V. Summary and Conclusions
Emerging autonomous systems such as the Gateway Vehicle System Manager are more vulnerable to latent defects
than systems with continuous human monitoring. Treating verification as an overarching architectural view can,
relative to the approach defined in the classic verification V, significantly reduce the cost to fix defects, ensure a
higher-quality system, and most importantly, increase reliability. The verification architectural view entails full-
lifecycle activities, with significant emphasis on early lifecycle verification using assume-guarantee contracts and
model checking. Incorporating verification in the logical, process, deployment, and scenario view increases the
opportunity to find defects early and reduces risk of defects making it into the operational system. Robust
operational verification is feasible using toolsets proven on NASA missions and helps protect the operating system
from undesirable behaviors. Future work will refine the verification view based on project experience and assess the
efficacy of the full-lifecycle and operational methodologies.
References
[1] Starek, J. A., Acikmese, B., Nesnas, I. A., Pavone, M., “Spacecraft Autonomy Challenges for Next-
Generation Space Missions,” Lecture Notes in Information Sciences, 2016
[2] Badger, J. M., Strawser, P., and Claunch, C., “A Distributed Hierarchical Framework for Autonomous
Spacecraft Control,” IEEE Aerospace Conference, Big Sky, Montana, 2019
[3] Ohi, D., Dabney, J. B., and Walter, C., “Independent Verification and Validation of Large System
Architectures,” NASA Spaceflight Flight Software Workshop, Jet Propulsion Laboratory, Pasadena,
California, December, 2010
[4] Dabney, J. B., and Rajagopal, P., “Architecture-Driven IV&V Planning,” NASA Flight Software
Workshop, San Antonio, Texas, December, 2018
[5] DoD Architecture Framework Version 2.0, Volume II: Architectural Data and Models Architect’s
Guide, U.S. Department of Defense, Washington, D.C., May, 2009
[6] Kruchten, P., “Architectural blueprints – the 4+1 view model of software architecture,” IEEE Software
Vol 12, No 6, November, 1995, pp 42 – 50
[7] Ryen, E., “Overview of the System Engineering Process,” North Dakota Department of
Transportation, 2008
[8] Zhao, Y., and Rozier, K. Y., “Formal Specification and Verification of a Coordination Protocol for an
Automated Air Traffic Control System,” Science of Computer Programming, V. 96, N. 3, 2014, pp
337 – 353
[9] Rozier, K., and Schumann, J., “R2U2: Tool Overview,” International Workshop on Competitions,
Usability, Benchmarks, Evaluation, and Standardisation for Runtime Verification Tools, Seattle,
Washington, 2017
[10] L. Karam, “The importance of a good software architecture,” https://apiumhub.com/tech-blog-barcelona/
importance-good-software-architecture, APIUMHUB, 2016.
[11] P. Kruchten, “Architectural blueprints – the 4+1 view model of software architecture,” IEEE Software Vol 12,
No 6, November, 1995, pp 42 – 50
[12] M. R. Barbacci and W. G. Wood, "Architecture tradeoff analyses of C4ISR products,” Technical Report CMU/
SEI-99-TR-014, Software Engineering Institute, 1999
11