consistent
178C/DO-331 Checks and
MB.6.3.4.e Source code is
Model Advisor User
traceable to low-level
Information.
requirements
2-3
Check Title
Check ID
ID
Check safety-related diagnostic

settings for solvers
DO178C_02
mathworks.do178.SolverDiagnost
icsSet

model diagnostic configuration
parameters pertaining to solvers
Systems, R2015b.
DO-331 References
MB.6.3.3.b Software
architecture is consistent
MB.6.3.3.e Software
architecture conforms to
standards
For details, refer to Check

safety-related diagnostic settings
for solvers in Simulink
Verification and Validation DO178C/DO-331 Checks and
Model Advisor User
Information.
settings for sample time
mathworks.do178.SampleTimeDi
agnosticsSet
DO178C_03

parameters pertaining to sample
time comply with the Modeling
Systems, R2015b.
MB.6.3.3.b Software
MB.6.3.3.e Software
standards
For details, see Check safetyrelated diagnostic settings for

sample time in Simulink
Model Advisor User
Information.
2-4
Check Title
Check ID
ID

settings for signal data
DO178C_04

parameters pertaining to signal
data comply with the Modeling
Systems, R2015b.
DO178C_05

parameters pertaining to
parameters comply with the
Modeling Guidelines for HighIntegrity Systems, R2015b.
mathworks.do178.DataValiditySi
gnalsDiagnosticsSet

settings for parameters
mathworks.do178.DataValidityPar
amDiagnosticsSet
DO-331 References
standards
standards
accurate
For details, see Check safety- MB.6.3.2.g Algorithms are
related diagnostic settings for
accurate
signal data in Simulink
MB.6.3.3.b Software
Verification and Validation DO- architecture is consistent
178C/DO-331 Checks and
Model Advisor User
Information.
accurate
accurate

parameters in Simulink
Model Advisor User
Information.
2-5
Check Title
Check ID
ID

settings for data used for
debugging
DO178C_06
mathworks.do178.DataValidityD
ebugDiagnosticsSet

debugging comply with the
DO-331 References
standards
standards

data used for debugging in
Validation DO-178C/DO-331
Checks and Model Advisor User
Information.
settings for data store memory
mathworks.do178.DataStoreMem
oryDiagnosticsSet
DO178C_07

parameters pertaining to data
store memory comply with the
MB.6.3.3.b Software

data store memory in Simulink
Model Advisor User
Information.
2-6
Check Title
Check ID
ID

settings for type conversions
DO178C_08
mathworks.do178.TypeConversio
nDiagnosticsSet

parameters pertaining to type
conversions comply with the
DO-331 References
accurate
accurate

type conversions in Simulink
Model Advisor User
Information.
settings for signal connectivity
mathworks.do178.ConnectivitySi
gnalsDiagnosticsSet
DO178C_09

parameters pertaining to type
conversions comply with the
standards
standards

signal connectivity in Simulink
Model Advisor User
Information.
2-7
Check Title
Check ID
ID

settings for bus connectivity
DO178C_10
mathworks.do178.ConnectivityB
ussesDiagnosticsSet

parameters pertaining to bus
connectivity comply with the
DO-331 References
MB.6.3.3.b Software

bus connectivity in Simulink
Model Advisor User
Information.
Check safety-related diagnostic DO178C_11
settings that apply to function-call
connectivity
mathworks.do178.FcnCallDiagno
sticsSet

function-call connectivity
Systems, R2015b.
MB.6.3.3.b Software
For details, see Check safetyrelated diagnostic settings that

apply to function-call
connectivity in Simulink
Model Advisor User
Information.
2-8
Check Title
Check ID
ID

settings for compatibility
DO178C_12
mathworks.do178.Compatability
DiagnosticsSet

compatibility comply with the
DO-331 References
MB.6.3.3.b Software

compatibility in Simulink
Model Advisor User
Information.
settings for model referencing
mathworks.do178.MdlRefDiagno
sticsSet
DO178C_13

parameters pertaining to model
referencing comply with the
MB.6.3.1.d High-level
requirements are verifiable
MB.6.3.2.d Low-level
requirements are verifiable
MB.6.3.3.b Software

model referencing in Simulink
Model Advisor User
Information.
2-9
Check Title
Check ID
ID
Check safety-related model

referencing settings
DO178C_14
mathworks.do178.MdlRefOptSet

model configuration parameters
for model referencing are set to
generate code for a safetyrelated application.
For details, see Check safetyrelated model referencing
settings in Simulink
Model Advisor User
Information.
Check safety-related code

generation settings
DO178C_15

for code generation comply with
the Modeling Guidelines for
High-Integrity Systems, R2015b.
DO178C_16

report displays model version
information.
mathworks.do178.CodeSet
Display model version

information
mathworks.do178.MdlChecksum
DO-331 References
MB.6.3.1.b High-level
requirements are accurate and
consistent
MB.6.3.2.b Low-level
consistent
MB.6.3.3.b Software
MB.6.3.1.c High-level
requirements are compatible
with target computer
MB.6.3.2.c Low-level
requirements are compatible
with target computer
For details, see Check safety- requirements conform to
related code generation settings standards
in Simulink Verification and
Checks and Model Advisor User standards
Information.
requirements
Not Applicable (for
documentation only)
For details, see Display model

version information in Simulink
Model Advisor User
Information.
2-10
Check Title
Check ID
ID

settings for saving
DO178C_17
mathworks.do178.SavingDiagnos
ticsSet
DO-331 References

MB.6.3.3.b Software
Validation shall verify that the architecture is consistent
on the Diagnostics > Saving
pane are set for a safety-related
application.
saving in Simulink Verification
and Validation DO-178C/DO331 Checks and Model Advisor
User Information.
Check for blocks that do not link DO178C_18

to requirements
mathworks.do178.RequirementIn
fo

model blocks and objects link to
requirements document.
For details, see Check for
blocks that do not link to
requirements in Simulink
Model Advisor User
Information.

settings for model initialization
mathworks.do178.InitDiagnostics
Set
DO178C_19
MB.6.3.1.f High-level
requirements trace to system
requirements
MB.6.3.2.f Low-level
requirements trace to highlevel requirements

MB.6.3.3.b Software
Validation shall verify that the architecture is consistent
initialization are set according to
model initialization in Simulink
Model Advisor User
Information.
2-11
Check Title
Check ID
ID
Check state machine type of

Stateflow charts
DO178C_20

Validation shall verify that state
machine types comply with the
Check Stateflow charts for

DO178C_21
ordering of states and transitions

Validation shall verify that chart
state/transition execution order
complies with the Modeling
Systems, R2015b.
mathworks.do178.hisf_0001
DO-331 References
consistent
standards
For details, see Check state
machine type of Stateflow
charts in Simulink Verification consistent
and Validation DO-178C/DO- MB.6.3.2.e Low-level
331 Checks and Model Advisor requirements conform to
User Information.
standards
MB.6.3.3.b Software
MB.6.3.3.e Software
standards
MB.6.3.3.b Software
MB.6.3.3.e Software
standards
For details, see Check

Stateflow charts for ordering of
states and transitions in
Information.
2-12
Check Title
Check ID
ID
Check Stateflow debugging

options
DO178C_22

Stateflow debugging options
Systems, R2015b.
DO178C_23

Validation shall verify that
lookup table blocks are
configured to generate out-ofrange checking code.
Check usage of lookup table

blocks
mathworks.do178.LUTRangeChe
ckCode
DO-331 References
consistent
standards
Stateflow debugging options in consistent
Checks and Model Advisor User standards
Information.
accurate
accurate
For details, see Check usage of

lookup table blocks in Simulink
Model Advisor User
Information.
Check Stateflow charts for
uniquely defined data objects
mathworks.do178.hisl_0061
DO178C_24

Stateflow charts using data
objects comply with the
MB.6.3.2.b Accuracy and

Consistency of Low-Level
Requirement

Stateflow charts for uniquely
defined data objects in
Information.
2-13
Check Title
Check ID
ID
Check usage of Math Operations DO178C_25

blocks
mathworks.do178.MathOperation
sBlocksUsage

Validation shall verify that math
operations blocks comply with
DO-331 References
accurate
accurate

Math Operations blocks in
Information.
Check usage of Signal Routing
blocks
DO178C_26
mathworks.do178.SignalRouting
BlockUsage

Signal Routing blocks comply
with the Modeling Guidelines
for High-Integrity Systems,
R2015b.

accurate
accurate

Signal Routing blocks in
Information.
Check usage of Logic and Bit
Operations blocks
mathworks.do178.LogicBlockUs
age
DO178C_27

Logic and Bit Operations blocks
Systems, R2015b.

accurate
accurate

Logic and Bit Operations
blocks in Simulink Verification
User Information.
2-14
Check Title
Check ID
ID
Check usage of Ports and

Subsystems blocks
DO178C_28
mathworks.do178.PortsSubsyste
msUsage

Validation shall verify that Ports
and Subsystems blocks comply
R2015b.
DO-331 References
standards
standards

Ports and Subsystems blocks in
Information.
Check for inconsistent vector
indexing methods
DO178C_29
mathworks.do178.hisl_0021

Validation shall verify that the Consistency of Low-Level
vector indexing methods comply Requirements
R2015b.
inconsistent vector indexing
methods in Simulink
Model Advisor User
Information.
Check for blocks not

recommended for C/C++
production code deployment
mathworks.do178.PCGSupport
DO178C_30

Validation shall identify blocks Consistency of Low-Level
not supported by code
Requirements
generation or not recommended
for C/C++ production code
deployment.
blocks not recommended for
C/C++ production code
deployment in Simulink
Model Advisor User
Information.
2-15
Check Title
Check ID
ID
Check for MATLAB Function

interfaces with inherited
properties
DO178C_31
mathworks.do178.himl_0002

MATLAB Functions comply
R2015b.
DO-331 References
Consistency of Low-Level
Requirements

MATLAB Function interfaces
with inherited properties in
Information.
Check for MATLAB Function
metrics
DO178C_32

complexity and code metrics for
MATLAB functions comply
R2015b.
standards
standards

MATLAB Function metrics in
Information.
2-16
Check Title
Check ID
ID
Check MATLAB Code Analyzer DO178C_33

messages

MATLAB Functions for
%#codegen directive,
MATLAB Code Analyzer
messages, and justification
message IDs comply with the
DO-331 References
accurate
accurate

MATLAB Code Analyzer
messages in Simulink
Model Advisor User
Information.
Check MATLAB code for global DO178C_34
variables

MB.6.3.3.b Software
global variables comply with the
MATLAB code for global
variables in Simulink
Model Advisor User
Information.
2-17
Check Title
Check ID
ID
Check for variant blocks with

Generate preprocessor
conditionals active
DO178C_35
mathworks.do178.VariantBlock

variant blocks are not
configured to generate preprocessor conditionals.
DO-331 References
requirements

variant blocks with Generate
preprocessor conditionals
active in Simulink Verification
User Information.
2-18
2.2 DO-178C/DO-331 Checks and Model Advisor User

Information
The Simulink Verification and Validation user information for the DO-178C/DO-331 checks
is in the Simulink Verification and Validation DO-178C/DO-331 Checks and Model Advisor
User Information.
To access the user information document, on the MATLAB command line, type qualkitdo
to open the Artifacts Explorer. The document is in Simulink Verification and Validation.
2-19
2.3 Model Coverage Operational Requirements

The Simulink Verification and Validation product includes model coverage, which helps you
assess the extent to which test cases exercise the pathways through a model. Model coverage
works for Simulink blocks, including the MATLAB Function block, and Stateflow charts.
The following table lists the Simulink Verification and Validation model coverage capabilities
supported by the DO Qualification Kit. Also listed are the corresponding DO-178C or DO-331
(references that include MB prefix) section to which each capability applies. The user is
responsible for ensuring that the tool features they rely on to eliminate, reduce or automate the
process are sufficiently covered by Tool Operational Requirements (reference DO-300 Section
6.2.1.aa).
Model Coverage Operational Requirements Summary

Model Coverage
Capability
ID
Cumulative Coverage MC_SL_CUMC Simulink Verification and

Validation shall determine the
accumulated coverage results
of model coverage analysis.
For details, see Cumulative
Coverage in Simulink
Verification and Validation
Model Coverage User
Information.
Simulink Cyclomatic MC_SL_CYC

Complexity

cyclomatic complexity of a
model.
For details, see Cyclomatic
Complexity in Simulink
Model Coverage User
Information.
DO-178C/DO-331 References
MB.6.3.1.d High-level requirements are
verifiable
MB.6.3.2.d Low-level requirements are
verifiable
MB.6.3.3.d Software architecture is
verifiable
6.4.5 Test cases and procedures are
correct
6.4.4.1 Test coverage of high-level
requirements is achieved
6.4.4.1 Test coverage of low-level
verifiable
MB.6.3.1.e High-level requirements
conform to standards
verifiable
MB.6.3.2.e Low-level requirements
conform to standards
verifiable
MB.6.3.3.e Software architecture
conforms to standards
2-20
Model Coverage
Capability
ID
Decision Coverage
(DC)
MC_SL_DC

Validation shall determine the verifiable
DC of a model.
For details, see Decision
Coverage (DC) in Simulink
Model Coverage User
Information.
Condition Coverage
(CC)
MC_SL_CC

CC of a model.
For details, see Condition
Coverage (CC) in Simulink
Model Coverage User
Information.
Modified
Condition/Decision
Coverage (MC/DC)
Saturation on integer
overflow coverage

MC_SL_MCDC Simulink Verification and
Validation shall determine the verifiable
MC/DC of a model.
verifiable
For details, see Modified
MB.6.3.2.a Low-level requirements
Condition/Decision Coverage comply with high-level requirements
(MCDC) in Simulink
correct
Model Coverage User
Information.
MC_SATINT Simulink Verification and
Validation shall provide
saturation on integer overflow
coverage.
For details, see Saturation on
integer overflow coverage in
Validation Model Coverage
User Information.
2-21
Model Coverage
Capability
ID
Lookup Table
Coverage (LUT)
MC_SL_LUT

Validation shall provide LUT correct
coverage.
For details, see Lookup
Table Coverage in Simulink requirements is achieved
Model Coverage User
Information.
Signal Range
Coverage
MC_SL_SR

signal range coverage.
For details, see Signal Range
Model Coverage User
Information.
Signal Size Coverage MC_SL_SS

signal size coverage.
For details, see Signal Size
Model Coverage User
Information.
Relational Boundary
Coverage
MC_SL_RELB Simulink Verification and

OUND
verifiable
relational boundary coverage. MB.6.3.3.d Software architecture is
verifiable
For details, see Relational
Boundary Coverage in
correct
Validation Model Coverage requirements is achieved
User Information.
2-22
Model Coverage
Capability
ID
Abs block
MC_SL_ABS
Combinatorial Logic
block
Dead Zone block

Validation shall provide DC,
saturate on integer overflow,
and relational boundary
coverage for the Abs block.*

verifiable
verifiable
verifiable
comply with high-level requirements
MC_SL_COMB Simulink Verification and
LOGIC
Validation shall provide DC 6.4.5 Test cases and procedures are
and CC for the Combinatorial correct
Logic block.*
MC_SL_DEAD Simulink Verification and
Validation shall provide DC, requirements is achieved
saturate on integer overflow,
coverage for the Dead Zone
block.*
Direct Lookup Table

(n-D) block
MC_SL_DLUT Simulink Verification and

ND
Validation shall provide LUT
coverage for the Direct
Lookup Table (n-D) block.*
Discrete-Time
Integrator block
MC_SL_DINT Simulink Verification and

Validation shall provide DC
and saturate on integer
overflow coverage for the
Discrete-Time Integrator
block.*

correct

verifiable
verifiable
verifiable
Enabled and Triggered MC_SL_ENTR Simulink Verification and
G
Validation shall provide DC, 6.4.5 Test cases and procedures are
Subsystem block
CC, and MCDC for the
correct
Enabled and Triggered
Subsystem block.*
2-23
Model Coverage
Capability
ID
Enabled Subsystem
block

MC_SL_ENAB Simulink Verification and
Enabled Subsystem block.*
Fcn block
MC_SL_FCN

Validation shall provide CC,
MCDC, and relational
boundary coverage for the
Fcn block.*
For Iterator, For

Iterator
Subsystem blocks
MC_SL_FOR

for the For Iterator, For
Iterator Subsystem blocks.*
If, If Action
Subsystem blocks
MC_SL_IF

CC, MCDC, and relational
boundary coverage for the If,
If Action Subsystem blocks.*
Interpolation Using
Prelookup block
MC_SL_PREL Simulink Verification and

UT
Validation shall provide LUT
Interpolation Using Prelookup
blocks.*

correct
Logical Operator
block
MC_SL_LOGI Simulink Verification and

C
Validation shall provide CC
and MCDC coverage for the
Logical Operator blocks.*

verifiable
verifiable
verifiable
correct
2-24
Model Coverage
Capability
ID
1-D Lookup Table

block
MC_SL_LUT1 Simulink Verification and

D
lookup table and saturate on
integer overflow coverage for
the 1-D Lookup Table block.*
2-D Lookup Table

block
MC_SL_LUT2 Simulink Verification and

D
the 2-D Lookup Table block.*

correct
n-D Lookup Table

block
MC_SL_LUTN Simulink Verification and

D
the n-D Lookup Table block.*
MATLAB Function
block
MC_SL_EML
MinMax block
Model block

CC, MCDC, and relational
MATLAB Function block.*

verifiable
verifiable
MC_SL_MINM Simulink Verification and
verifiable
AX
Validation shall provide DC MB.6.3.2.a Low-level requirements
MinMax block.*
correct
MC_SL_MDLR Simulink Verification and
EF
CC, MCDC, LUT, Simulink 6.4.4.1 Test coverage of low-level
Design Verifier, saturate on requirements is achieved
integer overflow coverage,
coverage for the Model
block.*
Multiport Switch
block
MC_SL_MPSW Simulink Verification and

ITCH
Multiport Switch block.*
Rate Limiter block
MC_SL_RATLI Simulink Verification and

M
relational boundary coverage
for the Rate Limiter block.*
2-25
Model Coverage
Capability
ID
Relational Operator
block
MC_SL_RELO Simulink Verification and

P
condition and relational
Relational Operator block.*
Relay block
MC_SL_RELA Simulink Verification and

Y
coverage for the Relay
block.*
Saturation block
MC_SL_SATU Simulink Verification and

RATE
coverage for the Saturation
block.*
Sqrt, Signed Sqrt,

Reciprocal Sqrt
MC_SL_SQRT Simulink Verification and

saturate on integer overflow
coverage for the Sqrt, Signed
Sqrt, Reciprocal Sqrt blocks.*
Switch block
MC_SL_SWIT Simulink Verification and

CH
saturate on integer overflow
coverage, and relational
Saturation block.*
Switch Case, Switch

Case Action
Subsystem blocks
MC_SL_CASE Simulink Verification and

for the Switch Case, Switch
Case Action Subsystem
blocks.*
Triggered Subsystem MC_SL_TRIG Simulink Verification and

block
GER
Triggered Subsystem block.*
While Iterator, While MC_SL_WHIL Simulink Verification and
Iterator Subsystem
E
blocks
for the While Iterator, While
Iterator Subsystem blocks.*
2-26
Model Coverage
Capability
ID
Stateflow Cyclomatic MC_SF_CYC

Complexity

cyclomatic complexity of
Stateflow objects.**
Chart as triggered
Simulink block
MC_SF_TRIG
GER

for Charts used as a triggered
Simulink block.**
Chart with Exclusive

OR Substates
MC_SF_CHAR Simulink Verification and

TSUB
for Charts containing
exclusive OR substates.**
Superstate with
Exclusive OR
Substates
MC_SF_SUPE Simulink Verification and

RSUB
for Superstates containing
exclusive OR substates.**
State with On
Event_Name Action
Statement
MC_SF_ONEV Simulink Verification and

ENT
for States with ON
Event_Name Action
Statement.**
Conditional transition MC_SF_TRAN Simulink Verification and

decision
DEC
for conditional transitions.**
Condition coverage of MC_SF_TRAN Simulink Verification and
transition decision
COND
for transition decisions.**
MC/DC coverage of
transition decision
MC_SF_TRAN Simulink Verification and

MCDC
MCDC for transition
decisions.**
Relational boundary MC_SF_BOUN Simulink Verification and

coverage for Stateflow DCOV
boundary coverage for
Stateflow.**
2-27
Model Coverage
Capability
ID
Truth Table conditions MC_SF_TTCO Simulink Verification and

ND
for Truth Tables.
For details, see Model
Coverage for Stateflow Truth
Tables in Simulink
Model Coverage User
Information.
Truth Table decisions MC_SF_TTDE Simulink Verification and
C
for Truth Tables.
Tables in Simulink
Model Coverage User
Information.
Truth Table MC/DC
MC_SF_TTMC Simulink Verification and

DC
MCDC for Truth Tables.
Tables in Simulink
Model Coverage User
Information.
2-28
Model Coverage
Capability
ID
Simulink Design
Verifier Coverage
MC_SLDV_SL Simulink Verification and

DV
Simulink Design Verifier
Coverage.

correct
For details, see Simulink

Design Verifier Coverage in
Validation Model Coverage
User Information.
Proof Assumption
block
MC_SLDV_PR Simulink Verification and

OOFASM
coverage for the Proof
Assumption block.*
Proof Objective block MC_SLDV_PR Simulink Verification and

OOFOBJ
coverage for the Proof
Objective block.*
Test Condition block
MC_SLDV_TE Simulink Verification and

STCON
coverage for the Test
Condition block.
Test Objective block
MC_SLDV_TE Simulink Verification and

STOBJ
coverage for the Test
Objective block.*
* See Model Objects That Receive Coverage in Simulink Verification and Validation Model Coverage User
Information.
** See Model Coverage for Stateflow Charts in Simulink Verification and Validation Model Coverage User
Information.
2-29
2.4 Model Coverage User Information

The Simulink Verification and Validation user information for the model coverage is in the
Simulink Verification and Validation Model Coverage User Information.
To access the user information document, on the MATLAB command line, type qualkitdo
to open the Artifacts Explorer. The document is in Simulink Verification and Validation.
2-30
3 Installation
To use the Simulink Verification and Validation product, install the following MathWorks
products:
MATLAB
Simulink
Instructions for installing the products are available at the MathWorks Documentation Center,
R2015b:
Installation
3-2
4 Operational Environment
The DO Qualification Kit product supports the following operating environments for the
Simulink Verification and Validation product:
Personal computer
One of the following operating systems:
- Microsoft Windows
- Linux1
MATLAB Software
Simulink Software
Simulink Verification and Validation software
Linux is a registered trademark of Linus Torvalds.

Qualkitdo SLVNV Tor

Caricato da

Informazioni sul documento

Titolo originale

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

Qualkitdo SLVNV Tor

Caricato da

Copyright:

Formati disponibili

DO Qualification Kit

Simulink Verification and Validation

How to Contact MathWorks

Sales and services:

The MathWorks, Inc.

COPYRIGHT 20092015 by The MathWorks, Inc.

New for Version 1.0 (Applies to Release 2009a)

The document identifies:

Features of the Simulink Verification and Validation product.

DO Qualification Kit (for DO-178)

1.1 Simulink Verification and Validation Product

Simulink Verification and Validation automates requirements tracing, modeling standards

2.1 DO-178C/DO-331 Checks Operational

Block parameter settings

DO-178C/DO-331 Checks Operational Requirements Summary

Check safety-related optimization DO178C_01

Simulink Verification and

Check safety-related diagnostic

Simulink Verification and

For details, refer to Check

Simulink Verification and

For details, see Check safetyrelated diagnostic settings for

Check safety-related diagnostic

Simulink Verification and

Simulink Verification and

Check safety-related diagnostic

For details, see Check safetyrelated diagnostic settings for

Check safety-related diagnostic

Simulink Verification and

For details, see Check safetyrelated diagnostic settings for

Simulink Verification and

For details, see Check safetyrelated diagnostic settings for

Check safety-related diagnostic

Simulink Verification and

For details, see Check safetyrelated diagnostic settings for

Simulink Verification and

For details, see Check safetyrelated diagnostic settings for

Check safety-related diagnostic

Simulink Verification and

For details, see Check safetyrelated diagnostic settings for

Simulink Verification and

For details, see Check safetyrelated diagnostic settings that

Check safety-related diagnostic

Simulink Verification and

For details, see Check safetyrelated diagnostic settings for

Simulink Verification and

For details, see Check safetyrelated diagnostic settings for

Check safety-related model

Simulink Verification and

Check safety-related code

Simulink Verification and

Simulink Verification and

Display model version

For details, see Display model

Check safety-related diagnostic

Simulink Verification and

Check for blocks that do not link DO178C_18

Simulink Verification and

Check safety-related diagnostic

Simulink Verification and

Check state machine type of

Simulink Verification and

Check Stateflow charts for