Functional Safety Tools

Product overview


  • Requirements management

    Supports adding, deleting and modifying properties to be validated

  • Model management

    Variables in system design can generate models automatically

  • Automatic validation

  • Counterexample traceability

    Validation failures provide a counterexample cycle diagram and are traceable

Value advantage

  • Dual support for binary file and source code scanning

    The only tool on the market that can scan binary files and source code simultaneously. Not only will you be able to continuously monitor the security quality of your code as it is written, but you will also be able to do a final security review of the software after the source code has been compiled into binaries.

  • More comprehensive format support

    Eighty percent of the available SCA source code scanning tools cannot scan code written in C/C++ due to features of the C/C++ language. In terms of binaries, 90% of SCA binary-scanning tools do not support the APK format. For the above special cases, the SmartRocket Scanner is fully supported.

  • Bug fix advice

    It can not only scan out code vulnerabilities for users, but also provide code repair Suggestions for users, so that users can more closely connect the process from finding problems to solving problems, so as to better improve the efficiency of problem solving.

  • Huge vulnerability database

    Through years of scientific research experience and data accumulation, it can provide users with more accurate and comprehensive scanning results. In addition, through long-term tracking of well-known open source components, we also have unpublished and exclusive vulnerability information to help SmartRocket Scanner find the most comprehensive possible vulnerabilities.

  • Automatic function

    Users only need to click the upload button input to verify safety requirements documents and to verify the system design document, and then click the verify button one-click automatically according to the requirements of security authentication system design, the final results of automatic classification for authentication, verification is not by and by successfully passed the security requirements of three of the following is derived.

  • Full coverage

    The core function of the tool -- verification function is the formal verification method adopted. The formal verification method USES mathematical proof to ensure that the system meets the requirements. The authenticity conclusion of each attribute is based on strict mathematical proof.

  • Provide counter examples

    Click to select each rail transit equipment that fails to verify the safety requirements. The tool will not only provide the verification results of the specific cycle of the equipment (until the last cycle with a counter example), but also provide the logical relationship model diagram of the equipment for the user to click on the equipment associated equipment for tracing.

  • High performance

    Based on the kernel of formal verification method based on model inspection, even for large interlocking system, this tool only needs a little time to carry out complete security verification. Rapid verification can quickly find system design errors and correct them, thus achieving a virtuous cycle and greatly shortening the cycle of system design.

  • Large capacity

    The kernel verification function of this tool adopts the formal verification method based on model inspection. The model inspection technology has been proved to be used in avionics, electronic design automation and other industries, that is, it can verify the very large system, and our tool can also verify the very large interlocking system.

  • Supports statement, branch, MC/DC override criteria

    SmartRocket Unit can generate test cases for coverage criteria, support statement, branch, MC/DC and boundary coverage criteria, automatically execute generated test cases and provide filters, and can meet the stringent testing requirements of industry standards such as D0-178B, ISO26262 and EN50128.

    Tools that use random generation or data dictionary generation of test cases do not contain coverage criteria, use cases are generated by random combination, and cannot support the directional generation of MC/DC and boundary use cases.

  • Generate a compact set of test cases

    The SmartRocket Unit generates a simplified set of use cases for different criteria, so that there is no redundancy between use cases. Other use case generation tools have no overridden criteria, and there is often a lot of redundancy in generating use cases by random generation or data dictionary. When testing a control software code in space, the SmartRocket Unit generates just a dozen use cases to achieve 100% coverage of statements, branches, and MC/DC functions, while the other software tools used give hundreds of test cases, resulting in a large number of redundant use cases.

  • Shape parameter, global variable, pile function and pile function parameter data are designed comprehensively

    SmartRocket Unit can fully design parameters, global variables, pile functions and pile function parameters, etc., and automatically design the return value of pile and output value of parameters. However, random generation or data dictionary generation test case tools usually only support data design of formal parameters and global variables, resulting in the failure to achieve high coverage.

  • Support system function calls

    In the code under test, we sometimes want to preserve system functions, especially memory functions such as memcpy and memSET, which may affect coverage. The SmartRocket Unit is able to automatically capture the memory change constraints of such functions to generate the correct test cases, which are not properly recognized by tools that randomly generate or data dictionary generate test cases. Neither of the tools based on the first two generation strategies can properly override the return 0 branch, whereas the SmartRocket Unit provides a switch for whether the system function piles or not. When we turn on the system function no-pile switch, the SmartRocket Unit is able to correctly generate 2 use cases to achieve 100% coverage.

  • Use cases are automatically executed to meet the expected value check specification

    The SmartRocket Unit generates a use case and automatically executes it, capturing output check information such as the expected value of the use case and automatically comparing it. This check item meets the requirements of functional security authentication, checking function return value, checking global variable modified value, checking parameter pointer pointing to content modified value and so on. Other tools do not have this check item or the check item is weak (for example, only check the return value of function, etc.), and a lot of manpower is needed to supplement this part of data later, which leads to the decrease of efficiency.

  • Perfect automatic vulnerability discovery system

    With the rapid development of information technology, the functions and scale of software are increasing day by day, and the traditional testing and defect analysis methods relying on human hands cannot meet the needs of the future. How to ensure the reliability and security of software has become an increasingly serious challenge.

    Fuzziness tests automatically generate test cases to discover potential defects in a program by attempting to approximate all execution paths of the program. Fuzz testing can also be integrated into the original CI/CD/DevOps development process as a continuous deployment process, and become a complete set of automated vulnerability discovery system to help customers find bugs and vulnerabilities efficiently, quickly and easily.


  • High efficiency and safety

    Adopting advanced virtual execution technology, the scanning coverage rate is high and the false alarm rate is low. Clear and easy to read vulnerability analysis report, rich statistics, reports, graphical display interface, flexible deployment and scanning methods.

  • Customization capability

    Based on the self-developed code scanning engine, the code scanning engine can be customized according to the business and technical characteristics of users to further improve the coverage and accuracy of code scanning.


Typical applications

  • Rail traffic

  • Lunar exploration project phase III

  • Shanghai Metro signal

  • On-board ECU system

  • Aeronautics and astronautics

  • Rail traffic

  • Automotive electronics

  • Aeronautics and astronautics

  • rail traffic

  • Automotive electronics

  • Aeronautics and astronautics

    Satellite control software is the core of satellite control system, with complex functions, high unit test coverage requirement, high cost of manual test case writing and error prone. Using SmartRocket Unit can automatically generate Unit test cases that meet statement coverage, branch coverage and MC/DC coverage, and perform test execution automatically, which can improve software testing efficiency and software product quality. Out of 150,000 lines of code tested in a space unit, the SmartRocket Unit achieved average statement coverage of more than 90%.

  • Subway signal

    Subway signal system is the control center of subway system. In the test of subway signal system, corresponding unit tests should be carried out according to different SIL levels. In traditional testing, test case writing relies on human resources, and software code testing with strict requirements for MC/DC coverage is bound to consume a lot of human resources and time.

    Using the SmartRocket Unit tool can solve this problem, greatly reducing labor and time costs. Out of 200,000 lines of code tested for a subway signal Unit, the SmartRocket Unit achieved an average of over 85% statement coverage, with significant use case generation.

  • Automotive electronics

    The automotive electronics industry complies with ISO26262 standard, and for projects that need to achieve ASIL-D safety levels, it also requires considerable labor and time to write use cases. The use cases generated by the SmartRocket Unit can be seamlessly applied to the automotive electronics industry, helping testers quickly meet statement/branch, MC/DC code coverage requirements. The SmartRocket Unit achieved average statement coverage of more than 85% in a car electronics Unit test of 100,000 lines of code.