DOCSLIB.ORG

Safe and Optimal Techniques Enabling Recovery, Integrity, and Assurance

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Safe and Optimal Techniques Enabling Recovery, Integrity, and Assurance NASA/CR201-22083 Safe and Optimal Techniques Enabling Recovery, Integrity, and Assurance Kit Y. Siu and Heber Herencia-Zapana General Electric Global Research Center, Niskayuna, New York Panagiotis Manolios Northeastern University, Boston, Massachusetts Michael Noorman and Richard Haadsma General Electric Aviation Systems, Grand Rapids, Michigan June 201 NASA STI Program . in Profile Since its founding, NASA has been dedicated to the x CONFERENCE PUBLICATION. advancement of aeronautics and space science. The Collected papers from scientific and NASA scientific and technical information (STI) technical conferences, symposia, seminars, program plays a key part in helping NASA maintain or other meetings sponsored or this important role. co-sponsored by NASA. The NASA STI program operates under the x SPECIAL PUBLICATION. Scientific, auspices of the Agency Chief Information Officer. technical, or historical information from It collects, organizes, provides for archiving, and NASA programs, projects, and missions, disseminates NASA’s STI. The NASA STI often concerned with subjects having program provides access to the NTRS Registered substantial public interest. and its public interface, the NASA Technical Reports Server, thus providing one of the largest x TECHNICAL TRANSLATION. collections of aeronautical and space science STI in English-language translations of foreign the world. Results are published in both non-NASA scientific and technical material pertinent to channels and by NASA in the NASA STI Report NASA’s mission. Series, which includes the following report types: Specialized services also include organizing and publishing research results, distributing x TECHNICAL PUBLICATION. Reports of specialized research announcements and feeds, completed research or a major significant phase providing information desk and personal search of research that present the results of NASA support, and enabling data exchange services. Programs and include extensive data or theoretical analysis. Includes compilations of For more information about the NASA STI significant scientific and technical data and program, see the following: information deemed to be of continuing reference value. NASA counter-part of peer- x Access the NASA STI program home page reviewed formal professional papers but has at http://www.sti.nasa.gov less stringent limitations on manuscript length and extent of graphic presentations. x E-mail your question to [email protected] x TECHNICAL MEMORANDUM. Scientific x Phone the NASA STI Information Desk at and technical findings that are preliminary or of 757-864-9658 specialized interest, e.g., quick release reports, working papers, and bibliographies that contain x Write to: minimal annotation. Does not contain extensive NASA STI Information Desk analysis. Mail Stop 148 NASA Langley Research Center x CONTRACTOR REPORT. Scientific and Hampton, VA 23681-2199 technical findings by NASA-sponsored contractors and grantees. NASA/CR201-22083 Safe and Optimal Techniques Enabling Recovery, Integrity, and Assurance Kit Y. Siu and Heber Herencia-Zapana General Electric Global Research Center, Niskayuna, New York Panagiotis Manolios Northeastern University, Boston, Massachusetts Michael Noorman and Richard Haadsma General Electric Aviation Systems, Grand Rapids, Michigan National Aeronautics and Space Administration Langley Research Center Prepared for Langley Research Hampton, Virginia 23681-2199 Center under Contract NNL15AA02C June 201 The use of trademarks or names of manufacturers in this report is for accurate reporting and does not constitute an official endorsement, either expressed or implied, of such products or manufacturers by the National Aeronautics and Space Administration. Available from: NASA STI Program / Mail Stop 148 NASA Langley Research Center Hampton, VA 23681-2199 Fax: 757-864-6500 SOTERIA Safe and Optimal Techniques Enabling Recovery, Integrity, and Assurance GE Global Research Kit Siu Heber Herencia-Zapana [email protected] [email protected] Northeastern University Panagiotis Manolios [email protected] GE Aviation Systems Michael Noorman Richard Haadsma [email protected] [email protected] Contents 1 Introduction ...................................................................................................................................................... 3 2 IMA Architectures ............................................................................................................................................. 4 3 Fault Tree Analysis (FTA) .................................................................................................................................. 9 3.1 IMA Fault Trees ............................................................................................................................................ 9 3.2 Other techniques ....................................................................................................................................... 11 4 FTA Implementation in SOTERIA .................................................................................................................... 11 4.1 Verified against existing tools .................................................................................................................... 12 4.2 Limitations of OSATE and OpenFTA ........................................................................................................... 21 5 Fault Tree Synthesis ........................................................................................................................................ 22 5.1 Decision Tables ........................................................................................................................................... 22 5.2 Monotone Formulas ................................................................................................................................... 30 6 Modeling Language ........................................................................................................................................ 31 6.1 Library of Components ............................................................................................................................... 32 6.2 Model ......................................................................................................................................................... 33 6.3 Validation Checks ....................................................................................................................................... 34 7 Analysis Capability .......................................................................................................................................... 42 8 Visualization ................................................................................................................................................... 46 9 Functionally Integrated Distributed Systems & Other Examples ................................................................... 50 9.1 B777 ........................................................................................................................................................... 50 9.2 B787 ........................................................................................................................................................... 64 9.3 Modeling Multiple Failures ........................................................................................................................ 71 9.4 Wheel Brake and Landing Gear System ..................................................................................................... 80 9.5 Models with Fault Dependencies ............................................................................................................. 107 10 Architecture Synthesis .................................................................................................................................. 109 10.1 Challenge Architectures ........................................................................................................................... 109 10.2 Inputs from User and Roles ...................................................................................................................... 111 10.3 Architecture Synthesis Goals and Approach ............................................................................................ 119 10.4 Results ...................................................................................................................................................... 125 10.5 Possible Extensions .................................................................................................................................. 128 11 Conclusion .................................................................................................................................................... 129 12 Acknowledgements ...................................................................................................................................... 129 13 Works Cited .................................................................................................................................................. 129 SOTERIA Contractor Report Page 2 1 Introduction There is a trend in the aviation industry from federated to integrated computing systems (Wolfig & Jakovlijevic, 2008). Combining a number of traditional stand-alone federated systems into an integrated common platform (called Integrated Modular Avionics,
Load more

Recommended publications
  • Table of Contents Welcome to the 37Th Digital Avionics Systems Conference
    Table of Contents Welcome to the 37th Digital Avionics Systems Conference .............................................................................................. 2 Conference Organizing Committee ................................................................................................................................... 3 Welcome to London, England, United Kingdom! ............................................................................................................. 3 Conference Sponsors ........................................................................................................................................................ 4 Corporate Sponsors .......................................................................................................................................................... 6 Media Sponsors ................................................................................................................................................................. 8 Welcome to London! ........................................................................................................................................................ 9 Walking directions to the London Cru Winery .................................................................................................................. 5 Public Transportation directions to the Medieval Banquet.............................................................................................. 5 37th DASC Week at a Glance ..........................................................................................................................................
    [Show full text]
  • A Design Rationale Environment for Argumentation, Modeling and Engineering Requirements C´Eliamartinie, Philippe Palanque, Marco Winckler, St´Ephaneconversy
    CORE Metadata, citation and similar papers at core.ac.uk Provided by Scientific Publications of the University of Toulouse II Le Mirail DREAMER : a Design Rationale Environment for Argumentation, Modeling and Engineering Requirements C´eliaMartinie, Philippe Palanque, Marco Winckler, St´ephaneConversy To cite this version: C´eliaMartinie, Philippe Palanque, Marco Winckler, St´ephane Conversy. DREAMER : a Design Rationale Environment for Argumentation, Modeling and Engineering Requirements. SIGDOC 2010, 28th ACM international conference on Design of Communication, Sep 2010, S~aoCarlos- S~aoPaulo, Brazil. pp 73-80, 2010, <10.1145/1878450.1878463>. <hal-01022256> HAL Id: hal-01022256 https://hal-enac.archives-ouvertes.fr/hal-01022256 Submitted on 23 Jul 2014 HAL is a multi-disciplinary open access L'archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destin´eeau d´ep^otet `ala diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publi´esou non, lished or not. The documents may come from ´emanant des ´etablissements d'enseignement et de teaching and research institutions in France or recherche fran¸caisou ´etrangers,des laboratoires abroad, or from public or private research centers. publics ou priv´es. DREAMER: a Design Rationale Environment for Argumentation, Modeling and Engineering Requirements Célia Martinie, Philippe Palanque, Stéphane Conversy Marco Winckler ENAC & IRIT ± University Paul Sabatier IRIT ± University Paul Sabatier 7, avenue Edouard Belin 118, route de Narbonne 31055 TOULOUSE Cedex 31062 Toulouse Cedex 9, France (+33) 562 174 019 (+33) 561 556 359 [email protected] {martinie, palanque, winckler}@irit.fr A BST R A C T critical systems.
    [Show full text]
  • Designing for Resilience to Hardware Failures in Interactive Systems: a Model and Simulation-Based Approach
    Reliability Engineering and System Safety 96 (2011) 38–52 Contents lists available at ScienceDirect Reliability Engineering and System Safety journal homepage: www.elsevier.com/locate/ress Designing for resilience to hardware failures in interactive systems: A model and simulation-based approach David Navarre n, Philippe Palanque, Eric Barboni, Jean-Franc-ois Ladry, Ce´lia Martinie IRIT, University Paul Sabatier, 118 Route de Narbonne, 31062 Toulouse Cedex 9, France article info abstract The paper proposes a formal description technique and a supporting tool that provide a means to Keywords: handle both static and dynamic aspects of input and output device configurations and reconfigurations. Model-based approaches More precisely, in addition to the notation, the paper proposes an architecture for the management of ARINC 661 specification failure on input and output devices by means of reconfiguration of in/output device configuration and Formal description techniques interaction techniques. Such reconfiguration aims at allowing operators to continue interacting with Interactive software engineering the interactive system even though part of the hardware side of the user interface is failing. These types Interactive cockpits of problems arise in domains such as command and control systems where the operator is confronted with several display units. The contribution presented in the paper thus addresses usability issues (improving the ways in which operators can reach their goals while interacting with the system) by increasing the reliability of the system using diverse configuration both for input and output devices. & 2010 Elsevier Ltd. All rights reserved. 1. Introduction fault-tolerance, and possibly security), at the implementation level (support the process of going from the specification to the Command and control systems have to handle large amounts implementation of the configurations in a given system), and for of increasingly complex information.
    [Show full text]
  • Designing, Developing and Verifying Interactive Components Iteratively with Djnn
    Designing, developing and verifying interactive components iteratively with djnn Stephane´ Chatty Mathieu Magnaudet Daniel Prun Stephane´ Conversy Stephanie´ Rey Mathieu Poirier Universite´ de Toulouse - ENAC 7 av. Edouard Belin, 31055 Toulouse, France ffi[email protected] ABSTRACT However, with ongoing plans to introduce more modern user Introducing iterative user interface design methods into the interfaces in these safety critical settings, new questions ap- development processes of safety-critical software creates pear. Not only are the envisaged interactive components often technical and methodological challenges. This article de- more complex and more difficult to specify than their pre- scribes a new programming paradigm aimed at addressing decessors, there is also a trend toward interface customiza- some of these challenges: interaction-oriented programming. tion. Each aircraft or car manufacturer wants to have its In this paradigm any piece of software consists of a hierarchi- own distinctive signature, in terms of interaction and not only cal collection of components that can interact among them- graphical appearance. Consequently, they expect equipment selves and with their environment, and its execution con- providers to deliver products whose behavior and appearance sists in propagating activation through interactions between can be modified. This means that one cannot rely solely on components. We first describe the principles of interaction- industry standards that define interactive components, and oriented programming, and illustrate them by describing the that methods must be proposed for designing and develop- basic components provided by the djnn programming frame- ing custom components, usually as a collaboration between work to create interactive software. We then show how in- an equipement provider and an integrator.
    [Show full text]
  • Mastering the ARINC 661 Standard
    Mastering the ARINC 661 Standard By Yannick Lefebvre Any unauthorized review, use, disclosure or distribution is strictly prohibited ARINC 661 Workshop Table of Contents Abstract ............................................................................ 3 Introduction ....................................................................... 4 ARINC 661 Standard Overview .................................................................. 5 Architecture Overview ........................................................................ 5 The Cockpit Display System .................................................................. 6 Layers ........................................................................................... 7 Standard Widget Library ...................................................................... 8 User Applications ............................................................................ 11 Runtime Protocol Definition ............................................................... 12 Distributed Development Benefits .......................................... 13 Goals of ARINC 661 .......................................................................... 13 Certification .................................................................................. 13 Practical Real-world Considerations ........................................ 15 Implementing a subset of the standard .................................................. 15 Bandwidth and Performance ..............................................................
    [Show full text]
  • Update ARINC Specification 661: Cockpit Display
    Project Initiation/Modification proposal for the AEEC Date Proposed: April 14, 2020 ARINC Project Initiation/Modification (APIM) 1.0 Name of Proposed Project APIM 19-010A This APIM proposes development of two documents as follows: Supplement 9 to ARINC Specification 661 Part 1: Cockpit Display System Interfaces to User Systems - Avionics Interfaces, Basic Symbology, and Behavior Supplement 1 to ARINC Specification 661 Part 2: Cockpit Display System Interfaces to User Systems - User Interface Markup Language (UIML) for Graphical User Interfaces. 1.1 Name of Originator and/or Organization Cockpit Display Systems (CDS) Subcommittee 2.0 Subcommittee Assignment and Project Support 2.1 Suggested AEEC Group and Chairman Cockpit Display Systems (CDS) Subcommittee Co-Chairman: Brian Gilbert, The Boeing Company Co-Chairman: Sofyan Su, Airbus 2.2 Support for the activity (as verified) Organizations: Airbus, Boeing, Dassault Aviation, Ansys, TP Group plc, GE Aviation, Garmin, Honeywell, Presagis, Collins Aerospace, Thales AVS, Elbit Systems, US Army, Safran Aerosystems, Northrup Grumman. 2.3 Commitment for Drafting and Meeting Participation (as verified) Organizations: Airbus, Boeing, Dassault Aviation, Ansys, TP Group plc, GE Aviation, Garmin, Honeywell, Presagis, Collins Aerospace, Thales AVS, US Army, Safran Aerosystems. 2.4 Recommended Coordination with other groups The following AEEC Subcommittee activities are relevant to this topic: • SAI Subcommittee 3.0 Project Scope (why and when standard is needed) 3.1 Description Develop and maintain ARINC 661 flight deck display interface standards for new airplane development programs and for retrofit programs, including Airbus A380, A350, A400M, Boeing 787, 737 MAX, 777X, KC-46A, COMAC C919, Regional Aircraft, General Aviation (GA) and rotorcraft.
    [Show full text]
  • (12) United States Patent (10) Patent No.: US 7,798,417 B2 Snyder Et Al
    US007798417B2 (12) United States Patent (10) Patent No.: US 7,798,417 B2 Snyder et al. (45) Date of Patent: Sep. 21, 2010 (54) METHOD FOR DATA INTERCHANGE application No. 1 1/325,713, filed on Jan.5, 2006, now Pat. No. 7,118,040. (76) Inventors: David M. Snyder, 1110 Wenig Rd. NE., (60) Provisional application No. 60/294,375, filed on May Cedar Rapids, IA (US) 524.02: Bruce D. 30, 2001, provisional application No. 60/232,825, Melick, 4335 Cloverdale Rd. NE., Cedar filed on Sep. 15, 2000, provisional application No. Rapids, IA (US) 52411; Leslie D. 60/213.843, filed on Jun. 23, 2000, provisional appli Baych, 4315 Woodfield La. NE., Cedar cation No. 60/174.220, filed on Jan. 3, 2000, provi Rapids, IA (US) 524.02: Paul R. sional application No. 60/572,140, filed on May 18, Staman, 1600 G St., Amana, IA (US) 2004, provisional application No. 60/727,605, filed on 52203; Nicholas J. Peters, 3229 260' Oct. 18, 2005, provisional application No. 60/813,899, St., Williamsburg, IA (US) 52261; filed on Jun. 15, 2006, provisional application No. Gregory P. Probst, 531 Woodridge Ave., 60/834,523, filed on Aug. 1, 2006. Iowa City, IA (US) 5224.5 (51) Int. C. (*) Notice: Subject to any disclaimer, the term of this G06K 9/06 (2006.01) patent is extended or adjusted under 35 G06K 9/00 (2006.01) U.S.C. 154(b) by 390 days. (52) U.S. Cl. ....................................... 235/494; 235/487 (58) Field of Classification Search ................. 235/380, (21) Appl.
    [Show full text]
  • A Model-Based Testing Approach for Cockpit Display Systems of Avionics
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Open Repository and Bibliography - Luxembourg 2019 ACM/IEEE 22nd International Conference on Model Driven Engineering Languages and Systems (MODELS) A Model-based Testing Approach for Cockpit Display Systems of Avionics Muhammad Zohaib Iqbal∗†, Hassan Sartaj∗†, Muhammad Uzair Khan∗†, Fitash Ul Haq‡ and Ifrah Qaisar§ ∗Quest Lab, National University of Computer and Emerging Sciences † UAV Dependability Lab, National Center of Robotics and Automation (NCRA) FAST Foundation, Rohtas Road, G-9/4, Islamabad - 44000, Pakistan Email: {zohaib.iqbal,hassan.sartaj,uzair.khan}@questlab.pk ‡University of Luxembourg Luxembourg City, Luxembourg Email: fi[email protected] §National University of Computer and Emerging Sciences A.K. Brohi Road, H-11/4, Islamabad - 44000, Pakistan Email: [email protected] Abstract—Avionics are highly critical systems that require These CDS display information that is vital for the safe extensive testing governed by international safety standards. operation of an aircraft. This may include information coming Cockpit Display Systems (CDS) are an essential component of from different user applications, the flight management system, modern aircraft cockpits and display information from the user application (UA) using various widgets. A significant step in the flight control unit and the warnings generated by different testing of avionics is to evaluate whether these CDS are displaying hardware components. Testing that the information displayed the correct information. A common industrial practice is to on the CDS is correct is an important part of the overall testing manually test the information on these CDS by taking the aircraft activities of an aircraft.
    [Show full text]
  • Formal Development of Multi-Purpose Interactive Application (MPIA) for ARINC 661
    Formal Development of Multi-Purpose Interactive Application (MPIA) for ARINC 661 N. K. Singh1, Y. Aït-Ameur1, D. Méry2, D. Navarre3, P. Palanque3, and M. Pantel1 1 INPT-ENSEEIHT / IRIT, University of Toulouse, France 2 LORIA,Université de Lorraine & Telecom Nancy, Nancy, France 3 IRIT, Université de Toulouse, Toulouse, France [email protected], [email protected], [email protected], [email protected], [email protected], [email protected] Abstract. This paper reports our experience for developing Human-Machine In- terface (HMI) complying with ARINC 661 specification standard for interactive cockpits applications using formal methods. This development is centered around our modelling language FLUID, which is formally defined in the FORMEDI- CIS4 project. FLUID contains essential features required for specifying HMI. For developing Multi-Purpose Interactive Applications (MPIA), we follow the following steps: an abstract model of MPIA is developed in the FLUID language; the MPIA FLUID model is used to produce an Event-B model for checking the functional behaviour, user interactions, safety properties, and interaction related to domain properties; the Event-B model is also used to check temporal proper- ties and possible scenario using the ProB model checker; and finally, the MPIA FLUID model is translated to Interactive Cooperative Objects (ICO) using Pet- Shop CASE tool to validate the dynamic behaviour, visual properties and task analysis. These steps rely on different tools to check internal consistency along with possible HMI properties. Finally, the formal development of MPIA case study using FLUID and diving into other formal techniques, demonstrates relia- bility, scalability and feasibility of our approach presented in the FORMEDICIS project.
    [Show full text]
  • Touchscreen Input for Cockpit Flight Displays
    Open Archive Toulouse Archive Ouverte OATAO is an open access repository that collects the work of Toulouse researchers and makes it freely available over the web where possible This is an author’s version published in: https://oatao.univ-toulouse.fr/24688 To cite this version: Cockburn, Andy and Gutwin, Carl and Palanque, Philippe and Deleris, Yannick and Trask, Catherine and Coveney, Ashley and Yung, Marcus and Maclean, Karon Turbulent Touch: Touchscreen Input for Cockpit Flight Displays. (2017) In: International Conference for Human-Computer Interaction (CHI 2017), 6 May 2017 - 9 May 2017 (Denver, Colorado, United States). Any correspondence concerning this service should be sent to the repository administrator: [email protected] Turbulent Touch: Touchscreen Input for Cockpit Displays Andy Cockburn1, Carl Gutwin2, Philippe Palanque3, Yannick Deleris4, Catherine Trask2, Ashley Coveney2, Marcus Yung2, Karon MacLean5 1 University of Canterbury, Christchurch, New Zealand, [email protected] 2 University of Saskatchewan, Saskatoon, Canada, [email protected] 3 Université Paul Sabatier, Toulouse 3, France, [email protected] 4 Airbus Operations, Toulouse, France, [email protected] 5 University of British Columbia, Vancouver, Canada, [email protected] ABSTRACT dials, keypads and wheels. While computer-based flight Touchscreen input in oc mmercial aircraft cockpits offers instrument displays are becoming increasingly prevalent potential advantages, including ease of use, modifiability, (i.e., the ‘glass cockpit’), these displays are almost and reduced weight. However, tolerance to turbulence is a exclusively used for data output, and user input to displayed challenge for their deployment. To better understand the objects is dependent on a separate indirect device.
    [Show full text]
  • Specification, Prototyping and Validation
    Interactive Cockpits Applications: Specification, Prototyping and Validation using a Petri-nets based Formalism Arnaud Hamon, Célia Martinie, Philippe Palanque, Eric Barboni, David Navarre, Adrienne Tankeu-Choitat To cite this version: Arnaud Hamon, Célia Martinie, Philippe Palanque, Eric Barboni, David Navarre, et al.. Interactive Cockpits Applications: Specification, Prototyping and Validation using a Petri-nets based Formalism. Embedded Real Time Software and Systems (ERTS2012), Feb 2012, Toulouse, France. hal-02189909 HAL Id: hal-02189909 https://hal.archives-ouvertes.fr/hal-02189909 Submitted on 20 Jul 2019 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Interactive Cockpits Applications: Specification, Prototyping and Validation using a Petri-nets based Formalism Arnaud Hamon, Célia Martinie, Philippe Palanque, Eric Barboni, David Navarre, Adrienne Tankeu- Choitat ICS-IRIT University Paul Sabatier (Toulouse 3), 118, route de Narbonne, 31062 Toulouse Cedex 4, France {lastame}@irit.fr ABSTRACT several problems that have to be taken into account with The purpose of ARINC 661 specification is to define appropriate precautions. Questions such as: what kind of interfaces to a Cockpit Display System (CDS) which is used in interactive components should be used in a cockpit? How to many types of aircrafts cockpits such as A380 from Airbus, design such embedded interactive applications? What is the B787 from Boeing or Falcon 2000D from Dassault Aviation.
    [Show full text]
  • Improving Modularity of Interactive Software with the MDPC Architecture Stéphane Conversy, Eric Barboni, David Navarre, Philippe Palanque
    Improving modularity of interactive software with the MDPC Architecture Stéphane Conversy, Eric Barboni, David Navarre, Philippe Palanque To cite this version: Stéphane Conversy, Eric Barboni, David Navarre, Philippe Palanque. Improving modularity of in- teractive software with the MDPC Architecture. EIS 2007, Engineering Interactive Systems Joint Working Conference, Mar 2007, Salamanca, Spain. pp 321-338, 10.1007/978-3-540-92698-6. hal- 01021985 HAL Id: hal-01021985 https://hal-enac.archives-ouvertes.fr/hal-01021985 Submitted on 4 Sep 2014 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Improving modularity of interactive software with the MDPC architecture Stéphane Conversy1,2, Eric Barboni2, David Navarre2 & Philippe Palanque 2 1 ENAC – Ecole Nationale de l’Aviation Civile 7, avenue Edouard Belin, 31055 Toulouse, France. [email protected] 2 LIIHS – IRIT, Université Paul Sabatier 118 route de Narbonne, 31062 Toulouse Cedex 4, France {barboni, conversy, navarre, palanque}@irit.fr http://liihs.irit.fr/{barboni, navarre, palanque} Abstract. The “Model - Display view - Picking view - Controller” model is a refinement of the MVC architecture. It introduces the “Picking View” component, which offloads the need from the controller to analytically compute the picked element.
    [Show full text]