An approach to integration of complex systems: the SAVI virtual integration process

The SAVI approach to integration embodies three fundamental concepts: (1) an architecture-centric emphasis (wrapped around an annotated architectural model with analyses carried out at the system level after modifications); (2) a component-based decomposition of elements of the system that support a building block approach; and (3) a unique level of consistency checking to assure compatibility for the physical and logical integration through ana "single truth" across the multi-domain model set. Thus, this unique architectural model implements the SAVI mantra of "integrate, analyze -- then build" to address a range of virtual integration issues. Careful safeguards to protect the integrity of intellectual property for each member of the development team are provided through the SAVI Model Repository and Data Exchange Layer (SMR/DEL). These two core information-sharing elements of the VIP will eventually depend heavily on standards-based (likely ISO 10303-239) information exchange and the SAVI team has taken steps recently to cooperate with global collaborators, both in the United States and in Europe in this type of information exchange. This sort of standards-based data exchange also offers considerable promise for protection of sensitive information within a system development with competing suppliers. The paper describes how multiple architectural definition languages (specifically SysML and AADL) have been utilized in developing the core of this model-based analysis approach. The objective is to exploit strengths of both these languages while maintaining capability to translate between both variations of architectural models. The primary means of accomplishing this two-way translation is an extension of the translator generated by Cofer, et al, for the DARPA META program. This translator currently operates in a two-way sense (between SysML and AADL) only upon a rather limited subset of SysML capabilities but the SAVI team expects to see this two-way capability broadened with each incremental development phase of the VIP. Extensive use of recent new annexes for AADL, notably the Error Model Annex, has been a means of automating system safety analysis tools (like Functional Hazard Assessments, Failure Modes and Effects Analyses, and Fault Tree Analyses) that underpin broader System Safety Analysis. Another characteristic embedded in the SAVI VIP is a comprehensive form of consistency checking designed to evaluate integration of components and alterations o