Curated computing and ML systems news.

NASA has opened a public comment period for a revised NASA/SP-2016-6105 with model-based approach guidance, updated V&V content for software-intensive systems, and new material on SE in Agile programs.

RTCA SC-228 released a draft supplement to DO-178C addressing ML constituents in airborne software. Covers dataset management, explainability requirements, and how probabilistic outputs interact with deterministic safety objectives. Industry comment period runs through June.

A practitioner survey across 340 organizations finds 71% have evaluated SysML v2, but fewer than 18% have deployed tools in production. Integration with legacy model repositories and training gaps are the primary blockers.

ISO 21448 Edition 2 expands the SOTIF framework beyond Level 2 automation. New requirements address scenario completeness metrics, performance limitation detection, and validation testing under distribution shift. Transition period ends December 2027.

Teams at three defense prime contractors report results from integrating TLA+ and Alloy with MBSE workflows. Formal specs caught interface ambiguities three times earlier than review-based approaches. Learning curves average six weeks per engineer.

The EU CRA implementing regulations cite IEC 62443-4-2 for ICS components, creating a conformity presumption pathway for OT vendors. Manufacturers have until September 2027 to comply; critical infrastructure faces accelerated timelines.

The Rust Safety-Critical Consortium published a language profile restricting unsafe blocks and dynamic allocation for DO-178C DAL A software. Three qualified compiler vendors announced preliminary support; EASA acknowledged the submission.

A joint INCOSE/OMG/PDES working group identifies 14 integration points where SysML v2 and PLM schema standards have semantic mismatches causing data loss. Proposed resolutions include the SysIML OMG profile and STEP AP242 Module 1650.

The updated SQuaRE quality model adds Flexibility as a top-level characteristic and consolidates Safety and Security under a Dependability tree. Traceability from quality characteristics to operational scenarios is now explicitly required.

The Object Management Group has formally published SysML v2 after years of development. The new standard brings a completely redesigned textual syntax (KerML), improved support for parameterized models, and cleaner interfaces with simulation environments.

A draft of ISO 26262 Edition 3 has entered public comment phase. The draft includes expanded guidance for software-defined vehicles, clarifies ASIL decomposition rules for multi-core processors, and adds a new annex on AI/ML component safety argumentation.

An analysis of requirements defects across 500 systems engineering project reviews identifies the 10 most prevalent anti-patterns, with "shall ambiguity" and "missing verification method" accounting for 48% of all requirements defects found in independent reviews.

AdaCore and Ferrous Systems have jointly published a qualification kit for Rust targeting DO-178C DAL A. The kit covers tool qualification for the rustc compiler and provides a formal safety manual, making Rust a viable option for the highest-criticality airborne software.

MISRA C:2025 introduces 12 new rules targeting modern C language features, retires 8 obsolete rules, and for the first time provides formal guidance on use of C11 and C17 features in safety-critical embedded development.

A new study from the NDIA Systems Engineering Division documents implementation patterns and failure modes from eight digital thread initiatives across major defense acquisition programs. Key finding: governance architecture, not tooling, determines success.

IEC 61508 Edition 3, expected for publication in 2026, introduces substantially revised software development requirements including mandatory use of structured code analysis tools for SIL 2+, clearer guidance on model-based development, and updated treatment of AI/ML components.

A surge in TLA+ and Alloy adoption is being driven not by academic interest but by high-profile production failures. Engineers at AWS, Microsoft, and several aerospace primes have published post-mortems citing formal specification as the tool that would have caught their bugs.

A study of 12 industrial digital twin deployments across aerospace, automotive, and heavy manufacturing sectors finds median 18% reduction in production defect rates and 23% reduction in unplanned downtime, with implementation cost recovery averaging 2.3 years.

JAXA has published its updated requirements management framework developed during the Martian Moons eXploration (MMX) mission. The framework introduces probabilistic requirement verification for deep space environments where deterministic verification is infeasible.

Peter Deutsch's 1994 list of distributed systems fallacies remains relevant but incomplete. A new analysis adds three more fallacies specific to cloud-native and microservices architectures that systems engineers routinely encounter in modern distributed system design.

A meta-analysis of 40 systems engineering programs finds that over-specification — requirements that constrain solution space unnecessarily — correlates more strongly with schedule overruns than under-specification. The study proposes a requirements specificity index and calibration approach.

A 10-year study of on-orbit anomalies and failures across 1,200 satellites identifies that power system failures and attitude control software faults account for 67% of mission-limiting anomalies, with SEU-induced software faults increasing proportionally with altitude.

As electric aviation moves from demonstrators to certified aircraft, BMS architecture is emerging as a critical systems engineering challenge. This analysis covers fault detection, isolation, and recovery architecture for DO-311A compliant lithium battery systems.

As MBSE adoption matures, programs are discovering that high-fidelity models become liabilities when teams lack the resources to maintain them. This analysis proposes a fidelity calibration framework tied to program phase and risk profile.

ROS 2 Iron release introduces deterministic executor profiles, improved DDS configuration for latency-sensitive applications, and a new safety-critical node lifecycle specification that integrates with IEC 61508 development processes.

DARPA's new ASVS program targets the fundamental challenge of verifying autonomous systems that operate across unbounded environmental conditions. The program seeks formal methods approaches that scale to real-world operational envelopes.

The pre-certified FreeRTOS Safety Tier now holds IEC 61508 SIL 3 and ISO 26262 ASIL D certification, substantially reducing the qualification burden for embedded teams building safety-critical applications on real-time Linux alternatives.

The Configuration Management II Institute has published updated standards that explicitly address digital twin configuration management. The new guidance covers twin fidelity versioning, physical-digital synchronization status, and configuration audit procedures for twin-augmented programs.

The March 2025 release of AUTOSAR Adaptive Platform introduces significant changes to the service discovery mechanism, tightens cybersecurity integration with ISO/SAE 21434, and clarifies the execution management lifecycle for safety-critical applications.

The eighth integrated flight test of Starship achieved full mission success. The engineering community has been analyzing publicly available data for systems engineering lessons — particularly around the rapid iteration development model and its implications for traditional SE processes.

A detailed technical analysis of the July 2024 CrowdStrike outage identifies at least six systems engineering process failures — from requirements on update safety to verification of content validation logic — that together produced the largest IT outage in history.

SAE International has published a revision to J3061, the cybersecurity guidebook for cyber-physical vehicle systems. The revision significantly strengthens the relationship between security assurance and functional safety arguments, addressing the TARA-to-hazard-analysis interface.

A practitioner survey finds that 73% of systems engineering teams have adapted the V-model rather than replacing it. This analysis documents the most common adaptations: spiral V, iterative V, and hybrid agile-SE frameworks that preserve V-model rigor while enabling incremental delivery.

A survey of 340 systems engineers with SysML v2 pilot experience reveals: significant improvements in semantic consistency, mixed results on tool maturity, and an underestimated migration effort from v1 models and workflows.

A comprehensive survey of open-source MBSE tools reveals a maturing ecosystem. Capella leads in adoption, openMBEE is gaining traction in the US defense community, and the SysML v2 reference implementation (openapi-sysml) is attracting significant contributor interest.

The FAA's new digital engineering guidance allows model-based artefacts to satisfy some DO-178C and DO-254 certification evidence requirements, potentially reducing duplicate documentation but requiring new model governance processes.

A controlled study evaluates LLM-assisted FTA against expert-only FTA on 12 safety-critical systems. LLMs significantly accelerate initial tree construction and improve completeness for well-documented system classes, but produce overconfident assessments for novel failure modes.

A consortium of naval research labs has proposed a standardized autonomy taxonomy for underwater systems, addressing the inadequacy of SAE J3016 (designed for ground vehicles) for marine environments. The proposal covers UUVs, AUVs, and underwater infrastructure monitoring systems.

The European Space Agency documents key lessons from its Digital Twin for Space programme, including model fidelity calibration, on-orbit data integration, and the gap between design-phase models and operational reality that ground teams have to manage.

Teams at two major aerospace primes have published details of their ICD automation pipelines built on DOORS Next and SysML v2 tooling. The approach automatically generates ICD documents from interface specifications in the model, reducing ICD maintenance overhead by ~60%.

ISO 21448 Edition 2 (SOTIF) has been formally published, strengthening requirements around performance limitation identification, operational design domain specification, and the integration of SOTIF arguments with ISO 26262 safety cases.

Systems-Theoretic Process Analysis is gaining traction in aerospace and automotive sectors as a complement or replacement for traditional FMEA, offering better coverage of software-intensive and emergent failure modes that fault-tree approaches routinely miss.

A growing cohort of systems engineers is drawing on category theory concepts for compositional system design, interface specification, and multi-physics model integration. This overview explains the practical applications without requiring deep mathematical background.

As ISO/SAE 21434 cybersecurity requirements become contractually mandatory for Tier 1 automotive suppliers, systems engineers face the practical challenge of reconciling functional safety (ISO 26262) and cybersecurity V-models that were designed independently.

Airbus has published a detailed retrospective on two years of deploying AI-assisted requirements review tools across multiple programs. The system reduces review time by 40% while improving consistency, but requires careful calibration to avoid anchoring bias.

Using Linux in safety-critical industrial control systems requires navigating the intersection of IEC 62443 (industrial cybersecurity) and IEC 61508 (functional safety). This technical guide addresses RTOS vs. Linux architectural decisions, partitioning strategies, and the certification path.

Amazon engineers describe how TLA+ formal specification has prevented at least 7 critical data-loss bugs in distributed storage services. The approach is now standard practice for protocol design at AWS, with 200+ engineers trained on the toolchain.

Research surveying 35 industrial digital twin deployments has identified four primary synchronization patterns with distinct tradeoffs. The taxonomy — event-driven, periodic, threshold-triggered, and model-predictive — provides a selection framework for practitioners.

A structured comparison of three major hazard analysis methods finds that STPA identifies significantly more control-related hazards in complex interactive systems, while HAZOP remains superior for well-understood process systems. Neither dominates across all system classes.

NASA's 2024 update to its Systems Engineering Handbook introduces revised guidance on digital engineering workflows, updated Verification & Validation matrices, and a new chapter on model-based systems engineering integration with mission assurance processes.

Traditional test coverage metrics (line, branch, MC/DC) are inadequate for AI-enabled system components. This paper proposes a multi-layer coverage framework addressing data coverage, behavioral coverage, and distributional robustness coverage for ML-based components.

A June 2025 VDA-backed memorandum puts eleven automotive companies behind pre-competitive open-source development for non-differentiating vehicle software. The announcement is notable because it couples a code-first model with an explicit certification-preparation story instead of treating open source and safety as separate tracks.

Google's incident report says a new quota-policy path in Service Control crashed on blank fields after globally replicated policy data exercised an untested code path. Recovery then slowed in larger regions because restarting tasks created a herd effect against dependencies without the right randomized exponential backoff.

Jason Evans says active upstream development of jemalloc has ended after roughly two decades spanning FreeBSD, Firefox, and Facebook. The postmortem is notable less as nostalgia than as a technical history of fragmentation failures, portability work, and the maintenance burden that follows low-level infrastructure for years.

AdaCore says NVIDIA used Ada and SPARK for some of the highest-integrity components in its DRIVE OS stack and is now publishing the reference process so other automotive teams can reuse it. The HN thread quickly reframed the announcement as a question of proof-oriented tooling versus the industry's entrenched C++ base.

A May 2025 essay from Galois argues that formal-methods projects succeed when they clear a concrete cost-benefit threshold, not when they merely maximize theoretical assurance. Hacker News discussion focused on whether model checking is cheaper than its reputation suggests and on the real staffing cost of sustaining niche expertise.

NASA restored Voyager 1's primary roll thrusters after more than twenty years offline because the backup thrusters are threatened by residue buildup and command opportunities are narrowing during Deep Space Network upgrades. The maneuver is a reminder that deep-space operations often hinge on recovery paths nobody expected to matter this late in a mission.

On July 19, 2024, a single faulty content update to CrowdStrike's Falcon sensor triggered a global wave of Windows bluescreens and boot loops, taking down an estimated 8.5 million machines. The incident exposed critical gaps in update validation, canary deployment discipline, and recovery ergonomics that every organization running endpoint security software should examine.

In October 2020, the RIAA sent GitHub a DMCA takedown targeting youtube-dl and dozens of its forks, arguing the tool circumvented technological protection measures under the DMCA's Section 1201. The takedown — and its eventual reversal — exposed serious fault lines around open source sustainability, legal exposure for tool authors, and the fragility of infrastructure engineers quietly depend on.