Post on 14-Jun-2020
transcript
www.thalesgroup.com THALES GROUP INTERNAL
Sample Arcadia / Capella Model
Railway Level-crossing Command & Control
2 OPEN
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d,
mo
difie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay,
in w
ho
le o
r in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rio
r w
ritt
en
co
nse
nt
of
Tha
les
-
© T
ha
les
2015 A
ll rig
hts
re
serv
ed
.
What ARCADIA is
Operational Need
System Need
Solution Architecture System
Sub-systems
Software, Hardware…
Safety
Security
Product
Policy…
IVVQ Strategy
IVVQ Optimisation
IVV Configurations
And more…
Focus here today
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
3 THALES GROUP INTERNAL
Method Perspectives: formalising & sharing Need & Solution
User Need
System Need
Notional Solution
Final Solution
Sub-contractors input
What the users of the system
need to accomplish
What the system has to
accomplish for the Users
How the system will work so as to
fulfil expectations
How the system will be
developed & built
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
4 THALES GROUP INTERNAL
Summary: Perspectives & Models
▌ Operational Analysis
▌ Functional/NF Need Analysis
▌ Logical Architecture
Viewpoints trade-off
▌ Physical Architecture
Viewpoints trade-off
Traceability Allocation
Reqs
ViewPoints
ViewPoints
C1
C2
C3
SFb
SFa
SFd
SFe
SFc
F21
F1
F6 F3
F22
C11
C12
C1’
C2
C3
C4
F21
F1
F6 F7
F22
e.g. Processors
e.g. Buses
A1
A3 A2
e.g. SW, HW
components
www.thalesgroup.com THALES GROUP INTERNAL
Operational Analysis
What the users of the system need to accomplish
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
6 THALES GROUP INTERNAL
Missions to be fulfilled by the users
Capabilities needed to fulfil
the missions
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
7 THALES GROUP INTERNAL
Initial description of users and stakeholders
activities & interactions
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
8 THALES GROUP INTERNAL
Feared Situations
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
9 THALES GROUP INTERNAL
Revised description of users and stakeholders activities & interactions
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
10 THALES GROUP INTERNAL
Capability description: time-related Scenarios
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
11 THALES GROUP INTERNAL
Capability description: Operational Processes
www.thalesgroup.com THALES GROUP INTERNAL
System Need Analysis
What the system has to accomplish for the Users
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
13 THALES GROUP INTERNAL
Capabilities required from
the System
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
14 THALES GROUP INTERNAL
Services required from
the system
Functional Chains
Focus on Train
departure
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
15 THALES GROUP INTERNAL
Synthetic views
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
16 THALES GROUP INTERNAL
Functional Chain contributing to
describe a system Capability
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
17 THALES GROUP INTERNAL
Scenario contributing to
describe a system Capability
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
18 THALES GROUP INTERNAL
System Modes (and States) related to
Required functions and exchanges triggering
transitions
www.thalesgroup.com THALES GROUP INTERNAL
Logical Architecture
How the system will work so as to fulfil expectations
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
20 THALES GROUP INTERNAL
High level and detailled views
of solution functional analysis
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
21 THALES GROUP INTERNAL
Detailled Functional Chain built on solution functional analysis
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
22 THALES GROUP INTERNAL
Structural breakdown into components
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
23 THALES GROUP INTERNAL
Description of data to be exchanged
Sets of data effectively exchanged together between functions (exchange items)
Links between exchanges at functions and component levels
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
24 THALES GROUP INTERNAL
Scenarios describing detailed contribution
of components
Components
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
25 THALES GROUP INTERNAL
Modes for ‘Procedures command control’
component Modes for
‘Safety command control’ component
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
26 THALES GROUP INTERNAL
Synthesis view of functions & components
www.thalesgroup.com THALES GROUP INTERNAL
Physical Architecture
How the system will be developed & built
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
28 THALES GROUP INTERNAL
Behavioural components and functions,
component exchanges
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
29 THALES GROUP INTERNAL
Behavioural components and implementation resource components,
physical links
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
30 THALES GROUP INTERNAL
Logical architecture functional analysis
Physical architecture functional analysis
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
31 THALES GROUP INTERNAL
Physical connections and their
behavioural contents
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
32 THALES GROUP INTERNAL
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
33 THALES GROUP INTERNAL
Not only data or information
can be described!
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
34 THALES GROUP INTERNAL
Note the way to describe
different levels of semantics
and interaction
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
35 THALES GROUP INTERNAL
Routing an exchange through a complex
physical path
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
36 THALES GROUP INTERNAL
Functional exchanges
Component exchanges
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
37 THALES GROUP INTERNAL
Interfaces on component ports
grouping exchange items
Exchanged sets of data
(exchange items)
Data
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
38 THALES GROUP INTERNAL
Summary…
www.thalesgroup.com THALES GROUP INTERNAL
Building Strategy
Input for Sub-systems development and IVV
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
40 THALES GROUP INTERNAL
Configuration Items Built from
physical architecture
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
41 THALES GROUP INTERNAL
System physical
architecture
Sub-System system need
analysis
Sub-System logical & physical
architectures
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
42 THALES GROUP INTERNAL
To get more details on this model…
French and English versions of the Level-Crossing Traffic Control system model available for download on the Capella website. http://polarsys.org/capella/download.html 4 videos thoroughly comment the model and explain the design choices: - Customer Operational Need Analysis: https://lnkd.in/dvyhjae - System Need Analysis: https://lnkd.in/dve_wdR - Logical Architecture: https://lnkd.in/dqfSs65 - Physical Architecture: http://youtube.com/watch?v=1EEcDtLAiXk
This
do
cu
me
nt
ma
y n
ot
be
re
pro
du
ce
d, m
od
ifie
d,
ad
ap
ted
, p
ub
lish
ed
, tr
an
sla
ted
, in
an
y w
ay, in
wh
ole
or
in
pa
rt o
r d
isc
lose
d t
o a
th
ird
pa
rty w
ith
ou
t th
e p
rior
writt
en
co
nse
nt
of
Tha
les
- ©
Th
ale
s 2
01
7 A
ll rig
hts
re
serv
ed
.
43 THALES GROUP INTERNAL
To go further…
Publisher: ISTE Press - ELSEVIER
About
the Method
About
the Tool
Capella & Arcadia website: http://www.polarsys.org/capella/ LinkedIn http://www.linkedin.com/company/capella-modelling-workbench Capella forum: https://polarsys.org/forums/index.php/f/13/ Clarity consortium for the Capella ecosystem http://www.clarity-se.org/
Books: