2.1 System-level verification

Contextual description: As part of demonstrating that the required behaviour is achieved, the performance of the system as a whole should be assessed against the safety requirements. This will provide evidence that may be used as part of a safety justification for the RAS.

Practical guidance:  Predominantly this objective would be demonstrated through testing, either in the real world or through use of simulation, taking account of the strengths and weaknesses of such approaches.

An alternative approach is to generate evidence using formal verification. Guidance is required on the use of formal techniques and the advantages and challenges of doing so.