Ben Brosgol (of Adacore) is describing how C and C++ are unsafe for DO-178B programming due to the unpredictable behaviour of error-prone features. In the search for reliability and analysability, he examines MISRA C (and MISRA C++), Ada (with its Restrictions pragma and SPARK subset) and Java (with its Real Time Specification and Safety Critical Java).

He concludes that there is no perfect choice, and that subsetting is essential.

The article: http://www.vmecritical.com/articles/id/?4030

Advertisements