International Journal of Aerospace Engineering (Jan 2019)

Development of Embedded Boot Software for a Satellite Instrument Control Unit: Lessons Learned

  • Jesús Fernández-Conde,
  • Jaime Gómez-Saez-de-Tejada,
  • David Pérez-Lizán,
  • Rafael Toledo-Moreo

DOI
https://doi.org/10.1155/2019/8625378
Journal volume & issue
Vol. 2019

Abstract

Read online

A satellite spacecraft is generally composed of a central Control and Data Management Unit (CDMU) and several instruments, each one locally controlled by its Instrument Control Unit (ICU). Inside each ICU, the embedded boot software (BSW) is the very first piece of software executed after power-up or reset. The ICU BSW is a nonpatchable, stand-alone, real-time software package that initializes the ICU HW, performs self-tests, and waits for CDMU commands to maintain on-board memory and ultimately start a patchable application software (ASW), which is responsible for execution of the nominal tasks assigned to the ICU (control of the satellite instrument being the most important one). The BSW is a relatively small but critical software item, since an unexpected behaviour can cause or contribute to a system failure resulting in fatal consequences such as the satellite mission loss. The development of this kind of embedded software is special in many senses, primarily due to its criticality, real-time expected performance, and the constrained size of program and data memories. This paper presents the lessons learned in the development and HW/SW integration phases of a satellite ICU BSW designed for a European Space Agency mission.