Home' RTCA Documents for Review : C2 Link Systems MASPS_Draft Contents 15
© 2018 RTCA, Inc.
Note: Those requirements were not derived from the OSA or OPA processes. However,
the mitigations required to implement the security requirements may mitigate the
risk of several operational hazards identified in APPENDIX C, APPENDIX D, and
Operational Performance Assessment (OPA)
The C2 Link System MASPS uses an Operational Performance Assessment (OPA) process
as a means to determine the performance-related aspects of the C2 Link System RLTP.
When combined with the allowable likelihood of hazards, derived in the OPA (see Section
2.2.3) it enables the complete set of RLTP related requirements to be derived. The OPA
also captures C2 Link System related performance requirements that were derived from
other regulations and standards relevant to the operational environment for the scenario.
The OPA employs the use cases that were derived from the scenarios described in the
OSED to determine the time-related performance requirement aspects of the RLP for each
of the functional requirements that were derived in the OSED.
This analysis includes the use of an appropriate quantitative risk for C2 Link System
failures based on the kinetic energy of the aircraft. This approach is consistent with the
FAA’s risk-based certification approach that governs their regulations and policy
established for traditional aviation. (See “The FAA and Industry Guide to Product
Certification” .) This approach provides a starting point for determining the acceptable
risk of a C2 Link System failure, but users of this document are encouraged to work with
their regulatory authority to determine the acceptable level of risk for their specific aircraft
and operating environment.
Each use case is representative of actual desired operations but is structured so as to enable
both the time-related and (from the OSA) safety-related aspects of the support of the
various remote pilot activities to be evaluated. The OPA considers the overall timeline for
each of the use cases and subtracts any latencies and human activity times associated with
the sequence of events for each use case to determine how much time remains for any C2
Link System interruption. If this interruption time and consequently the TET is exceeded,
then some Operational Hazard (OH) may ensue.
The following subsections define key phrases/words used throughout this document.
Use of Requirements and Recommendations and Key Words
This document contains “shall” and “should” statements with the following meanings:
The use of the word “shall” indicates a mandated criterion; i.e., compliance with the
criterion is mandatory and no alternative may be applied.
The use of the word “should” indicates that although the criterion is regarded as the
preferred option, alternative criteria may be applied. In such cases, alternatives should
be identified in appropriate approval plans and agreement sought from the
certification/operational approval authority.
The use of the word “will” describes expected system behavior when the system
complies with the reference requirements.
Boldface word shalls indicate normative requirements (those are given in Section 3), the
use of non-bold shalls in the appendices which are informative statements.
Links Archive DO-XYZ_ED-ABC_FRAC_SC236_MASPS Navigation Previous Page Next Page