EN 50716:2023 is the latest functional safety standard for railway software, replacing both EN 50128:2011 and EN 50657:2017. Issued by CENELEC, EN 50716 adapts IEC 61508 to the needs of railway software development. It introduces significant updates in lifecycle management, technique selection, software modeling, and component qualification.
The ECLAIR Software Verification Platform supports compliance with all three railway software standards, ensuring continuity and adaptability whether you are working with current or legacy requirements.
ECLAIR supports the entire development lifecycle from requirements to verification. It is applicable across all Software Integrity Levels (SIL 1–4) and Basic Integrity (BI), delivering features for:
Requirements traceability with its requirements management tools
Enforcement of software architectural constraints with ECLAIR Independence Checker
Static analysis for coding guideline compliance (MISRA C/C++, BARR-C)
Verification and reporting aligned with railway documentation mandates
ECLAIR COVERAGE OF EN 50716
ECLAIR COVERAGE OF EN 50128
ECLAIR COVERAGE OF EN 50657
ECLAIR enables compliance with the architectural and design constraints defined in railway standards:
It checks and enforces interface definitions, layering, and separation of safety levels
ECLAIR Code Scout identifies the actual usage of pre-existing components and libraries, supporting reuse documentation
Automatically generated reports support qualification and reuse of safety-related software components
EN 50716 defines mandatory, highly recommended, and recommended techniques across SIL levels. ECLAIR maps directly to these techniques and provides tooling for:
Defensive programming, fault detection, and diagnosability
Interface consistency and modular design
Static verification of requirements coverage and implementation correctness
Objective evaluation through metrics (HIS and others)
Each applicable standard measure is traceable to an ECLAIR service or metric, ensuring you can justify your chosen combination of techniques as required by the standard.
ECLAIR supports the most trusted and widely adopted coding standards in the railway domain:
MISRA C:2025: Full support across all versions and C dialects (C90–C18)
MISRA C++:2023 and 2008: For safety- and mission-critical C++ development
BARR-C:2018: Particularly useful for legacy or pre-MISRA projects
Coding rules and stylistic conventions are automatically enforced. ECLAIR also checks Doxygen documentation blocks for functional contracts (pre-/post-conditions).
EN 50716 (like its predecessors) requires clear boundaries between software components of different integrity levels. With ECLAIR, you can:
Formally define architectural constraints (with ECLAIR Independence Checker)
Verify the absence of illegal interactions
Justify the coexistence of components with mixed safety integrity levels without raising their classification
This is essential for layered, scalable architectures and reuse of safety-unrelated components in certified systems.
ECLAIR can be qualified for use in SIL 1–4 projects under:
EN 50128 (generic railway control software)
EN 50657 (on-board systems for rolling stock)
EN 50716 (successor standard, general-purpose)
BUGSENG offers multiple paths to qualification:
ECLAIR FuSa Pack
ECLAIR Qualification Kits
ECLAIR Qualification Service
VIEW TÜV SÜD CERTIFICATE
ECLAIR brings powerful verification capabilities to railway projects:
Static analysis recognized as mandatory or highly recommended in SIL 1–4
Support for formal verification of selected safety properties
Rich set of source code metrics, including HIS, maintainability, coupling, and complexity indicators
Requirements-to-code and code-to-test traceability for test coverage evidence
Whether for new developments or assessment of existing software, ECLAIR makes it easier to produce the evidence expected by assessors.
If you are developing safety-related railway software, ECLAIR is your trusted companion for conformance, quality, and certification success.
VIEW RESOURCES
