Esterel Technologies - Wind River

Esterel Technologies 

Certified Solutions for Critical 

Embedded Systems and Software

3 

Esterel Technologies - Mission 

To provide critical embedded system and software 

developers a certified, domain optimized, model-based 

development environment and associated services to 

reduce time-to-deployment, and as required, time-tocertification 

for: 

DO-178B – Aerospace and Defense 

EN 50128 – Rail Transportation 

IEC 61508 – Industrial and Transportation 

IEC 60880 - Nuclear 

© Esterel Technologies - An ISO 9001:2000 Certified Company - Confidential & Proprietary

4 

Founded in 1999 

ISO 9001:2000 Certified for 

Design and Sale of Critical 

Software Tools and Services 

Core competency: Critical 

embedded systems modeling 

and application development 

Invented the formal SCADE 

language for critical design 

and development 

Worldwide presence 

© Esterel Technologies - An ISO 9001:2000 Certified Company - Confidential & Proprietary 

Who We Are… 

Esterel Technologies Growth 

30%+ a year revenue 

growth since inception 

Revenues (M$)

5 

Direct Offices 

USA 

Canada 

UK 

France 

Germany 

Russia 

China 

Channel Partners 

Australia : APC Technology 

China: VISION Technologies 

India: TRIDENT INFOSOL 

Israel: ITEC 

Italy: MICROTask 

Japan: CD Adapco Japan (CDAJ) 

Korea: ENESYS 

Russia: AVD Systems 

Spain: Embedded Technologies 

Turkey: TEKTRONIK 


Esterel Locations

6 

Aerospace & Defense 

Aircraft Braking Systems Corp 

Airbus 

AVIC 

Avionika 

BAE SYSTEMS 

BIESE 

Bundeswehr (BWB) 

CASC 

CETC 

CS-SI 

Dassault Aviation 

Diehl Aerospace 

DS&S (Rolls Royce) 

EADS Military 

EADS Astrium 

EADS SD&E 

Edisoft 

Elbit Systems 

Elbit UAV 

Embraer 

ELV 

ELTA (Areva Group) 

ESA 

ESG 

Eurocopter 

Flight Dynamics 

General Electric 

Goodrich 

GosNIIAS 

Hispano-Suiza 

Honeywell CR 

Intertechnique 

Liebherr Aerospace 

Lockheed Martin 

Meggitt 

MBDA 

NASA 

Nord Micro 

Messier-Bugatti 

ONERA 

Parker 

QinetiQ 

Parker HSD, 

Pratt & Whitney 

Rockwell Collins 

Rolls Royce 

Rovsing 

Saab Avitronics 

SAIC 

Safran 

Sagem 

Snecma 

Sukhoi 

Turkish Aerospace (TAI) 

Teuchos 

Thales DAE 

Turbomeca 

Samsung Thales 

UAE Air Force 

US Air Force 

Ultra Electronics 

VEGA 

Alstom Transportation 

Ansaldo Signal 

AREVA TA 

BJTU (China) 

Deuta Werke 

NRIET 

RATP 

SNCF 

Siemens Rail 

Transportation 

Systerel 

Thales Rail Signalling 

Systems 

Union Switch 

NIIAS 


Our Customers… 

Rail Transportation Industrial, Automotive 

& Energy 

AREVA NP 

Audi 

BARC (India) 

China Techenergy Denso 

DS&S, owned by Rolls- 

Royce 

FTE 

Fuji Heavy 

General Motors 

Honda 

IKV 

KAERI 

Korea Power 

Liebherr Construction 

Mitsubishi 

Johnson Controls 

NIAT 

Nihon Seiko 

Nissan 

Nuclear Research Center 

NPIC 

PSA Peugeot Citroën 

Renault 

Subaru 

Toyota 

Volvo Construction

7 

Their Problems… 

…Decreasing Increasing… 

Tolerance for defects 

Loss of life or physical damage 

Product recalls 

Development cycles 

Resource availability 

Ability to effectively manage 

requirements 

Ability to ensure long-term 

maintenance 

Safety critical requirements in 

Aerospace & Defense 

Energy 

Transportation 

Industrial 

Medical 


Application complexity and life 

span 

Number of requirements changes 

Cost of code testing, validation 

and verification, and certification 

Need for Systems and software 

design reusability

8 

Manual Methods… are No Longer Sufficient… 

Lack of specification quality & accuracy 

Documentation lapses 

Requirements are not traceable into the design 

Specifications are left ambiguous 

Manual software implementation and verification are error prone 

Response time to requirements changes are unacceptable 

Application integrity is not ensured 

Design flaws are not caught until late in the process 

Cost of verification and testing to achieve certification is 

unacceptable 

It used to be about the cost of missing a market window… 

now it is that PLUS liability, post sale support costs 

and corporate reputation 


9 

We Address the Following Problems 

Specification quality & accuracy 

Providing formal and deterministic specifications 

Requirements easily traced into and throughout the design 

Design documentation is always up to date 

Software implementation and verification errors 

Automatic certified code generation ensures application integrity and 

cost effectiveness 

Cost of finding bugs late 

Through static and dynamic analysis, we eliminate specification and 

design flaws early and enable full specification coverage 

Cost of verification & testing imposed by standards such as 

DO-178B, IEC 61508, EN 50128, IEC 60880 

Certified code generation eliminates unit testing 


10 

Compiler verification 

Detects compilation errors 

Design flow integration 

Links to other tools in the development chain 

Seamless integration with Configuration Management, 

Requirements Tools, IDEs 

Design collaboration 

Ability to easily share in the development, 

review and verification of the designs 


We also Solve…

11 

Model-Based Development 

for Critical Embedded Systems and Software 

Control Engineering 

Embedded Software 


Existing Capabilities 

On-Board 

Embedded Graphics

12 

SYSTEM 

SPEC 

Algorithm 

Design Capture 

Architecture 

Design Capture 

Requirements 

Management 

Gateway 

The SCADE Certified Software Factory 

DESIGN VERIFY GENERATE 

Debugging & 

Simulation 

Model Coverage 

Analysis 

Rapid 

Simulation 

Integrated 

Configuration 

Management 

Time & Stack 

Analysis 

MANAGE & TRACE 

Formal 

Verification 

Object Code 

Verification 

SCADE Suite/SCADE Display 

Integration 

Design 

Checking 

Automatic 

Design 

Documentation 

Copyright © Esterel Technologies 2008 - An ISO 9001:2000 Certified Company - Confidential & Proprietary 

SCADE 

Suite 

KCG 

RTOS 

Adaptors 

SCADE 

Display 

KCG 

SYSTEM 

TEST 

DO-178B 

IEC 61508 

EN 50128 

Certification Kits, 

Certificates & 

Handbooks

13 

What is Unique About SCADE? 

SCADE is being developed specifically to address 

critical embedded system and software applications 

SCADE is certified/qualified according to following 

international safety standards: 

DO-178B qualification up to Level A – Aerospace & Defense 

IEC 61508 certification up to SIL 3 – Transportation & Industry 

EN 50128 certification up to SIL 3/4 – Rail Transportation 

IEC 60880 full compliance – Nuclear Industry 


14 

Esterel SCADE Professional Services 

Team of Consultants and Experts experienced in all aspects of 

Mission and Safety-critical Software Development 

ISO 9001:2000 Certification to Deliver Expert Consulting and 

Training in the Mission and Safety-critical Market 

Programs 

Fast Ramp-Up Services 

Product training, over-the-shoulder ramp up support, and methodology 

guidelines 

Project Support Services 

Seamlessly integrate SCADE Suite and SCADE Display into your toolchain 

and workflow 

Certification Support Services 

Ranges of services from certification plan development, document 

generation qualification, and relationship assistance with certification 

authorities 


15 

Standards 

Portability 

Support 

Partners 

Results 

Why Esterel SCADE is the Solution… 

SCADE provides a common representation between 

systems and software teams sharing SCADE models 

SCADE generates portable C or Ada Code which 

is RTOS, hardware & bus platform independent 

Esterel Technologies has worldwide training and 

support capabilities 

SCADE has been integrated to leading Requirements 

Management Tools, Traceability, RTOSes, IDEs, 

Compilers, Testing and Code analysis tools 

SCADE users have experienced a 2X speed-up 

improvement in time-to-certification and a 37% 

reduction in project development costs! 


Case Studies

Esterel SCADE 

in Aerospace & Defense 

Applications

18 

Esterel in Aerospace & Defense Applications 

Flight control systems 

Power management 

Reconfiguration 

management 

Autopilots 

Engine control systems 

(FADEC) 

Braking systems 

Cockpit display and alarm 

management 

Fuel management 

(DO-178B EASA & FAA Qualified – up to level A) 


AIRBUS – A340-600 & A380 

US Air Force - F16

19 

Commercial Programs 

Airbus A340 & A380 

Boeing 787 

Eurocopter EC135/145/155/225 

Eurocopter AS 350 

Sikorsky S76D 

Dassault Falcon 7X, Falcon SMS 

Sukhoi Superjet 100 

ARJ-21 (Chinese Regional Jet) 

Cessna Citation Mustang 

Cessna Citation Encore+ 

Cessna Citation XLS+ 

Be200e (Amphibious Jet) 

Eclipse 500 

Embraer Phenom 100/300 

Gulfstream G500 

Mitsubishi MRJ 

SCADE Usage Overview by Programs 

Esterel Technologies Confidential 

Airbus A400M 

Defense Programs 

Dassault Rafale / Mirage 2000-9 

EADS Astrium M51 Missile 

MBDA FREMM Frigate Missile 

Launcher 

Eurocopter Super Puma, NH90 

Chinese Helicopters Z8, Z10 

US Air Force F16 

US-101 (Presidential Helicopter) 

Watchkeeper (UAV) 

Neuron (UAV) 

Space Programs 

ARIANE 5 Launcher 

ATV Launcher 

ESA’s VEGA Launcher 

Shenzhou II Rocket 

CEV Program

20 

SCADE is present in the following 

A380 systems: 

Flight Control system 

Flight Warning system 

Electrical Load Management system 

Anti Icing system 

Braking and Steering system 

Cockpit Display system 

Part of ATSU (Board / Ground comms) 

FADEC (Engine Control) 

EIS2 : Specification GUI Cockpit: 

PFD : Primary Flight Display 

ND : Navigation Display 

EWD : Engine Warning Display 

SD : System Display 

SCADE in the Airbus A380 


Flight Control 

Primary & Secondary 

Commands 

Braking & Steering 

Control Unit 

Anti Ice 

Control Unit 

Flight 

Warning 

System

Control and Display 

System (CDS) 

21 

Eight screens, two 

keyboards/cursor control 

devices 

Head-Up Display (HUD) 

Incorporating LCD 

technology 

On-board Airport 

Navigation System 

(OANS) 

SCADE Display & OpenGL 

graphics 

SCADE in the A380 Cockpit… 



in Rail Automation 

Systems 


23 

SCADE Suite Rail Automation Applications 

Train Control & Protection Systems 

Emergency braking 

Overspeed protection / Vehicle speed 

control 

Computer-based train control (CBTC) 

Automatic Train Protection 

Automatic Train Operation 

Door opening & departure interlocks 

Systems Control 

Human Machine Interfaces 

Fault reporting 

European Train Control System (ETCS) 


24 

SCADE Suite Rail Automation Applications 

Interlocking Systems 

Signaling 

Train vacancy detection 

Axle Counters 

Level Crossing protection 


25 

Alstom Transportation 

Ansaldo Signal / CSEE 

AREVA TA 

BJTU (Chinese Railways) 

Deuta Werke 

RATP 

SNCF (French Railways) 

Rail Automation Customers Examples 

Siemens Rail Transportation 

Systerel 

Thales Rail Signalling Systems 

Union Switch & Signal 

VNIIAS (Russian Railways) 


26 

SCADE Suite is currently being 

used by ANSALDO Signal on 

several large production 

projects to develop interlocking 

and train control systems 

Within the PAI-NG program, 

SNCF’s major interlocking 

renewal project for the whole 

french main line system 

SCADE at ANSALDO Signal 


Dukovany 1,2,3,4 

Cattenom 1,2,3,4

SCADE Suite is currently 

being used by AREVA TA to 

design its i-CBTC signalling 

solution 

Within the OURAGAN 

program, RATP’s major 

signalling renewal project for 

the Paris Metro 

27 

By kaffeeeinstein - Creative Commons 


SCADE at AREVA TA 

By Ostromentsky - Creative Commons

28 



in Nuclear I&C Applications 


30 

SCADE Nuclear I&C Applications… 

Reactor Protection Systems: 

Reactor limitation system 

Trip processing & Emergency shutdown 

Safety actuation 

Nuclear Instrumentation Systems: 

Power measurement system 

Neutron detectors 

Pressurizer heating controllers 

Neutron instrumentation systems 

Boron meters 

Other Safety Systems 

Safety valve control system 

Rod control systems 

Diesel sequencing system 

Rod position instrumentation systems 

(IEC 60880 Compliance) 



in Automotive & Industrial 

Applications 


32 

Esterel in Automotive & Industrial Applications… 

Automotive & 2-Wheelers: 

Airbags 

Braking Systems, ABS & ESP 

Steering 

Chassis & Suspension Systems 

Restraining systems 

Engine regulation 

X-By-Wire applications 

Heavy Duty Industrial systems: 

Cranes 

Tractors 

Tanks 

Earth Moving Machines 

Trucks 

Construction equipment 

Mining machines, etc… 

(IEC 61508 Certified by TÜV – up to SIL 3) 


AUDI - A8 

BMW motorcycles

33 

Active Suspension 

System Control 

SCADE in the Peugeot 407… 


34 

OEM MODULE PARTNERS 

Esterel Technologies Partners 


REAL-TIME OPERATING SYSTEM PARTNERS 

DEVELOPMENT TOOL CHAIN PARTNERS OPENGL LIBRARY PARTNERS

Esterel Technologies - Wind River

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?