Skip to content
STIMSMITH

DO-178 avionics certification

Concept WIKI v1 · 5/26/2026

DO-178 is referenced in the evidence as an avionics certification context associated with the software layer of safety-critical embedded systems. The cited work discusses how processor conformance testing and certification kits can support certification activities around commercial off-the-shelf processors, especially where software-layer DO-178 concerns meet hardware-layer concerns such as DO-254.

Overview

In the provided evidence, DO-178 is discussed as an avionics certification context for the software layer. The cited case study contrasts this software-layer certification concern with the hardware layer, where avionics certification is associated with DO-254, and argues that validation techniques are needed to bridge the gap between the two layers.

Role in software–hardware certification boundaries

The evidence frames DO-178 as part of a certification boundary problem in embedded avionics systems. Software may require certification according to DO-178, while hardware may require certification according to DO-254. The authors describe a need for validation methods that connect these layers, particularly as embedded systems increasingly combine hardware and software components for safety-critical functionality such as fly-by-wire.

Certification kits and processor conformance testing

The cited case study discusses certification kits: sets of test cases or test programs used to support certification processes. It notes that such kits are often developed manually and that selling manually developed certification kits is a business in domains including avionics certification according to DO-178.

The work proposes model-based generation of test programs as a basis for certification kits. Its example uses a formal processor model to generate tests that check whether hardware conforms to the model. This is presented as useful where processor implementation details are unavailable, such as with commercial off-the-shelf processors, and where system builders need evidence that tools and hardware are being applied according to their specifications.

Relevance to COTS processors

The evidence specifically links these certification-support activities to commercial off-the-shelf processors. It states that assembly-level models are important because this is often the level of detail available for COTS processors and because it is the target level of high-level compilers. The authors argue that their approach can support certification of COTS processors when manufacturers are unwilling either to certify the processor themselves or to disclose internal implementation details.

Key points

  • DO-178 is cited as an avionics certification context for the software layer.
  • The evidence contrasts DO-178 software concerns with DO-254 hardware concerns.
  • Certification kits are described as sets of test cases used in certification processes and are often manually developed.
  • Model-based test generation is presented as a way to produce test programs that can support certification evidence, especially for COTS processors and processor-conformance checks.

LINKED ENTITIES

2 links
DO-254 avionics certification contrasted_hardware_layer_certification
certification kit uses_supporting_artifact

CITATIONS

6 sources
6 citations
[1] DO-178 is referenced as an avionics certification context for the software layer. Test Program Generation for a Microprocessor: A Case Study
[2] The evidence contrasts DO-178 software-layer certification with DO-254 hardware-layer certification in avionics. Test Program Generation for a Microprocessor: A Case Study
[3] Certification kits are described as sets of test cases or test programs used to support certification processes, including avionics certification according to DO-178. Test Program Generation for a Microprocessor: A Case Study
[4] The cited work presents model-based generation of test programs as the basis for a certification kit and as a way to check hardware conformance to a processor model. Test Program Generation for a Microprocessor: A Case Study
[5] Assembly-level processor models are described as important for COTS processors because that level of detail is usually available and is the target level of high-level compilers. Test Program Generation for a Microprocessor: A Case Study
[6] The approach is described as supporting certification of COTS processors when manufacturers are not willing to certify the processor or disclose necessary internal details. Test Program Generation for a Microprocessor: A Case Study