Training Catalog

TRAINING CATALOG

Vitaminate the carreer of your Engineers, Managers and Technicians

COME AND TALK US ABOUT YOUR PASSIONS

OLGHAM is a Simplified Joint Stock Company created on October 1, 2018 by two shareholders from the world of on-board aeronautical certification, but also benefiting from very significant experiences in air traffic, on-board space, ground, industry and the automotive sector.

Our values Integrity – « I say what I do and I do what I say »

Transparency – « Key element of mutual and reciprocal trust »

Our Sectors

Our Competences DOA

Certification –Critical areas Software Technical Debt Resolution

Systems and softwares quality assurance Cindynical software Optimization

RAMS security analysis Artificial Intelligence

Statut audits Mutualization Safety and Security

Training Off-site Training Off-site trainings are short duration, focuses on business skills or associated methods and techniques. They take place at the OLGHAM premises in Toulouse (France). We welcome you from 9:30 am to 5:30 pm. Meals are included in the training price. The trainings are carried out for a minimum of 2 trainees.

These training courses are schedules on fixed dates. Nonetheless, we collect your needs all year round. Once a sufficient number of participants is reached, an additional off-site session can be scheduled. On-site Training

On-site training is our effective solution for tailor-made projects. It grants more flexibility since it is implemented independently of the dates appearing in our schedule. For this, we operate throughout France and internationally.

Tailored Training

Can’t find what you are looking for un our catalog? Contact us:

Mrs Sandrine RENAUD Training Responsible Phone: +33(0)6.49.31.30.23 Email : [email protected]

Video-Conference

OLGHAM has chosen to work with the TIXEO tool; a French provider of secure videoconferencing solutions guaranteeing strict confidentiality organizations of their communications.

This system also used by the French government is labeled for its reliability as regards of its cybersecurity.

The advantages of the solution:

• End-to-end encryption (video, audio, data) in a multi-point situation

• Sharing of applications and screens

• High definition image: ultra HD / 4K

• Smart multi-screen display

• Work in conference or collaborative mode

• Possibility to create working groups

• Interoperability (computer, tablet, smartphone)

SUMMARY

01 ORGANIZATION MANAGEMENT 01

02 SAFETY DEVELOPEMENT PROCESS 07

03 ARTIFICIAL INTELLIGENCE DEVELOPMENT PROCESS 53

Planning

REF Dur. Jan. Feb March Apr. May June July Sept. Oct. Nov. Dec. ORGANIZATION MANAGEMENT CERTIFICATION ISO 9001 : Quality Management System OLID-FF20-0001 1 day 5 EN 9100: Quality Management System (Aerospace – Space OLID-FF20-0002 1 day 2 – Defense) PROJECT MANAGEMENT Advanced Project Management OLID-FF20-0003 2 days 3-4 QUALITY ASSURANCE ECSS-Q-ST-10C and ECSS-Q-ST-20C: Product Assurance OLID-FF20-0004 2 days 10-11 Management TL 9000: Quality Excellence in the telecommunication OLID-FF20-0005 1 day 31 industry SAFETY DEVELOPEMENT PROCESS PROJECTS IEC 61508: Functional safety of control systems OLID-FF20-0006 1 day 7 ECSS-M-ST-80C: 2008: Risk Management OLID-FF20-0007 1 day 18 7 AGILE (SCRUM) Methods OLID-FF20-0008 1 day 4 SYSTEM / CERTIFICATION Safety analysis: ARP4754A ED-79 and ARP4761 ED-135 OLID-FF20-0009 2 days 29-30 ARP4754A / ARP4761/ RTCA DO-178C-ED-12C / RTCA DO- OLID-FF20-0010 4 days 21-24 254 ED-80 Safety (RAMS) : AHA, PASA, FHA, PSSA (FMEA, FTA, DD, MA, OLID-FF20-0011 3 days 5-7 CCA (PRA, CMA, ZSA), FMES, SSA, ASA) IEC 61508: Functional safety of control systems - System OLID-FF20-0012 1 day 30 part ECSS-Q-ST-30 and 40: HA, FMEA, FMECA, FTA, HSIA OLID-FF20-0013 1 day 2 11 Systems plans development OLID-FF20-0014 1 day 25 System validation and verification optimization strategy OLID-FF20-0015 2 days 22-23

REF Dur. Jan. Feb March Apr. May June July Sept. Oct. Nov. Dec. SOFTWARE / CERTIFICATION EU 373/2017 regulation OLID-FF20-0016 1 day 7 Clausier : Note DGA-16 OLID-FF20-0017 1 day 18 MIL-STD 498 OLID-FF20-0018 1 day 16 10 IEC 61508: Functional safety of control systems - Software OLID-FF20-0019 2 days 8-9 part ISO/ IED 29110: systems and software engineering for very OLID-FF20-0020 1 day 24 11 small organizations (SME) DO-178C ED-12C OLID-FF20-0021 5 days 14-18 DO-178C ED-12C and RTCA DO-254 ED-80: Overlap areas for OLID-FF20-0022 3 days 5-7 VHDL (FPGA) coding DO-200A ED-76: Standards for processing aeronautical data OLID-FF20-0023 1 day 8 DO-248C / ED-94: Complement to ED-12C and ED-109A OLID-FF20-0024 1 day 8 DO-278A / ED-109A: Software Integrity Assurance OLID-FF20-0025 5 day 8 DO-297 ED-124: Integrated Modular Avionics (IMA) OLID-FF20-0026 1 day 9 ED-153 : Software Security Assurance OLID-FF20-0027 1 day 4 DO-330 / ED-215: Software Tool Qualification OLID-FF20-0028 2 days 30 DO-331 / ED-218: models development OLID-FF20-0029 2 days 12 DO-332 / ED-217: Object oriented Technologies OLID-FF20-0030 2 days 26-27 DO-333 / ED-216: formal methods verification OLID-FF20-0031 2 days 25-26 ECSS-Q-ST-30: HSIA & FMEA SW OLID-FF20-0032 1 day 28 ECSS Q-ST-80C: Software Product Assurance OLID-FF20-0033 2 days 15-16 ECSS-E-ST-40C: Space Software Engineering OLID-FF20-0034 2 days 9-10 SIA: Software Integrity Assurance OLID-FF20-0035 1 day 17 Software Plans Development OLID-FF20-0036 1 day 21 AGILE method: Economic method alternative OLID-FF20-0037 1 day 9 16 SEU and MBU robust software developments OLID-FF20-0038 1 day 20 Optimization, validation and verification software strategy OLID-FF20-0039 2 days 16-17 SDRA: Static detection of Residual Anomalies OLID-FF20-0040 2 days 23-24 RD3 : Robustness and Defensive Driven Development OLID-FF20-0041 1 day 19 15 The 9 software structural covers OLID-FF20-0042 1 day 6 Data Coupling Analysis (CA) and Coupling Controls (CC) OLID-FF20-0043 1 day 1 Non-regression impact analysis process OLID-FF20-0044 1 day 12 14

Dynamic software integrity control OLID-FF20-0045 1 day 29 1 COTS integration in software development OLID-FF20-0046 1 day 27 Reuse of in-service experience OLID-FF20-0047 1 day 3 HARDWARE / CERTIFICATION IEC 61508: Functional safety of control systems - hardware OLID-FF20-0048 1 day 15 17 part DO-254 / ED-80: on-board electronic design assurance OLID-FF20-0049 2 days 28-29 ART equipment ARTIFICIAL INTELLIGENCE DEVELOPMENT PROCESS METHODOLOGY CERNA Report – Robotic Research Ethics OLID-FF20-0050 1 day 30 18 AI : CoDANN – Neuronal networks OLID-FF20-0051 2 days 31

ORGANIZATION MANAGEMENT

ISO 9001 Quality Management System OLID-FF20-0001

The implementation of a quality management system makes it possible to develop knowledge AUDIENCE AND PREREQUISITES within the company, to develop group dynamics, to ensure communication and understanding This training is for anyone involved in the construction and / or between departments, services or poles of your management of a quality management system (QMS). company.

It is aimed in particular for quality or QSE managers and ISO 9001 Time: 1 day quality correspondents.

Price on demand None prerequisites are necessary.

PEDAGOGICAL OBJECTIVES

Building and/or sustaining a QMS effectively Mastering the architecture and requirements of ISO 9001 2015 version Ensure performance, measure achievement of system’s objectives and drive continuous improvement Obtain/renew ISO 9001 certification PROGRAM

Introduction to ISO 9001 Vocabulary, principles and Set up your QMS issues. QMS planning (PDCA) Organization of the Identification of objectives standard Formalization of the action plan The 7 pillars of the standard Monitor and improve your Client orientation QMS Leadership Key quality indicators EDUCATIONAL RESOURCES Staff involvement Customer satisfaction Animation around a presentation. Process approach measurement Treatment of examples and feedback. Improvement Process reviews

Evidence-Based Decision Internal audits Making Non-compliance and MONITORING AND EVALUATION Management of relations corrective actions with interested parties The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 2 Email : [email protected] EN 9100 Quality Management System OLID-FF20-0002 Aerospace, Space and Defense

The EN 9100 standard is a European standard which complements the ISO 9001 standard. This AUDIENCE AND PREREQUISITES standard gives the specificities of the aeronautics, space and defense fields in quality management. This training is for anyone involved in piloting or applying a quality management system (QMS) in the aeronautics, space or defense Time : 1 day fields.

Price on demand It is aimed in particular at quality or QSE managers. Having knowledge of the ISO 9001 standard is a plus.

PEDAGOGICAL OBJECTIVES

Understand the requirements of EN 9100 v2016 Be able to meet EN 9100 requirements within the company

PROGRAM

Introduction to the EN 9100 The standards associated standard with standard EN 9100 History of the standard ISO 9001: implementation Vocabulary, principles and of a quality management issues. system Organization of the standard EN 9110: standard for maintenance, repair and The key points of the overhaul companies standard EN 9120: standard for Process control storage companies and Improved performance distributors Risk analysis Configuration management and traceability Project management EDUCATIONAL RESOURCES Evaluation of process efficiency Animation around a presentation. Product safety Treatment of examples and feedback. Prevention of counterfeit parts MONITORING AND EVALUATION The review of the 1st article The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 3

Advanced Project Management OLID-FF20-0003

While mastery of basic project management techniques is absolutely necessary, these techniques are rarely sufficient since they often AUDIENCE AND PREREQUISITES do not take into account the main component of a project: the individuals who carry it out, and in This training is for anyone involved in critical systems and / or particular in the contexts of change. software projects development applying the ARP-4754A, DO- 178C or equivalent standards. It is in particular for project managers and batch managers. Knowledge of basic project Time : 2 days management techniques is required. A first experience in project Price on demand management or team management would be a plus.

PEDAGOGICAL OBJECTIVES

Fundamental techniques of project management Present the difficulties and techniques of change management Present the specifics and give practical methods of human management within the framework of a project

PROGRAM

Reminder of the fundamentals Change management Organization of activities (OBS, Changes PBS, WBS, RAM, CBS, Project Brakes, levers, losses plans, etc.) Manage changes and impacts Development logic (Life cycles, Action plan phases, milestones, ...) based on the ARP-4754A Human management Estimates (costs, deadlines, Identify types of personalities etc.) Associated management Planning Communicate Monitoring (costs, deadlines, Motivate an employee progress, etc.) Support - coach Hypothesis management Feedback Risk & Opportunity Remote team management Management Training Communication (internal, EDUCATIONAL RESOURCES external) Outsourcing management Case study and applied exercises Continuous improvement MONITORING AND EVALUATION Agile development The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 4 Email : [email protected]

ECSS-Q-ST-10C and ECSS- Q-ST-20C OLID-FF20-0004 Product Assurance management

This training presents the quality assurance requirements for the establishment and AUDIENCE AND PREREQUISITES implementation of quality assurance programs for projects covering the design, development, This training is for anyone involved in critical systems and / or production and operation of space systems, software projects development applying ECSS standards or including their disposal. equivalent. It is in particular for product assurance engineers, quality assurance engineers and project managers who want to have a better understanding of the content of the ECSS-Q-ST-10C and ECSS-Q-ST-20C standards. A first experience in quality, quality Time : 2 days assurance, process assurance or product assurance would be a Price on demand plus.

PEDAGOGICAL OBJECTIVES

Develop the quality approach to set up at project management and product assurance level Understand the main ECSS quality standards used in the space sector

PROGRAM

ECSS-Q-ST-10C ECSS-Q-ST-20C Documentation Introduction Introduction Registers Link between Q series Principles of Quality Assurance Forms

Programming of Product Requirements Assurance Management requirements Planning: organization, General requirements: control, EDUCATIONAL RESOURCES responsibilities, resources, traceability, metrology and interfaces; calibration, quality control Animation around a presentation. Implementation: management, analysis; Treatment of examples and feedback. reporting, audits, risk Design and verification management, documentation, requirements; MONITORING AND EVALUATION registration; Procurement requirements; Configuration Management, Production, assembly and The training is carried out face to face. An Management of non- integration requirements; evaluation test as a quiz with feedback conformities, Test, acceptance & delivery from the trainer is carried out at the end Alert management requirements; Ground support equipment of the session. A live assessment is given Documentation requirements. to each participant. Registers

Forms Documentation Registers Forms

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 5 Email : [email protected]

TL 9000 OLI-FF20-0005 Quality Excellence in the telecommunication industry TL 9000 is a quality measurement system for the telecommunications industry. AUDIENCE AND PREREQUISITES

A TL 9000 certified supplier provides the This training is for people in charge of quality monitoring of "QUeST Forum" at regular intervals with Quality specific developments for the telecommunications industry. It is indicators which are stored anonymously and can in particular for project managers, technical managers, method be consulted by members. These members are the engineers and quality assurance managers. customers and suppliers who can compare the indicator communicated by its supplier with the other anonymous values of other suppliers; That PEDAGOGICAL OBJECTIVES is, evaluate your supplier on a global grid. Presentation of the comparative philosophy of the "QUeST

Forum" Time : 1 day Presentation of the two books (Book 1 and 2) and their respective roles Price on demand Presentation of the suitability with ISO 9000

PROGRAM

Principles Inspection and test status Book 2 Presentation of the "QUeST Control of product non- Metrics overview Forum" principle and the conformities General metric comparative approach Preventive and corrective requirements Identification of the recovery actions Common metrics with ISO 9000 Handling, Storage, Hardware metrics Packaging, Protection and Software metrics Book 1 Delivery Service metrics Presentation of system quality Quality record control requirements Internal quality audits Responsibilities Training System quality Services EDUCATIONAL RESOURCES Contract review Statistical techniques Design check Quality improvement and Animation around a presentation. Document and data control customer satisfaction Treatment of examples and feedback. Purchases Control of customer MONITORING AND EVALUATION products Product identification and The training is carried out face to face. An traceability evaluation test as a quiz with feedback Process control from the trainer is carried out at the end Inspection and testing of the session. A live assessment is given Control of inspection, to each participant. measurements and equipment tests

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 6

SAFETY DEVELOPMENT PROCESS

IEC 61508 Functional safety of control systems OLID-FF20-0006

The standard IEC 61508 defines requirements to ensure that systems are designed, implemented, operated and maintained to provide a precise level of integrity and safety (SIL). AUDIENCE AND PREREQUISITES This standard can be followed by all links in the This training is for anyone involved in critical systems and / or supply chain using common terminology. software projects development whose objective is to comply with Time : 1 day the IEC 61508 standard. Price on demand It is in particular for department managers, project managers and engineers involved in the development of critical systems, software and hardware according to standard IEC 61508. Having knowledge of dependability is a plus. PEDAGOGICAL OBJECTIVES Understand the requirements of IEC 61508 Be able to apply the requirements of IEC 61508 within a system project development applying this standard

PROGRAM Introduction to the IEC 61508 Quick presentation of the standard standards associated with IEC History of the standard 61508 Vocabulary, principles and Industrial processes: IEC 61511 issues. Nuclear sector: IEC 61513 Automotive sector: ISO 26262 Standard organization Aeronautical sector: DO-178 Structure General principles

SIL determination

Application areas EDUCATIONAL RESOURCES System Animation around a presentation. Software Hardware Treatment of examples and feedback.

MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from

the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 8 ECSS-M-ST-80C: 2008 Risk management OLID-FF20-0007 9 This training presents the concepts associated with risk management in general and the more specific requirements for space projects from the AUDIENCE AND PREREQUISITES ECSS-M-ST-80C standard. This training is for anyone involved in critical systems and / or Time : 1 day software projects development applying ECSS standards or Price on demand equivalent. It is in particular for project managers, batch managers and product assurance engineers who want to have a better understanding of the content of the ECSS-M-ST-80C standard. A first experience in project management would be a

plus. PEDAGOGICAL OBJECTIVES

Understand the standard ECSS-M-ST-80C

Understand the processes, management and integration of requirements Implement risk management

PROGRAM

Introduction Terminology and definitions Concept and process Responsibilities

Process Description of process and tasks

Implementation Identification of requirements Process requirements Requirements on the implementation

Documentation Registers Forms EDUCATIONAL RESOURCES Animation around a presentation.

Treatment of examples and feedback.

MONITORING AND EVALUATION The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 9 AGILE (SCRUM) METHOD OLID-FF20-0008 Economic9 alternative methods Agile methods are, since their democratization, heavily used in the world of software development. These methods, including the AUDIENCE AND PREREQUISITES SCRUM, aim to be more pragmatic and reactive than traditional methods such as the V-cycle. In This training is for any person or team involved in critical this context, this training targets to offer a software, hardware and system projects development applying or detailed view of the advantages of using the wishing to prepare the integration of SCRUM method. It is in SCRUM while confronting them with the set of particular for project managers and batch managers but also constraints that this methodology brings together. concerns team members. Knowledge of basic conventional and / Time : 1 day or Agile lifecycle project management techniques is required. Price on demand PEDAGOGICAL OBJECTIVES

Introduction to the iterative cycles of Agile methods and particularly the SCRUM method Presentation of the benefits applying SCRUM to a project Analysis of the side effects generated by the SCRUM and the means to guard against it PROGRAM

Basis Case study The context of Agile-Scrum The SCALP project: applicability of management the Agile methodology on a Roles, Artifacts and concrete case Ceremonies Lifecycle and incremental approach The differences between traditional approach and Agile

Issues Integration No backwards step EDUCATIONAL RESOURCES Anomalies management Animation around a presentation. and impact analyzes Design Treatment of examples and feedback. Verifications (Duality of cases and procedures) MONITORING AND EVALUATION Traceability The training is carried out face to face. An Quality expectations Technical debt evaluation test as a quiz with feedback from Design the trainer is carried out at the end of the Status documents session. A live assessment is given to each Team consistency participant. COTS Conclusion

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 10 Email : [email protected] SAFETY ANALYSES ARP4754A ED-79 and ARP4761 ED-135 OLID-FF20-0009

The ARP4754A ED-79 and ARP4761 ED-135 standards present the development methods of AUDIENCE AND PREREQUISITES on-board systems for aeronautical applications. Since a civil aircraft can only fly if it has obtained This training is for project managers, quality engineers, systems a certificate of airworthiness from the development engineers, safety engineers involved in the design authorities, compliance with ARP standards is a and obtention of certification applicable to avionics software or requirement. electronic avionics equipment. This training will also introduce the differences PEDAGOGICAL OBJECTIVES between the world of aeronautical safety analyzes compared to the space field but also to Acquire knowledge of the context of aircraft certification the ATM field. Understand the roles and responsibilities of those involved in the certification process Time : 2 days Position risk management when designing a system Acquisition of RAMS analysis methodology Price on demand

PROGRAM

Certification CCA (Common Cause Differences between the Responsibilities Analysis), aeronautical RAMS and the Regulations ZSA (Zonal Safety Analysis), CNS / ATM RAMS Certification PRA (Particular Risks Analysis), Introduction of differences CMA (Common Mode MET-001 presentation ARP 4754A ED-79 presentation Analysis) EU 373/2017 Presentation General Introduction Essential principles reminder Definition of development The inclusion of security levels (fDAL, iDAL) analyzes in the system Impact of DAL and safety development cycle requirements on architectures System level process assurance. EDUCATIONAL RESOURCES Differences between the ARP4761 ED-135 aeronautical RAMS and the Animation around a presentation. RAMS Analyses: space RAMS Treatment of examples and feedback. FHA (Functional Hazard Introduction of differences Assessment), HA Presentation (ECSS-Q-ST-40- MONITORING AND EVALUATION PSSA (Preliminary System 02C) Safety Assessment), FMEA-FMECA Presentation The training is carried out face to face. SSA (System Safety (ECSS-Q-ST-30-02C) An evaluation test as a quiz with Assessment), FTA Presentation (ECSS-Q-ST- feedback from the trainer is carried 40-12C) FTA (Fault Tree Analysis), out at the end of the session. A live DD (Dependence Diagram), MA (Markov Analysis), assessment is given to each FMEA (Failure Mode and participant. Effects Analysis),

FMES (Failure Mode and Effects Summary),

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 11 Email : [email protected] ARP4754A ED-79, OLID-FF20-0010

ARP4761 ED-135, DO-178C-ED-12C, DO-254 ED-80 AUDIENCE AND PREREQUISITES The development constraints associated with This training is for anyone involved in certification obtention of certification’s obtention for avionics software avionics software or electronic equipment, namely: project and electronic avionics equipment are diverse. managers, safety engineers, embedded systems design Thus, the DO-178C standard sets the security engineers, system development engineer, software or hardware, conditions for critical avionics software and the quality engineers, maintenance and support engineers. DO-254 is its counterpart to follow the evolution of electronic equipment at the component level.

Time : 4 days PEDAGOGICAL OBJECTIVES Price on demand Present the context of certification of critical on-board systems in aeronautics Present the standards ARP 4761 (SAE-1996) ARP 4754A (SAE- 2010), DO-178C ED-12C and DO-254 ED-80

PROGRAM

Introduction Tools and methods Context of the certification Link with system analyzes and Roles and responsibilities of hardware development actors Type Certification (TC) process Equipment level MMEL approach requirements analysis Link with airworthiness Definition and allocations of monitoring (DOA, STC) FDAL and IDAL (function / item development assurance level) EDUCATIONAL RESOURCES Development process Description of the impacts on Animation around a presentation. Requirements the architectural choices and Treatment of examples and feedback. Validation of requirements the development process Checking the implementation SEU analysis, common modes, Configuration Management IEHA MONITORING AND EVALUATION Process assurance The training is carried out face to face.

Additional rules and An evaluation test as a quiz with Risk Management Process standards feedback from the trainer is carried System safety analysis AMC 20-125A, CM-SWCEH- out at the end of the session. A live activities and link with 001 hardware development assessment is given to each Detailed presentation of Managing COTS components participant. analyzes Integration of components Architectural devices

Relationship with the

authorities

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 12

Safety (RAMS) OLID-FF20-0011 AHA, PASA, FHA, PSSA (FMEA, FTA, DD, MA, CCA (PRA, CMA, ZSA), FMES, SSA, ASA) AUDIENCE AND PREREQUISITES It should be borne in mind that the Software's Functional Safety (FS) is carried by a set of This training is for anyone involved in the study of software preliminary analyzes upstream of development, reliability or on-board hardware, namely: project managers, but also by a set of activities to be carried out. engineers or safety technicians, quality engineers or more The consistency of these approaches leads to generally any engineer from a design office. being able to demonstrate the reliability of the PEDAGOGICAL OBJECTIVES software. Acquire the methods and tools used for the conduct of Time : 3 days operational safety studies (RAMS) Price on demand Integrate FS requirements into a program or project development Determine preventive and protective measures

PROGRAM

Introduction Operational Safety methods Managing COTS components Definitions, objectives Risk analyzes Integration of components Risk levels assessment FMECA Architectural devices Levels’ classification: SIL, PL, Fault trees ASIL Case study Concept of independence Analyses FS requirements Functional analysis RAMS concepts: Reliability, Availability, Maintainability, Objective allocation EDUCATIONAL RESOURCES Security Reliability diagram and associated calculations Animation around a presentation. The different standards Failure analysis (FMECA) Treatment of examples and feedback. ARP, IEC61508, IEC61511, Fault tree and associated IEC61513, IEC62061, calculations MONITORING AND EVALUATION ISO26262, ISO13849 ... Criticality matrix, severity Applicability for electronic Notions of dangerous failures The training is carried out face to face. Coverage rate concepts control systems An evaluation test as a quiz with Proposed corrective actions. Restriction of use ... feedback from the trainer is carried Presentation and results’ interpretation. out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 13

IEC 61508: Functional safety of control systems OLID-FF20-0012

System part

IEC 61508 defines requirements to ensure that AUDIENCE AND PREREQUISITES systems are designed, implemented, operated and maintained to provide a precise level of integrity This training is for anyone involved in critical systems and / or and safety (SIL). software projects development to comply with the IEC 61508 Part 1 of this standard specifies the requirements standard. for the "System" part It is in particular for department managers, project managers and Time : 1 day engineers involved in the development of critical systems, software and hardware according to IEC 61508 standard. Price on demand Knowledge in functional safety is an advantage.

PEDAGOGICAL OBJECTIVES

Understand the requirements of IEC 61508 standard. Be able to apply the requirements of IEC 61508 within a system project development applying this standard.

PROGRAM

Introduction to IEC 61508 Systems integration standard Systems operation and History of the standard maintenance procedures Vocabulary, principles and Systems modification issues. Systems verification Link between the other parts of the standard: (parts 1 to 7). Presentation of the standards associated with IEC 61508 Standard organization Industrial processes: IEC 61511 Structure The nuclear sector: IEC 61513 EDUCATIONAL RESOURCES General principles The Automotive sector: ISO 26262 Animation around a presentation. SIL determination The aeronautical sector: DO178 Treatment of examples and feedback.

Detailed study of the standard MONITORING AND EVALUATION concerning the System part Specification of system design The training is carried out face to face. requirements An evaluation test as a quiz with Planning for systems security feedback from the trainer is carried out validation at the end of the session. A live Systems design and assessment is given to each development participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 14

ECSS-Q-ST-30 and 40 OLID-FF20-0013 HA, FMEA, FMECA, FTA, HSIA

By pushing us to anticipate failures and breakdowns in our system, safety studies allow us to increase and justify the confidence we place in AUDIENCE AND PREREQUISITES the system we are developing. This training is for anyone involved in critical systems and / or Time : 1 day software projects development applying ECSS standards or equivalent Price on demand It is in particular for safety engineers, quality assurance engineers and project managers who want to have a better understanding of the content of the ECSS-Q-ST-30 and ECSS-Q-ST-40 standards.

PEDAGOGICAL OBJECTIVES

Develop the quality approach to implement at project management and product assurance level

Understand the ECSS standards relating to safety used in the space sector

PROGRAM

Introduction to ECSS Introduction to Software standards Safety Presentation of the existing standards

Integration of risk analyzes into the development cycle Benefits of a risk analysis approach Roles of dependability studies

Presentation of ECSS-Q-ST-30 and ECSS-Q-ST-40 standards EDUCATIONAL RESOURCES ECSS Q-ST-30-02: FMECA ECSS Q-ST-40-02: Hazard Animation around a presentation. Analysis Treatment of examples and feedback. ECSS Q-ST-40-03: Safety Risk Assessment MONITORING AND EVALUATION ECSS Q-ST-40-10 : Common The training is carried out face to face. An Cause/Common Mode evaluation test as a quiz with feedback from Analysis the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 15

System Plans development OLID-FF20-0014

The purpose of system level planning process is to define the means of producing a system that will meet the requirements and provide the level of confidence in line with the project AUDIENCE AND PREREQUISITES expectations. This training is for any person or team, involved in critical system This training objective is to present the development or not, wishing to achieve a level of projects fundamentals but also to go deeper into assurance for certification or to improve the reliability of its optimizing and avoiding the dangers of writing processes. It is in particular for project managers and batch system plans. managers but also concerns team members.

Time : 1 days A good knowledge of ARP 4754A / ED-79A standard is an advantage. Price on demand PEDAGOGICAL OBJECTIVES

Know the major subjects to anticipate and detail in the system

project plans Reduce documentation efforts without sacrificing information input Understand the optimization of writing plans from one project to another PROGRAM

Fundamentals Optimization System plans and ARP Reduce documentation 4754A / ED-79A efforts while maintaining standard. the same level of The major technical information subject tos to be covered Planning the in the plans subcontracting Incremental method for Information granularity writing system plans to be placed in the plans from one project to The main types of plans: another EDUCATIONAL RESOURCES Development plan Safety Program Animation around a presentation. Verification plan Treatment of examples and feedback. Process Assurance Plan MONITORING AND EVALUATION Plan Configuration The training is carried out face to face. An Management Plan structure evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 16

System validation and OLID-FF20-0015 verification optimization

strategy The aim of this training is to exceed the objectives of the ARP-4754A and the DO-178C / AUDIENCE AND PREREQUISITES ED-12C by proposing new validation and This training is for anyone involved in the development of highly verification paradigms, and thus allow the best integrated or complex on-board systems. It is in particular for possible reconciliation of certification constraints project managers, method engineers, certification managers for and industrial constraints. Several alternative on-board systems and quality assurance managers. solutions will be exposed. PEDAGOGICAL OBJECTIVES Time : 2 days Present the validation and verification strategy applying to Price on demand the on-board system Present the classic issues inherent in a classic V&V approach Identify the cases where an ARP-4754A type V&V approach could lead to counterproductive side effects Explain how to organize a certification argument in the

context of a deviation

PROGRAM Strategy Verification System level verification No backwards step

Classic issues of the RBT Root cause analysis of approach of the DO-178C failed processes Benefits of HLR / LLR merge Static verification of an for verification efforts MVDS (Multiple Version SVCP vs (VC; VP) distinction Dissimilar Software)

Identification of effective Checking FLS (Field validation strategies. Loadable Software) Calculation of WCET Validation Levels of severity from IEC 61508-3 Tool qualification Definition of the different Context of IA / ML / DL nominal ranges Content of a SVP Supervision processing

SEU / MBU and means of EDUCATIONAL RESOURCES detection and correction Case study and applied exercises Problem of real numbers, object-oriented languages. MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each

participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 17

EU 373/2017 Regulation OLID-FF20-0016 New European approaches for

carrying out safety studies

Regulation 373/2017 proposes a new approach AUDIENCE AND PREREQUISITES for carrying out safety studies. It presents a new This training is for anyone involved in carrying out safety studies approach to improve the performance of these with a European ANSP. studies by taking into account the existing systems already in operation. The scope of Knowledge of 482/2008 and 1035/2011 standards is an application of this regulation covers: Civil advantage. aviation authorities, ATM / ANS, ATS, MET, AIS, DAT, CNS, ATFM, ASM, ASD, NM and PERS. PEDAGOGICAL OBJECTIVES

Time : 1 day Present the methodology followed by the ANSP (Air Navigation Service Provider) Price on demand Present the issues currently encountered Introduce to fundamental changes for the application of 373/2017

PROGRAM

Carrying out security studies The new regulation The issues 373/2017 The methodology applied by ANSP Distinction between ATS and non-ATS services

Distinction between "safety Current regulation context assessment" and "safety EU 482/2008, 1034/2011 and 1035/2011 support assessment" Problems encountered Risk acceptability Shortcuts followed by other Acceptable level of ANSPs robustness The need for a new Security criteria regulation

EDUCATIONAL RESOURCES Case study MONITORING AND EVALUATION The training is carried out face to face. An evaluation with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 18

Clausier Note DGA-16 2017/06/23 Version OLID-FF20-0017

software and complex electronic components requirements referential for functional safety AUDIENCE AND PREREQUISITES

This so-called “DGA-16” or “Clausier” This training is for people in charge of projects carried out technical note is a reference for the development on behalf of the Armaments General Directorate of software and hardware in a critical (Aeronautical techniques). It concerns project managers, aeronautical environment. but also software and hardware managers. It also concerns It is produced by the DGA-TA to ease related the quality managers who will have to demonstrate its developments. correct application. TECHNICAL NOTE N° 16-DGATA-P1301261003001-1P-C PEDAGOGICAL OBJECTIVES

Time : 1 day Contextualization of Clausier in the existing regulatory environment Price on demand Overview of software and hardware requirements Strengths and weaknesses identification and alternative approaches proposal to avoid DGA-16 weaknesses.

PROGRAM

Situation Levels 1, 2 and 3 Contextualization of Software requirements Clausier in the existing Hardware requirements regulatory environment Strengths and weaknesses Principles Clausier strengths and Criticality levels for SW and weaknesses identification HW on software aspects System / subsystem Similarities for the material allocation process aspects Presentation of alternative Milestones approaches to overcome Milestones presentation the identified weaknesses Identification of associated EDUCATIONAL RESOURCES documents Animation around a presentation. Contributors presentation Treatment of examples and feedback.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 19

MIL-STD 498 498 - United States Military-Standard OLID-FF20-0018

Software Developments Requirements and documentation This standard replaces the DOD-STD-2167A, AUDIENCE AND PREREQUISITES DOD-STD-7935A, and DOD-STD-1703 standards. This training is for people in charge of non-critical software It is the foundation of ISO and IEEE projects development who wish to be inspired by a rational, standards, especially the IEEE 12207 simple and effective approach. Due to its notoriety, this standard standard. can easily be offered in commercial quotes as a means of It integrates software development into the compliance to guarantee quality development. system context and proposes concrete and pragmatic requirements without distinction of level of criticality. In this sense, this standard PEDAGOGICAL OBJECTIVES sui to most software developments in non- critical areas, and can be offered as an Contextualization of MIL-STD-498 in the existing regulatory acceptable means of compliance with environment customers. Presentation of its philosophy and requirements Strengths and weaknesses identification and alternative Time : 1 day approaches proposal to avoid this framework weaknesses Price on demand

PROGRAM

Situation Process assurance Strengths and weaknesses MIL-STD-498 Management of safety and MIL-STD 498 strengths and contextualization in the security aspects weaknesses identification on existing regulatory SW/HW interactions software aspects environment Alternative approaches Presentation of suitability for Detailed requirements presentation to overcome the non-critical software Planning, requirements, identified weaknesses developments design, verification, configuration management, Principles quality assurance EDUCATIONAL RESOURCES Software issues anticipation Preparation for use, from system level preparation for software Animation around a presentation. Interactions consideration transition, product Treatment of examples and feedback. between hardware and assessment, corrective software actions management, internal MONITORING AND EVALUATION reviews, risk management, Generic requirements indicators, suppliers, The training is carried out face to face. An Development of reusable interfaces evaluation test as a quiz with feedback software components Process improvement from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 20

IEC 61508: Functional Safety of Control systems OLID-FF20-0019

Software part

IEC 61508 defines requirements to ensure that AUDIENCE AND PREREQUISITES integrated systems and software are designed, implemented, operated and maintained to provide This training is for anyone involved in critical systems and / or a precise level of integrity and safety (SIL). software projects development to comply with the IEC 61508 Part 1 of this standard specifies the requirements standard. for the “Software” part. It is in particular for department managers, project managers and Time: 2 days engineers involved in the development of critical systems, Price on demand software and hardware according to standard IEC 61508.

Knowledge in Safety is an advantage. PEDAGOGICAL OBJECTIVES

Understand the requirements of IEC 61508 Be able to apply IEC 61508 requirements within a software project development using this standard.

PROGRAM

IEC 61508 standard Planning for software security Introduction validation History of the standard Software design and Vocabulary, principles and development issues Systems integration Link between the other parts of Software operation and the standard: (parts 1 to 7) maintenance procedures Software modification Organization of the standard Software verification Structure General principles Standards associated with IEC 61508 SIL determination Industrial processes: IEC 61511 Nuclear sector: IEC61513 EDUCATIONAL RESOURCES Detailed study of the standard Automotive sector: ISO 26262 concerning the software part Aeronautical sector: DO178 Animation around a presentation. Specification of software Treatment of examples and feedback. design requirements MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 21

ISO/ IED 29110 OLID-FF20-0020 Systems and software engineering for very small organizations (SME)

The ISO / EID 29110 standard was designed to AUDIENCE AND PREREQUISITES meet the needs of small structures (project or This training is for any person or team (less than 25 members) company) of less than 25 people. System oriented, involved in non-critical system projects development and wishing the standard offers a set of best practices firmly to improve the reliability of their processes. It is aimed in anchored in the reality of the economic fabric of particular at project managers and batch managers. small organizations. PEDAGOGICAL OBJECTIVES Present the requirement drafting at system level as part of Time : 1 day this standard Price on demand Present managerial methods introduced with this standard Introduce quality management and best practices for the system development

PROGRAM

The fundamentals The standard challenges Document structure

Management Goals Product inputs and outputs Roles assignment

EDUCATIONAL RESOURCES Animation around a presentation. Treatment of examples and feedback.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 22

DO-178C/ED-12C Software considerations in airborne OLID-FF20-0021 systems and equipment certification

DO-178C/ED-12C leads on-board software development and testing activities for AUDIENCE AND PREREQUISITES commercial aircrafts. It provides recommendations on engineering aspects for This training is for anyone involved in the development of on- critical on-board software, taking a process- board software, as: software managers, project managers, oriented approach. method and quality managers, software architects, software verifiers and software coders. It can also be useful for project Time : 5 days owners who wish to understand this standard. Price on demand PEDAGOGICAL OBJECTIVES

Understand the process to be applied for an on-board software qualification and certification on civil aircraft Understand the recommendations applied to software for on- board systems Have a clear and succinct vision of DO-248C/ED-94C supplements content (DO-330 / ED-215, DO-331 / ED-218, DO- 332 / ED-217, DO-333 / ED-216) Be able to apply these benchmarks to critical developments in on-board aeronautics.

PROGRAM

Introduction to DO-178C/ED- Overview of planning, Introduction to supplements 12C development, verification, DO-330 / ED-215 – Software Regulatory context: quality and configuration tools qualification Standards histories management processes DO-331 / ED-218- and other applicable standards Objectives, activities, expected Development and verification (CRI, IP, CM, etc.), results, known hard points and in aeronautics based on Authorities role and resources existing workarounds. formalized models Safety approach introduction: DO-332 / ED-217 – Object Interaction between failures, COTS components Oriented Techniques breakdowns and vulnerabilities management DO-333 / ED-216 – Formal / system of systems, systems / COTS planning, acquisition and proof hardware / software, configuration management Links between software Demonstration of integrity EDUCATIONAL RESOURCES security and acceptable risks, interfaces. Correlation between criticality Animation around a presentation. and design effort. DO-248C / ED-94C Treatment of examples and feedback. DO-178C/ED-12C objectives clarification MONITORING AND EVALUATION

Differences DO-178B and DO- The training is carried out face to face. An 178C evaluation test as a quiz with feedback Evolutions clarification from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 23

DO-178C/ED-12C and DO- 254/ED-80 OLID-FF20-0022

Overlay areas for VHDL (FPGA) coding

The DO-178C and DO-254 standards separation AUDIENCE AND PREREQUISITES overlap when the hardware implementation of This training is for anyone involved in the development of systems VHDL code in programmable components brings and / or software for highly integrated or complex on-board a level of complexity such that it becomes difficult to demonstrate full verification coverage by the systems. It is for project managers, software managers, method exact DO-254 application. engineers, certification managers for embedded systems and quality assurance managers. General knowledge of software The question about the DO-178C complementary engineering or software quality assurance would be an application for these parts is often required by advantage. certification authorities. PEDAGOGICAL OBJECTIVES Time : 5 days Present DO-178C and DO-254 standards Price on demand Present the specific impacts of VHDL coding on safety aspects

Present the general strategy of EASA certification authorities Present the V&V strategy applying to software and hardware for on-board systems Organize a certification argument in the context of a specific standard deviation.

PROGRAM

Context Problem of real numbers, System and software as object-oriented languages. verification object Checking deactivated code and Interdependence between additional code, PDS, COTS error / failure and vulnerability Verification Verification based on DAL Automated verification and Strategies illusion of coverage EDUCATIONAL RESOURCES Verification of the pseudo- RBT approach of the DO-178C Case analysis HLR / LLR merge benefits code SVCP vs (VC; VP) distinction Verification of ADIs MONITORING AND EVALUATION Checking the outputs of an Architecture boxes according The training is carried out face to face. An to DAL / AL / SWAL. UMS No backwards step evaluation with feedback from the trainer Validation Root cause analysis of failed is carried out at the end of the session. A Tool qualification according to processes live assessment is given to each DO-330 Static verification of an MVDS participant. Definition of the different (Multiple Version Dissimilar nominal ranges Software) Supervision processing Checking FLS (Field Loadable SEU / MBU and means of Software) detection and correction Calculation of WCET Levels of severity from IEC 61508-3 Context of IA / ML / DL Content of an SVP

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 24 DO-200A/ED-76A Standards for processing aeronautical OLID-FF20-0023 data

The DO-200A / ED-76A provides the standards AUDIENCE AND PREREQUISITES and minimum guidelines for the processing of aeronautical data used for navigation, flight This training is for any person or team, involved in critical planning, knowledge of terrain or even for flight software projects development or not, wishing to achieve an simulators. assurance level with a view to certification or to improve the The training objective is to provide with the bases reliability of its processes. It is in particular for project managers for certification of field data for aeronautics as and batch managers. well as specificities of this reference system. PEDAGOGICAL OBJECTIVES

Introduce the specific concepts to the aeronautical data Time : 1 day processing Price on demand Present the standard requirements at process level Present the context and the process of demonstrating compliance of aeronautical data to the authorities

PROGRAM

The fundamentals Data quality Traceability Aeronautical Data Chain

Process requirements Compliance plan Data requirements and quality Data processing requirements and processes Quality management within the framework of DO-200A

Demonstration of compliance The process Audits and their specificities EDUCATIONAL RESOURCES Alternative demonstration methods Animation around a presentation. Treatment of examples and feedback.

MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from

the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 25 Email : [email protected] DO-248C/ED-94C OLID-FF20-0024 Complement to ED-12C and ED-109A DO-248C / ED-94C is a complement to DO-178C

and to ED-109A which brings together the questions raised by manufacturers and AUDIENCE AND PREREQUISITES authorities on these guidelines. The document is made of frequently asked questions (FAQ), This training is for anyone involved in the development of systems working documents (WD) and a justification for and / or software for highly integrated or complex on-board the sections that could raise a problem. systems. It is in particular for at project managers, software managers, method engineers, certification managers for on- This training is in line with the aim of DO-248C board systems CNS/ATM as well as quality assurance managers. by offering an analysis of the questions and answers delivered throughout the document. Prior knowledge or experience of DO-178C / ED-12C and DO-278A / ED-109A standards is strongly recommended to follow this Time : 1 day training. Price on demand PEDAGOGICAL OBJECTIVES

Introduction to DO-248C supplement Provide a better understanding of DO-178C/ED-12C and DO- 278A/ED-109A objectives Understand the challenges of certification and the functioning of the authorities and entities in charge of the process PROGRAMME

Fundamentals Discussion Paper Reminders on standards Context Clarification document The main clarifications on origin and creation DO-178/ED-12C Complement structure The main clarifications on Overview ED-109A

Justifications FAQ The chapters concerned System level issues Clarifications made in terms The parallels and of Process commonalities of DO- EDUCATIONAL RESOURCES 178C/ED-12C and ED-109A The main questions specific Animation around a presentation. to a standard Treatment of examples and feedback.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 26 DO-278A ED-109A - Software integrity OLID-FF20-0025

assurance

Considerations for Communication, AUDIENCE AND PREREQUISITES Navigation, Surveillance and Air Traffic Management Systems This training is for anyone involved in the development of on- DO-278A / ED-109A leads the development and board software, such as: software managers, project managers, testing activities of critical Communication, method and quality managers, software architects, software verifiers and software coders. It can also be useful for project Navigation and Surveillance (CNS) and Air Traffic owners who wish to understand the standard. Management (ATM) systems software. It provides recommendations on engineering PEDAGOGICAL OBJECTIVES aspects of critical on-board software, taking a process-oriented approach. Understand the process to be applied for a qualification and approval of CNS/ATM software Time : 5 days Understand the recommendations applying to software for embedded systems Price on demand Have a clear and succinct vision of supplements (DO-330/ED- 215, DO-331/ED-218, DO-332/ED-217, DO-333/ED-216)

content standard and DO-248C/ED-94C Highlight the differences with the ED-153 Be able to apply these standards to critical developments in ATM field. PROGRAM

DO-178C / ED-12C COTS components Introduction to supplements Introduction management DO-330 / ED-215 – software Regulatory context: Planning, acquisition and tools Qualification Standards histories configuration management of DO-331 / ED-218- and other applicable standards COTS Development and verification (PHARE, DISCC, etc.), Demonstration of integrity in aeronautics based on Authorities role and resources interfaces formalized models Safety approach: DO-332 / ED-217 – Object Interaction between DO-248C / ED-94C Oriented Techniques breakdowns, failures and DO-278A/ED-109A objectives DO-333 / ED-216 – Formal vulnerabilities / system of clarifications proof systems, systems / hardware / software, Differences from ED-153 Links between software Highlighting points of EDUCATIONAL RESOURCES security and acceptable risks, divergence Correlation between criticality Animation around a presentation. and design effort. Treatment of examples and feedback.

Planning, development, MONITORING AND EVALUATION verification, quality and configuration management The training is carried out face to face. An processes evaluation test as a quiz with feedback Objectives, activities, expected from the trainer is carried out at the end of results, known hard points and existing workarounds the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 27 DO-297 ED-124 Integrated Modular Avionics (IMA) OLID-FF20-0026

The IMA co nsists in reducing the software functions a level of identical modular computers. Integrated Modular Avionics (IMA) integrates the AUDIENCE AND PREREQUISITES power of computers to handle several functions This training is for people involved in the approval and continuing in order to reduce consumption and costs related airworthiness circuit of IMA systems working on civil certification to on-board computing and ease its projects as well as any person; engineer or project manager, maintenance. involved in the certification process, or in the systems integration Time : 1 day and to developers, integrators, certification applicants. Price on demand PEDAGOGICAL OBJECTIVES Understand the development and certification phases of

architectural system Study the components safety and security Understand the quality assurance process related to IMA systems design

PROGRAM

IMA in certification process Planning System Development Safety analyzes IMA integration and original equipment manufacturers (OEM) Responsibility of suppliers Partitionning and Health Monitoring V&V

Link with other standards ARP4764A DO-178C and DO-254 ETSO-2C153 ARINC 653 EDUCATIONAL RESOURCES Case analysis MONITORING AND EVALUATION The training is carried out face to face. An evaluation with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 28 ED-153 – Software OLID-FF20-0027 Security Assurance

Guidelines for ANS Software Safety Assurance AUDIENCE AND PREREQUISITES EUROCAE ED-153 standard is used in software This training is for software quality engineers, software project integrity verification in an ATM (air traffic managers, software architects, software developers, auditors and management) and CNS (Communication, testers involved in integrity assurance procedures Navigation and Surveillance) context. General knowledge of software engineering and software quality Time : 1 day assurance is required for this training. Price on demand PEDAGOGICAL OBJECTIVES Present the complementarity between ED-109 and ED- 153 Know the link to IEC/ISO 61508 Know the approach to implementing CNS/ATM software security assurance Know the limitations defined by the DSNA/DTI (METLOG)

PROGRAM

Introduction Software Security Defining software security Assurance Needs and development Safety demonstration: ADF processes; and FMEA); SWAL (Software Implementation of software Assurance Level) targets and security; measures; Introducing the ED-153 Life cycles: primary, Environment (PHARE, support, organizational and DISCC, AR-ATM) additional COTS issues Introducing the annexes: ESARR 6 traceability Benefits and differences of ED-153 compared to ED- 109A; Relationship with supervisory authorities EDUCATIONAL RESOURCES Case study MONITORING AND EVALUATION The trainings are carried out in person. An evaluation with feedback from the trainer will be carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 29 DO-330 / ED-215 OLID-FF20-0028 Software tools qualification DO-330/ED-215, Software tool qualification considerations is a supplement to DO-178C/ED- AUDIENCE AND PREREQUISITES 12C and DO-278A/ED-109A. Software tools are widely used in multiple fields, to help develop, This training is for anyone involved in the development of verify, or control other software. The aim of this on-board software such as: software managers, project training is to provide a global understanding of managers, method and quality managers, software the DO-330/ED-215 expectations and to architects, software auditors and software coders. It can articulate alternative methods that reconcile also be useful for mastered works who wish to grasp this certification and industrial reality. standard. Time : 2 days A good knowledge of DO-178C/ED-12C and/or DO- Price on demand 278A/ED-109A is required. PEDAGOGICAL OBJECTIVES Understand the approach to qualify software tools Have a clear and succinct vision of supplements (DO- 331/ED-218, DO-332/ED-217, DO-333/ED-216) content standard Be able to apply this standard to critical developments in on-board aeronautics and CNS/ATM field.

PROGRAM

DO-330/ED-215 Additional considerations Introduction Multifunctional tools Standards history, Reusing qualified tools Tool definition Qualifying COTS tools Qualification goals In-service experience Characteristics and levels of tool qualification Introduction to supplements Planning, development, DO-331/ED-218 verification, quality and development and configuration management verification from aerospace EDUCATIONAL RESOURCES processes presentation formalized models, Objectives, activities, DO-332/ED-217: Object Animation around a presentation. expected results, hard Oriented Technologies Treatment of examples and feedback. points and existing DO-333/ED-216: Formal workarounds Methods MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of

the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 30 DO-331 / ED-218 Aeronautical development and OLID-FF20-0029 verification based on formalized models

AUDIENCE AND PREREQUISITES The DO-331/ED-218, Model-Based Development and Verification is a supplement to DO- This training is for anyone involved in the development of on- 178C/ED-12C and DO-278A/ED-109A. It is a board software such as: software managers, project managers, guideline leading the use of formalized models in method and quality managers, software architects, software on-board and ground software. auditors and software coders. It can also be useful for project managers who wish to apprehend this standard. The use of MBD in software development offers many advantages but also many pitfalls. This A good knowledge of do-178C/ED-12C and/or DO-278A/ED-109A training purpose is to provide an overview of best is necessary to use formalized models. practices and methods for the DO-331 application. PEDAGOGICAL OBJECTIVES

Time : 2 days Understand the development and verification approach based on formalized models Price on demand Have a clear and succinct view of other supplements (DO- 331/ED-218, DO-332/ED-217, DO-333/ED-216) content

Be able to apply this standard to critical developments in on- board aeronautics and CNS/ATM field.

PROGRAM

DO-331/ED-218 Introduction Introducing development Introduction to supplements Standard history, processes, auditing, quality and DO-330/ED-215–Software Tools Introducing development by configuration management Qualifications model Goals, activities and expected DO-332/ED-217–Object Oriented Presentation of specification and results Technologies design models from formalized Review of known hard points and DO-333/ED-216–Formal Methods specifications workarounds

Presentation of impacts on development from models EDUCATIONAL RESOURCES Lifecycle modification Validation of textual Animation around a presentation. requirements, verification Treatment of examples and feedback.

REGISTRATION : Sandrine RENAUD 31 Phone : +33(0)6.49.31.30.23 Email : [email protected] DO-332 / ED-217 Object-Oriented Technologies OLID-FF20-0030

DO-332 / ED-217, is a supplement to DO-178C standard on Object-Oriented Technologies (OOT) AUDIENCE AND PREREQUISITES and related techniques from DO-178C/ED-12C and DO-278A/ED-109A. It gives the main This training is for any person or team, involved in critical or non- orientation of objects-oriented technologies in - critical software projects development wishing to achieve a level software critical security and gives and of assurance for certification or to improve its processes introduction to OOT. reliability. It is in particular for project managers and batch managers, but also for team members. The purpose of this training is to provide an overview of best practices and methods for DO- A good knowledge of DO-178C/ED-12C and/or DO-278A/ED-109A 332 application. standard is necessary to orientate themselves in the use of Object-Oriented Technologies. Time : 2 days PEDAGOGICAL OBJECTIVES Price on demand Understand the approach to apply for the use of object- oriented technologies Have a clear and succinct vision of the content of other supplements (DO-330 / ED-215, DO-331 / ED-218, DO-333 / ED-216) Be able to apply these standards to critical developments in on-board aeronautics and CNS/ATM PROGRAM

Introduction to DO- Development, quality Introduction to 332/ED-217 verification and supplement Standards history configuration DO-330/ED-215–Software Presentation of object management Tools Qualifications DO-331/ED-218– development and its Goals, activities and Development and issues regarding results verification from advantages and Hard spots and aerospace models disadvantages in a safe workarounds DO-333/ED-216–Formal context Methods

EDUCATIONAL RESOURCES

Animation around a presentation. Treatment of examples and feedback.

MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each

participant.

REGISTRATION : Sandrine RENAUD 32 Phone : +33(0)6.49.31.30.23 Email : [email protected] DO-333 / ED-216 Formal methods verification OLID-FF20-0031

DO-333/ED-216 Formal Methods Supplement, is a supplement from DO-178/ED-12C and DO- AUDIENCE AND PREREQUISITES 278/ED-109A. It deals with Formal Methods whose, at this time, no avionics certification This training is for any person or team, involved in critical or non- project has been recognize for the formal critical software projects development wishing to achieve a level evidence use. However, there are formal of assurance for certification or to improve its processes technologies that would ease the development of reliability. It is in particular for project managers and batch avionics software. managers, but also for team members.

The purpose of this training is to provide an A good knowledge of DO-178C/ED-12C and/or DO-278/ ED-109A overview of this uncommon but advantageous standards is necessary to use of formal evidence method. method of formal evidence demonstration as described by DO-333. PEDAGOGICAL OBJECTIVES

Time : 2 days Understand the procedure to apply for use of formal methods Price on demand Have a clear and succinct vision of the content of other supplements (DO-330 / ED-215, DO-331 / ED-218, DO-332 /

ED-217) Be able to apply these standards to critical developments in on-board aeronautics and CNS/ATM PROGRAM

Introduction to DO333/ED- Introduction to supplement 216 DO-330/ED-215–Software Standards history Tools Qualifications Presentation of Formal DO-331/ED-218– Verification Development and verification Interaction with DO- from aerospace models 331/ED-218 DO-332/ED-217–Object Strengths and weakness and Oriented Technologies of each formal analysis Development, quality verification and EDUCATIONAL RESOURCES configuration management Expected goals, activities Animation around a presentation. and results Treatment of examples and feedback. Review of known hard steps and workarounds MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD 33 Phone : +33(0)6.49.31.30.23 Email : [email protected] ECSS-Q-ST-30 OLID-FF20-0032 HSIA & FMEA SW

Software robustness to hardware AUDIENCE AND PREREQUISITES failures and software design flaws This training is for anyone involved in critical systems and/or software projects development applying ECSS or equivalent Anticipating the failures of our software and standards. ensuring that the software is properly specified to react towards hardware failures is an important It is in particular for safety engineers, quality assurance engineers step in operational security process and project managers who want to have a better understanding of ECSS-Q-ST-30 standards content and especially the links Time : 1 day between FMEA and HSIA. Price on demand PEDAGOGICAL OBJECTIVES

Develop the quality approach to implement at project management and product assurance level

Understand the main ECSS normative standards

regarding functional safety used in the industrial space sector PROGRAM

ECSS Standards Safety and robustness Introduction The FMEA as justification Presentation the different choice for design and standards architecture

Risk analyses integration Complementary into the development cycle operational safety analyses Interest of a risk analysis FHA approach CMA Functional safety studies CCA EDUCATIONAL RESOURCES roles Contingency Analysis Animation around a presentation. Introducing FMEA and HSIA Treatment of examples and feedback. FMEA processes: Software failures effects analysis MONITORING AND EVALUATION HSIA: software and The training is carried out face to face. An hardware interactions evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 34

ECSS-Q-ST-80C OLID-FF20-0033 Software Product Assurance

This training presents quality assurance AUDIENCE AND PREREQUISITES requirements for design, development, and the operational use of software in Space Systems This training is for anyone involved in critical systems and/or sector. software projects development applying ECSS or equivalent Time : 2 days standards. It is in particular for quality assurance engineers and project Price on demand managers who require a clear view of software certification impact on their project or system and a better understanding ECSS-Q-ST-80C standard content.

A first experience in quality, quality assurance, process assurance or product assurance would be an advantage. PEDAGOGICAL OBJECTIVES

Develop the quality approach to implement at project management and product insurance level

Understand the main ECSS quality normative standards used in space sector PROGRAM

ECSS standards ECSS-Q-ST-80C standards introduction presentation Introducing the different Standard organization standards Implementation of software quality assurance Quality assurance Expected documentation integrated into the development cycle Introduction to software Quality Assurance. safety principles The advantage of a software EDUCATIONAL RESOURCES quality assurance approach Animation around a presentation. Treatment of examples and feedback.

MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each

participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 35

ECSS-E-ST-40C OLID-FF20-0034 Space Software Engineering

The development of an on or off-board software in space sector requires a rigor and a sufficient AUDIENCE AND PREREQUISITES level of quality to ensure the people and/or product safety. The ECSS-E-ST-40C discusses the This training is for anyone involved in critical systems and/or engineering processes that need to be put in software projects development applying ECSS or equivalent place in order to achieve these goals. standards. It is in particular for project managers, system engineers and product insurance engineers who want to have a 2 days Time : better understanding of the ECSS-E-ST-40C standard content. A Price on demand first experience in system/software or space development would be an advantage.

PEDAGOGICAL OBJECTIVES

Understand ECSS-E-ST-40C standard Understand processes, management and requirements integration Implement software project management

PROGRAM

Introduction Requirements Documentation Terminology and definitions Identifying requirements for Expected documents Concept and process each process: presentation Responsibilities • Software system requirements Software engineering process • Software management Link to Systems Engineering, • Engineering architecture Product assurance, Production and software and Operations requirements Link with other ECSS (ECSS-E- • Software design and ST-10, ECSS-E-ST-70, ECSS-M- production ST-10, ECSS-Q-ST-80, ...). • Software Validation • Software delivery and acceptance • Software checking • Software exploitation EDUCATIONAL RESOURCES • Software maintenance Animation around a presentation. Treatment of examples and feedback.

MONITORING AND EVALUATION

The training is carried out face to face.

An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 36

SIA - Software Integrity Assurance OLID-FF20-0035

Progressivity in Software Integrity

Assurance for Small Organizations AUDIENCE AND PREREQUISITES

The SIA or Software Integrity Assurance is a This training is for any person or team, involved in critical or non- guideline offering a gradual solution and fully critical software projects development wishing to achieve a level anchored in the industrial context of a project. of assurance for certification or to improve its processes Entirely designed by OLGHAM, this method reliability. It is particularly aimed to project managers and batch achieves assurance levels by partitioning and managers, but also concerns team members gradually introducing activities required by DO- 178C, ED-109A or ED-153 standards. This PEDAGOGICAL OBJECTIVES training objective is to present this guideline in a view to be incorporated in the software Introduce whole Software Integrity Assurance development processes. Preliminary adapt the guideline in the project context and objectives Time : 1 day Price on demand

PROGRAM

Software Integrity Preliminary analysis Assurance Situation The document’s structure Adaptation to the project’s Partitioning out goals geometry Definition of a roadmap Creating in situ examples Determining a starting point Determining a starting point Related management Related management strategies strategies Achieving the goal Achieving the goal The pros and cons of using The pros and cons of using SIA SIA

EDUCATIONAL RESOURCES Animation around a presentation. Treatment of examples and feedback.

MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD 37 Phone : +33(0)6.49.31.30.23 Email : [email protected] Software plans OLID-FF20-0036 Develop ment

Producing software plans is the basis of a software development and verification strategy. They are addressed by DO-178C and DO-278C AUDIENCE AND PREREQUISITES standards and are a prerequisite for certification. This training is for any person or team, involved in critical or non- The aim of this training is to present the critical software projects development wishing to achieve a level fundamentals but also to optimize and avoid the of assurance for certification or to improve the its processes potential pitfalls of writing software plans. reliability. It is particularly aimed at project managers and batch managers, but also concerns team members. Time : 1 days A good knowledge of DO-178C and/or ED-109A standards is Price on demand desirable. PEDAGOGICAL OBJECTIVES

Know the major topics to anticipate and detail in software project plans

Reducing documentation efforts without sacrificing information Understand the plans writing optimization from one project to another PROGRAM

Fundamental Software obsolescence DO-178C / DO-278A Planning and obsolescence Software Plans and anticipation standards The material necessary to Major technical topics to be manage obsolescence addressed in the plans Granularity of information Optimization to be placed in plans Documentation reduction efforts while maintaining The main types of plans: the same level of • Development plan information • Audit plan Subcontracting planification • Quality Assurance Plan Incremental method for • Configuration writing plans from one Management Plan project to another EDUCATIONAL RESOURCES Other types of plans Animation around a presentation. Plan structure Treatment of examples and feedback.

MONITORING AND EVALUATION

The training is carried out face to face. An

evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD 38 Phone : +33(0)6.49.31.30.23 Email : [email protected] AGILE METHOD Economic method alternative OLID-FF20-0037

Since their democratization, Agile methods have

been heavily used in the world of software AUDIENCE AND PREREQUISITES development. These methods target to be more pragmatic and reactive than traditional methods This training is aimed at any person or team involved in critical such as the V-cycle. In this context, the objectives software, hardware and system projects development applying or of this training is to provide a detailed view of wishing to prepare for the integration of agile methods. It is the circumstances that justify these alternative particularly aimed at project managers and batch managers, but methods use with the aim to reduce the project concerns also team members. effort and costs. Knowledge of basic project management techniques in Time : 1 day conventional and/or Agile lifecycles is required. Price on demand PEDAGOGICAL OBJECTIVES Synthetically introduce the specifics of "LEAN," "AGILE," "SCRUM," "XP", … methods. Analyses optimization and reduction of development efforts through alternative methods

Analyze optimization and reduction of verification efforts through alternative methods PROGRAM

Fundamental Verification and alternative The most efficient timeline methods for verification and Reducing verification efforts development processes in tense environments The impact of life cycle Optimizing existing choice on development verification processes by equivalent alternative "Active multi-dissimilar" methods method for drastically

reducing audit targets and Development and development costs alternative methods Alternative methods EDUCATIONAL RESOURCES without writing requirements Animation around a presentation. Optimizing existing Treatment of examples and feedback. development processes by equivalent alternative MONITORING AND EVALUATION methods The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD 39 Phone : +33(0)6.49.31.30.23 Email : [email protected] SEU and MBU Robust software development OLID-FF20-0038

Single Event Upsets & Multiple Bit Upsets

The interaction of cosmic particles with our AUDIENCE AND PREREQUISITES atmosphere creates a neutron flow. These charges can be deposited on a microelectronics This training is for engineers and technicians concerned with device and disrupt them. This phenomenon is safety or electronic design, equipment and structure. It is called a SEU or software error when it involves 1 intended for any equipment manufacturer or system that bit. Beyond 1 bit, this phenomenon is called an produces electronic equipment or components MBU. PEDAGOGICAL OBJECTIVES

Time : 1 day Understanding the phenomenon of cosmic radiation and its Price on demand impacts Know the normative environment and analysis levels to protect your equipment/system from such interactions

PROGRAM

Environments presentation The different analyses Naturally radiative Safety Assessment Process environment Particular Risk Analysis (PRA) Space and terrestrial Qualitative -quantitative environment analysis Interaction between radiative particles and matter Prevention solutions Effects on electronic Single event effects test components Designing a system Triggering a singular event Protective barrier Factors of influence - Latitude - Longitude EDUCATIONAL RESOURCES - Earth natural protection Case analysis

MONITORING AND EVALUATION The training is carried out face to face. An evaluation test with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 40

Optimization, validation and verification software OLID-FF20-0039

strategy

AUDIENCE AND PREREQUISITES The aim of this training is to exceed the This training is for anyone involved in the development of systems objectives of ARP-4754A and DO-178C / ED- 12C by proposing new validation and verification and/or software for high-integration or complex on-board paradigms, and thus to reconcile certification systems. It is particularly for project managers, software constraints and industrial constraints at best. managers, method engineers, on-board systems certification Several alternative solutions will be on display. managers and quality assurance managers.

Time : 2 days General knowledge of DO-178 systems and software engineering or system/software quality assurance would be an advantage. Price on demand PEDAGOGICAL OBJECTIVES

Introduce the system validation and verification strategy for on-board system software Presenting the inherent classic issues in a classic V&V approach Identify cases where an ARP-4754A and DO-178 V&V type

approach could lead to counterproductive side effects Explain how to organize a certification argument in a deviation context PROGRAM

Strategy Verification Checking at the system level No backstep based on the software level Analysis of the failing processes Classic problems of DO-178C root causes RBT approach Static verification of an MVDS Benefits of HLR/LLR merge for (Multiple Dissimilar Software verification efforts version) Distinction between SVCP and FLS Check (Field Loadable (VC; VP) Software) Identifying effective validation Calculating the WCET strategies. Levels of rigor from IEC 61508-3 AI/ML/DL background Validation Content of a SVP EDUCATIONAL RESOURCES Tool Qualification according to DO-330 Case study Definition of different ranges rated MONITORING AND EVALUATION Supervision treatment The training is carried out face to face. An SEU/MBU and means of evaluation test as a quiz with feedback detection and correction from the trainer is carried out at the end Problem of real numbers, objects-oriented languages of the session. A live assessment is given Check deactivated code and to each participant. additional code, PDS, COTS

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 41

SDRA Static detection of Residual Anomalies OLID-FF20-0040

The methodology aims to highlight software

anomalies that have not been successfully AUDIENCE AND PREREQUISITES detected by the existing verification. This training is for anyone involved in software development: It is based on several lines convergence of software managers, quality managers, project managers, quality analysis that are chosen according to the engineers, software development engineers and test engineers. software product observed weaknesses. Time : 2 days PEDAGOGICAL OBJECTIVES

Price on demand Present the SDRA method (Static Detection of Residual Anomalies Identify software anomalies (coding error), verification holes Review of development and verification processes

PROGRAM

Method presentation Anomalies classification Anomalies identification Coding mistakes Curative and preventive solutions Development process Finding faulty processes Verification Validation EDUCATIONAL RESOURCES

Case study MONITORING AND EVALUATION The training is carried out face to face. An

evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 42 RD3 Robustness and Defensive Driven OLID-FF20-0041 Development

3 RD is the contraction of RDDD which is the acronym for Robustness Defensive and Driven AUDIENCE AND PREREQUISITES Development. This training is for anyone in charge of software development: 3 RD is a reverse software development method project managers, architects, development managers, audit from conventional approaches. Indeed, the managers, quality managers. software architecture and development are developed as a generic structure that implements PEDAGOGICAL OBJECTIVES all the robustness as well as the defensive in the Contextualization of errors, failures and interactions HW/SW first place. Functional development then fits and SW/SW naturally into this structure with the advantage Introducing the RD3 method to be reusable from one project to another. Appropriate reduction in verification efforts This results in an extremely robust software at a Strength of these approaches for particular contexts lower development and verification cost than acceptance (COTS, PDS, History in service, etc...) conventional development.

Time : 1 day Price on demand

PROGRAM

Situation Communication in a distributed Benefits Contextualization of errors and system Optimizing verification failures and interactions Dissimilar redundancies COTS acceptance HW/SW and SW/SW Built-In Tests (PBIT, CBIT, IBIT) Partial reuse of previously Memory redundancies developed software Weaknesses of conventional The confidence levels of acceptance verification functions Software without life cycle data Introducing the different Adapting functional branches (no specification, very few verification spaces to depending on the verification) acceptance Net analogy distribution of confidence In service history file Spreading errors importance acceptance Regression paths Supervisors Decoupling preparation in case COTS contribution to errors Dynamic control of size of modifications Contribution of SDPs to errors conservation Robust and defensive Dynamic control of data development coupling EDUCATIONAL RESOURCES Reliability Dynamic control of control Animation around a presentation. Availability coupling Treatment of examples and feedback. Maintainability Battery monitoring

Safety- harmlessness Dynamic reconfiguration MONITORING AND EVALUATION Security-confidentiality techniques 3 The training is carried out face to face. An Introducing the RD method Introducing the various "MicroSat / NanoSat" analogy transparent dynamic evaluation test as a quiz with feedback

Distinction between symptoms reconfiguration techniques from the trainer is carried out at the end

and errors/failures Focus on non-transparent of the session. A live assessment is given The different levels of dynamic reconfigurations to each participant. reliability

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 43 9 software structural covers OLID-FF20-0042

Highlighting the power of these software development analysis AUDIENCE AND PREREQUISITES Structural coverage of instructions This training is for people in charge of the development of critical Structural coverage of decisions Structural coverage of conditions in decisions software (project managers, audit managers, quality managers). (MC/DC) PEDAGOGICAL OBJECTIVES Structural coverage of assembled branches Structural coverage of data coupling Know the 9 structural software covers Structural coverage of the coupling of controls Find out all the benefits from each analysis in the Structural coverage of software components demonstration of verification completeness (verification of (CSU, CSC) the verification) Structural coverage of the worst case of execution Discover the additional demonstrative considerations of these Structural coverage of robustness analyses in traditional industrial contexts (COTS, PDS/Legacy, in Service history, etc.) Time : 1 day Find out how to easily perform these analyses without Price on demand specific tools

PROGRAM

Situation Structural coverage of the worst Use of the dilution principle Contextualization of structural case of execution COTS acceptance coverage analyses in critical Structural coverage of robustness Partial reuse of previously contexts developed software acceptance Identification of contributions Introducing adequacy for non- Software without life cycle data Stop-checking criteria critical software developments (no specification, very few Adjustment principle RBT General Principles of Structural verification) acceptance Identifying weaknesses in Coverage In service history file acceptance verification Detailed description and Detection of unexpected features presentation of how to make Additional code detection them without tools Validating deactivation Structural coverage of instructions mechanisms Structural coverage of decisions Identification of the defensive Structural coverage of conditions code in decisions (MC/DC) Traps to avoid EDUCATIONAL RESOURCES Structural coverage of assembled Non-credit verification branches Animation around a presentation. Non-credit for logical error Structural coverage of data Treatment of examples and feedback. detection coupling Non-credit of completeness of all Structural coverage of control requirements MONITORING AND EVALUATION coupling Structural flow of Non-credit of completeness of software components (CSU, CSC) The training is carried out face to face. An implementation of each requirement evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 44 Email : [email protected] Data Doupling Analysis OLID-FF20-0043 (DC) and Control Couplings

(CC) The efficient software architecture AUDIENCE AND PREREQUISITES through the streams of data and This training is for people in charge of software development: controls project managers, audit managers, quality managers. Designing software around Data and Control PEDAGOGICAL OBJECTIVES Couplings can effectively build barriers against the spread of errors, and ensures the software Contextualization of Data and Control Coupling (DC/CC) in the health of in real time. existing regulatory environment (including aeronautical certification) This training helps to demystify all the problems Introducing all subtypes of couplings related to couplings, and thus helps to guide Strength of these approaches for the particular contexts software developments from the point of view of (COTS, PDS, in service History, etc...) acceptance functional reliability and availability.

Time : 1 day PROGRAM

Price on demand Situation Contextualization of Data and Control Matching (DC/CC) in the existing regulatory environment Power of these analyses to demonstrate reliability and availability: required in critical contexts for certification

Software design Structural coverage Building a software architecture DC/CC Coverage Demonstration by couplings Measuring cohesion Identifying integrity barriers that Functional cohesion protect against the spread of Sequential cohesion errors Communication cohesion Operating safety lock in reliability Procedural cohesion and availability Cohésion temporelle Functional cybersecurity Cohésion logique EDUCATIONAL RESOURCES protection Cohésion de coïncidence Animation around a presentation. Data coupling Benefits Data dictionary Treatment of examples and feedback. Coupling benefits internal interfaces coupling Verification optimization external interfaces coupling MONITORING AND EVALUATION COTS acceptance structures (stamp) coupling Partial reuse of previously Content coupling The training is carried out face to face. An developed software acceptance evaluation test as a quiz with feedback Weaknesses Software without life cycle data Object-oriented techniques (no specification, very few from the trainer is carried out at the end of verification) acceptance the session. A live assessment is given to Control coupling In service history file acceptance each participant. State and sequence diagrams Decoupling preparation in case of State coupling modifications Synchronous /asynchronous

coupling Interruption coupling

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 45

Non-regression impact OLID-FF20-0044 analysis process

Most of the software errors found during test campaigns occur as a result of a change. The AUDIENCE AND PREREQUISITES primary objective of this training is to present This training is for any person or team, involved in software or means to protect against regression during a system projects development, critical or not, and wishing to change through further analysis. achieve a level of assurance for certification or to improve its Time : 1 day processes reliability. It is particularly for project managers and batch managers but is highly recommended to the complete Price on demand teams.

Knowledge of the fundamentals for project management in conventional lifecycle and/or Agile is an advantage.

PEDAGOGICAL OBJECTIVES

Define best practices for implementing change during

development Present the challenges of amending a PDS (Previously Developed Software)

PROGRAM

Fundamental Non-regression analysis The Challenges of Impact Traceability management Analysis Verification The Issues of Non- Data and Control Coupling Regression Analysis Real-time analysis The analyses Margins analysis HMI analysis complementarity Structural analysis

Impact analysis Traceability management Analysis by expertise Identifying life cycle data EDUCATIONAL RESOURCES Impact of change on verification Animation around a presentation. Delineation of verification Treatment of examples and feedback. cases to be replayed The case of PDS MONITORING AND EVALUATION The training is carried out face to face. An evaluation test as a quiz with feedback from

the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 46

Dynamic software integrity OLID-FF20-0045 control Dynamic detection of software anomalies and hardware failures and AUDIENCE AND PREREQUISITES automatic reconfiguration This training is for people in charge of software development: Designing complex software also means admitting that project managers, architects, development managers, quality not all contexts could be completely verified as the managers. combination can be gigantic. An alternative approach is to consider that anomalies can occur, as well as PEDAGOGICAL OBJECTIVES hardware failures, then to design the architecture and development strategy around this principle in order to Contextualization of errors, failures and interactions HW/SW avoid malfunctions and denials of service. and SW/SW Introducing functional safety techniques The integration of COTS or previously developed

software components without the assurance of a full Appropriate reduction in verification efforts verification can also be considered favorable contexts Strength of these approaches for the particular contexts for this approach. (COTS, PDS, History in service, etc...) acceptance

Time : 1 day PROGRAM Price on demand*

Situation Impact of RAMS analysis at the Coupling approach Contextualization of errors, failures architectural level Capital gains from couplings and HW/SW + SW/SW interactions Adjusting programming techniques Introducing data couplings Introducing the different verification Introducing control couplings spaces Control coupling Structural coverage of couplings Reduced static testing efforts when State and sequence diagrams dynamic anomaly detections are State coupling Benefits implemented Synchronous /asynchronous Optimizing verification coupling COTS acceptance Dynamic detection techniques Interruption coupling Partial reuse of previously Introducing the different dynamic developed software acceptance detection techniques Structural coverage Software without life cycle data (no Identifying integrity barriers that DC/CC Coverage Demonstration specification, very few verification) protect against the spread of errors acceptance Operating safety lock in reliability In service history file acceptance and availability Decoupling preparation in case of Functional cybersecurity protection modifications

Dynamic reconfiguration techniques Distinction between symptoms and errors or breakdowns Introducing the various transparent EDUCATIONAL RESOURCES dynamic reconfiguration techniques Animation around a presentation. Focus on non-transparent dynamic Treatment of examples and feedback. reconfigurations Differences between detection of MONITORING AND EVALUATION anomalies and detection of failures The training is carried out face to face. An evaluation test as Simultaneous detection techniques a quiz with feedback from the trainer is carried out at the end for multiple anomalies and multiple of the session. A live assessment is given to each participant. failures

REGISTRATION : Sandrine RENAUD 47 Phone : +33(0)6.49.31.30.23 Email : [email protected] COTS integration in OLID-FF20-0046 software development

The COTS exploitation has been widely adopted AUDIENCE AND PREREQUISITES in software projects development for CNS/ATM systems. Many categories of COTS can be cited, This training for anyone involved in the development of systems including: operating systems, real-time cores, or and/or software using COTS or wishing to integrate it. execution libraries and data management systems. It is particularly for project managers, software managers, method engineers, on-board systems certification managers and The primary objective of this training is to quality assurance managers. An in-depth knowledge of software provide the keys to understand the issues and engineering such as DO-178 or ED-109 would be an advantage. alternative methods related to COTS integration in software development. PEDAGOGICAL OBJECTIVES

Time : 1 day Introduction to COTS integration in software development under ED-109A Price on demand Introduce alternative methods developed to reduce COTS integration efforts

PROGRAM

Fundamentals Alternative Methods COTS in a context of DO- COTS classification by level 178C development of complexity: CAL method COTS in an ED-109A (COTS Assurance Level) development context COTS analysis by cylinder Acquisition of COTS and method configuration management Formal method Functional software Design COTS requirements met by COTS COTS operating system Protection of undesired In-service COTS experience functions and Derived as a certification help Requirements

EDUCATIONAL RESOURCES

Animation around a presentation. Treatment of examples and feedback.

MONITORING AND EVALUATION

The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD 48 Phone : +33(0)6.49.31.30.23 Email : [email protected] Reuse of in-service OLID-FF20-0048 experience

If the safety equivalent of an in- development software can be demonstrated by the use of the AUDIENCE AND PREREQUISITES in-service experience, some of the credit for certification can be removed. The purpose of this This training is for any person or team, involved in critical or non- training is to present a complete view of the critical software projects development wishing to achieve a level expectations in order to use the in-service of assurance for certification. It is particularly for project experience as support for certification. managers and batch managers, but can also concerns team members. Time : 1 day PEDAGOGICAL OBJECTIVES Price on demand Presenting the in-service experience for ED-109A/ED-12C Define this method acceptance in a certification context Understand development relief through the use of in-service

experience

PROGRAM

Fundamentals Reducing development The in-service experience efforts Cases of use In-service experience and verification In-service experience The COTS case acceptance Management configuration Efficiency of error report Software stability Software maturity Operational environment compatibility Choosing the in-service EDUCATIONAL RESOURCES period experience to consider Animation around a presentation. Rate and severity of errors Treatment of examples and feedback. during the in-service period Impact of changes MONITORING AND EVALUATION The training is carried out face to face. An evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD 49 Phone : +33(0)6.49.31.30.23 Email : [email protected] IEC 61508: Functional OLID-FF20-0048 Safety of control systems Hardware Part

AUDIENCE AND PREREQUISITES IEC 61508 standard defines requirements to This training is for anyone involved in critical systems and/or ensure that integrated systems and software are software projects development to comply with IEC 61508. designed, implemented, operated and maintained to provide a precise level of integrity and safety It is particularly for service managers, project managers and (SIL). engineers involved in the development of critical systems, Time : 1 day software and hardware according to IEC 61508.

Price on demand Having knowledge of functional safety is an advantage. PEDAGOGICAL OBJECTIVES

Understand the IEC 61508 requirements Be able to apply the IEC 61508 requirements within a

software project development applying this standard.

PROGRAM

Introduction to IEC 61508 Introduction to IEC 61508 Standard History standards Vocabular, principles and Industrial processes: IEC 61511 issues The nuclear sector: IEC 61 513 Link between the standard The automotive sector: ISO other components: (parts 1 to 26262 7) The aeronautic sector: DO-178

Standard’s organization Structure General Principles

EDUCATIONAL RESOURCES Determination of the SIL Animation around a presentation. Detailed study of the Treatment of examples and feedback. hardware part standard

Lifecycle and management requirements MONITORING AND EVALUATION Hardware Safety Integrity The training is carried out face to face. An Calculating the probability of evaluation test as a quiz with feedback from failures Failure detection tools the trainer is carried out at the end of the (FMECA, Failure Trees...) session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 50

DO-254 ED-80 On-board electronic design assurance OLID-FF20-0049

equipment

DO-254 ED-80 Standard is designed to meet AUDIENCE AND PREREQUISITES avionics certification requirements for the This training is for anyone involved in electronic development Electronic development Sets (equipment, maps, such as: hardware managers, quality managers, project programmable components) managers, quality engineers, electronic development engineers,

test engineers and system or hardware engineers. Time : 2 days PEDAGOGICAL OBJECTIVES

Price on demand Introduce DO-254/ED-80 standard for on-board electronics design assurance Understand certification security for complex electronic equipment issues Be able to apply these standards to critical developments in on-board aeronautics

PROGRAM

On-board electronics Link to other standards and certification reference documents Principles of quality AMC 20-152A, CM-SWCEH- assurance 001 Systems Functional Safety Accident risks and causes, COTS Component Link with hardware Management development COTS planning, acquisition and configuration Processes key point management Planning Demonstration of integrity Requirements table interfaces Development Verification - Validation EDUCATIONAL RESOURCES Configuration management Process assurance Case study Relationship with authorities MONITORING AND EVALUATION Tools and reusable The training is carried out face to face. An components evaluation test as a quiz with feedback from the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 51

ARTIFICIAL INTELLIGENCE DEVELOPMENT PROCESS

CERNA Report Robotics research ethics OLID-FF20-0050

The Allistene Digital Science and Technology Research Ethics Committee (French CERNA) stated that research establishments or AUDIENCE AND PREREQUISITES institutions set up ethics committees in digital This training is for anyone involved in a research process: sciences and technologies for projects likely to researchers, university staff, PhD students, scientists of any have a direct impact on society. structure: school, institute, private company, competitiveness Time : 1 day pole, public operator. Price on demand PEDAGOGICAL OBJECTIVES Introducing the research context

Introducing the different technologies and their design Introducing integration characteristics into the social scheme Introducing the limits of robotics and ethical considerations

PROGRAM

Context Skills and Interaction The Commission Autonomy and Decision-making The objectives Life imitation and social interaction Ethics definition in research sector Humans repair by machines Legal framework Technology and social inclusion Ethical recommendations Collective responsibility Code of ethics Operational ethics committee Typology Legal monitoring Simple integration Attack prevention Complexe integration Multi-robots

Autonomous and robotic systems classification EDUCATIONAL RESOURCES Robot with individuals or groups Robots in the medical sector Animation around a presentation. Robots in defense and security Treatment of examples and feedback.

Architecture and Design Confidence MONITORING AND EVALUATION Limits The training is carried out face to face. An Behaviour tracking evaluation test as a quiz with feedback from Autonomy and integrity Responsability the trainer is carried out at the end of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 Email : [email protected] 53 AI: CoDANN Software design concepts for neural OLID-FF20-0051 networks (AI) Certification of critical software AUDIENCE AND PREREQUISITES On 31 March 2020, EASA published the first ever report to study the challenges posed by the use of This training is for people in charge of the development of neural networks, derived from Artificial Intelligence, artificial intelligence-based software using neural network in the field of aeronautics. This report is the precursor techniques (project managers, architects, development to a future European repository that will be produced managers, audit managers, quality managers). in successive stages between 2021 and 2025.

This training helps to understand the problems of PEDAGOGICAL OBJECTIVES design and verification of AI software which, by nature, are non-deterministic, and whose automatic Introducing the EASA regulatory certification schedule for decisions cannot be anticipated, and therefore are AI/NR (Artificial Intelligence/Neural Network) software until unspecified. Thus, the solutions provided indicates the 2035 way the software needs to be developed and verified. Course in AI/NR programming Introducing AI/NR issues Time : 2 days Presentation of EASA's solutions Price on demand

PROGRAM

Situation How to program in AI Use cases and operational Contextualization of critical Principles of neural networks concepts software certification in aviation (AI/NR) Application to learning assurance Introducing the EASA regulatory The architecture of AI/NR in a context of form recognition certification schedule for AI/NR Learning AI/NR (Artificial Intelligence/Neural Application of AI/NR to shape Benefits Network) software until 2035, recognition (convolution Application to all domains (critical with autonomous piloting approach) or non-critical) application in 2035 AI's strengths and weaknesses in Learning (ML/DL) Introducing existing standards and the face of classic developments Learning process their applications to AI (ML/DL: Learning assurance Machine Learning / Deep Advanced concepts for learning EDUCATIONAL RESOURCES Learning) assurance Animation around a presentation. AI/NR issues Performance evaluation Non-determinism and safety Safety evaluation Treatment of examples and feedback. Lack of functional specification Adapted principles for and RBT principle MONITORING AND EVALUATION certification Memory allowances The W life cycle to consolidate AI The training is carried out face to face. An learning (ML/DL) evaluation test as a quiz with feedback The limits of generalization The application of the FMEA to the from the trainer is carried out at the end AI/NR of the session. A live assessment is given to each participant.

REGISTRATION : Sandrine RENAUD Phone : +33(0)6.49.31.30.23 54 Email : [email protected]

Off-site-training Domaine de Peyrolade – Hôtel & Restaurant 4 Chemin des Châteaux 31700 Daux FRANCE

10 mn from Toulouse-Blagnac airport, close to Airbus and Aeroscopia and 20 km from Toulouse. Direction AUCH by RN 124

www.olgham.com

OLGHAM 56 Route de Galembrun Lieu-dit Thuin TOULOUSE 31480 PELLEPORT FRANCE Phone : +33 (0)6 49 31 30 23 Registration : [email protected]