Mission-Critical Applications

MEN is an expert in electronics for safety-critical (mission-critical) applications. Failures of safety-critical electronic systems can result in loss of life, substantial financial damage or can severely harm the environment. Such systems are used for example in medical equipment, in airplanes, in trains, or in nuclear power stations.

Computer architectures with safety-critical requirements are very complex. Considerations about such systems include safety-critical characteristics, reliability questions, error behavior modes, Safety Integrity Levels (up to SIL 3 or SIL 4) and the major IEC and EN standards, e.g., EN 50155, or DO-160 for avionics (up to DAL-A or DAL-B).

A safety-critical system is affected by safe hardware boards and systems, a safe operating system and application software, even the tools that are used must be safe. And last but not least there is a dedicated development and validation, production and qualification process.

While the architecture concepts for different markets are rather similar, the way of thinking and developing a computer system for a safety-critical application is rather diverse between railways, avionics, medical engineering or car manufacturing - to name just a few.

The measures to achieve safe hardware include powerful planning tools with version management, the V-Model as one of the most popular development models, safety-management tools like risk management, requirement tracing, obsolescence management, product qualification, HASS and HALT.

Risk analysis methods describe how safety can be evaluated. The tools that can be used to calculate safety range from the well-known MTBF and MTBR values to Lambda, FMEA and BITE identification.

Consequently, a safe system architecture, both in hardware and in software, can have different structures of redundant sub-units, enhanced by diversity, and considering the relation between safety and availability.