Robotic Lunar Exploration Program
Mission Assurance Requirements (MAR)
February 11, 2005
CM FOREWORD
This document is a Robotic Lunar Exploration Program (RLEP) Configuration Management (CM)-controlled document. Changes to this document require prior approval of the RLEP Program Manager. Proposed changes shall be submitted to the RLEP CM Office (CMO), along with supportive material justifying the proposed change. Changes to this document will be made by complete revision.
Questions or comments concerning this document should be addressed to:
RLEP Configuration Manager
RLEP Configuration Management Office
Mail Stop 430
Goddard Space Flight Center
Greenbelt, Maryland 20771
CHECK WITH RLEP DATABASE AT:
https://vsde.nasa.gov
TO VERIFY THAT THIS IS THE CORRECT VERSION PRIOR TO USE.
RLEP Mission Assurance Requirements 430-RQMT-000006
Revision -
DRAFT
Signature Page
Prepared by:______
Ronald E. Kolecki Date
RLEP Systems Assurance Manager
Code 303
Reviewed by:
______
Esmond Marvray Date
Chief of Assurance
Management Office
Code 303
Approved by:
______
James G. Watzin Date
RLEP Program Manager
RLEP/Code 430
Concurred by:
______
Date
Director, Systems Safety and
Mission Assurance
Code 300 / ______Craig Tooley Date
LRO Project Manager
Code 430
CHECK WITH RLEP DATABASE AT:
https://vsde.nasa.gov
TO VERIFY THAT THIS IS THE CORRECT VERSION PRIOR TO USE.
RLEP Mission Assurance Requirements 430-RQMT-000006
Revision -
DRAFT
ROBOTIC LUNAR EXPLORATION PROGRAM
DOCUMENT CHANGE RECORD Sheet: 1 of 1
REVLEVEL / DESCRIPTION OF CHANGE / APPROVED
BY / DATE
APPROVED
CHECK WITH RLEP DATABASE AT:
https://vsde.nasa.gov
TO VERIFY THAT THIS IS THE CORRECT VERSION PRIOR TO USE.
RLEP Mission Assurance Requirements 430-RQMT-000006
Revision -
DRAFT
List of TBDs/TBRs
Item No. / Location / Summary / Ind./Org. / Due Date /1 / Section 12.2.3.k / Parts having a LET (Linear Energy Transfer) threshold for SEU of less than TBD MeV cm2/mg (TBD) shall not be used in critical circuits.
2 / Section 12.2.3.l / Parts sensitive to SEL (Single Event Latch-up) with a LET threshold of less than TBD MeV cm2/mg (TBD) shall not be used in critical circuits.
CHECK WITH RLEP DATABASE AT:
https://vsde.nasa.gov
TO VERIFY THAT THIS IS THE CORRECT VERSION PRIOR TO USE.
RLEP Mission Assurance Requirements 430-RQMT-000006
Revision -
DRAFT
TABLE OF CONTENTS
Page
i Preface: Robotic Lunar Exploration Program (RLEP) Description i-1
i.i Introduction i-1
i.ii Program Overview i-1
i.iii Program Objectives i-2
1.0 Overall Requirements 1-1
1.1 Description of Overall Requirements 1-1
1.2 Use of Multi-Mission or Previously designed, Fabricated or Flown Hardware 1-1
1.3 Surveillance of the Developer 1-1
1.4 Contract Delivery Requirements List 1-2
2.0 Quality Management System 2-1
2.1 General 2-1
2.2 Supplemental Quality Management System Requirements 2-1
2.2.1 Control of Nonconforming Product 2-1
2.2.2 Preliminary Review 2-1
2.2.3 Material Review Board 2-2
2.2.4 Reporting of Failures 2-2
2.2.5 Control of Monitoring and Measuring Devices 2-2
2.2.6 New On-orbit Design 2-3
2.2.7 Flow-Down 2-3
3.0 System Safety Requirements 3-1
3.1 General Requirements 3-1
3.2 System Safety Deliverables 3-2
3.2.1 System Safety Program Plan 3-2
3.2.2 Safety Requirements Compliance Checklist 3-2
3.2.3 Safety Analysis 3-2
3.3 Safety Assessment Report 3-4
3.4 Missile System Prelaunch Safety Package 3-5
3.5 Verification Tracking Log 3-5
3.6 Ground Operations Procedures 3-5
3.7 Safety Variance 3-6
3.8 Support for Safety Meetings 3-6
3.9 Orbital Debris Assessment 3-6
3.10 Launch Site Safety Support 3-6
3.11 Mishap Reporting and Investigation 3-7
3.12 Miscellaneous Submittals for Range Use 3-7
4.0 Reliability Requirements 4-1
4.1 General 4-1
4.2 Reliability Requirements 4-1
4.3 Probabilistic Risk Assessment 4-2
4.4 Reliability Analyses 4-2
4.4.1 Failure Modes and Effects Analysis and Critical Items List 4-2
4.4.2 Fault Tree Analysis 4-3
4.4.3 Parts Stress Analyses 4-4
4.4.4 Worst Case Scenarios 4-4
4.4.5 Reliability Assessments and Predictions 4-4
4.5 Reliability Analysis of Test data 4-5
4.5.1 Trend Analyses 4-5
4.5.2 Analysis of Test Results 4-5
4.6 Limited-Life Items 4-6
4.7 Reliability and Maintainability of Government Furnished Equipment 4-6
5.0 Software Assurance Requirements 5-1
5.1 General 5-1
5.2 Software Assurance 5-1
5.2.1 Software Quality 5-1
5.2.2 Software Safety 5-3
5.2.3 Software Reliability 5-3
5.2.4 Verification and Validation 5-4
5.2.5 Independent Verification and Validation 5-4
5.3 Reviews 5-5
5.3.1 Software Reviews 5-5
5.3.2 Engineering Peer Reviews 5-5
5.4 Software Configuration Management 5-5
5.5 Software Problem Reporting and Corrective Action 5-6
5.6 GFE, Existing and Purchased Software 5-6
5.7 Software Assurance Status Reporting 5-6
5.8 NASA Surveillance of Software Development 5-7
6.0 Ground Data Systems Assurance Requirements 6-1
6.1 General 6-1
6.2 Quality Management System 6-1
6.3 Requirements 6-1
6.4 Reviews 6-1
6.5 Assurance Activities 6-2
6.5.1 Requirements Phase 6-2
6.5.2 Design Phase 6-3
6.5.3 Implementation Phase 6-3
6.5.4 Testing Phase 6-4
6.5.5 Delivery Phase 6-6
6.6 GFE, COTS, Existing and Purchased Software 6-7
6.6.1 COTS Management 6-7
6.7 Databases 6-7
6.8 Security Assurance 6-7
6.9 Electromagnetic Compatibility Control 6-8
6.10 Reliability and Availability 6-8
6.11 System Safety 6-9
7.0 Risk Management Requirements 7-1
7.1 General 7-1
7.2 Applicable Documents 7-1
7.3 Risk Management Plan 7-2
7.4 Risk List 7-2
7.5 Risk-Based Acquisition Management 7-3
8.0 Integrated Independent Review Requirements 8-1
8.1 General Requirements 8-1
8.2 Overview of Review Activity 8-1
8.2.1 Mission Reviews 8-1
8.2.2 Instrument Reviews 8-3
8.2.3 Spacecraft Reviews 8-3
8.2.4 Operations Reviews 8-3
8.3 Peer Reviews 8-4
9.0 Design Verification Requirements 9-1
9.1 General 9-1
9.2 Documentation Requirements 9-1
9.2.1 System Performance Verification Plan 9-1
9.2.2 Environmental Verification Plan 9-2
9.2.3 System Performance Verification Matrix 9-2
9.2.4 Environmental Test Matrix 9-3
9.2.5 Environmental Verification Specification 9-3
9.2.6 Performance Verification Procedures 9-3
9.2.7 Verification Reports 9-3
9.2.8 System Performance Verification Report 9-4
10.0 Workmanship Standards 10-1
10.1 General 10-1
10.2 Applicable Documents 10-1
10.3 Design 10-2
10.3.1 Printed Wiring Boards 10-2
10.3.2 Assemblies 10-2
10.3.3 Ground Data Systems that Interface with Space Flight Hardware 10-3
10.4 Workmanship Requirements 10-3
10.4.1 Training and Certification 10-3
10.4.2 Flight and Harsh Environment Ground Systems Workmanship 10-3
10.4.3 Ground Systems (non-flight) Workmanship 10-3
10.4.4 Documentation 10-4
10.5 New and Advanced Materials and Packaging Technologies 10-4
10.6 Hardware Handling 10-4
11.0 Materials and Processes Requirements 11-1
11.1 General 11-1
11.2 Materials and Processes Control 11-2
11.2.1 MAE Responsibilities 11-2
11.2.2 MAE Authority 11-3
11.3 Management of M&P Selection 11-3
11.3.1 Preliminary Review for PDR 11-3
11.3.2 Preliminary Review for CDR 11-3
11.3.3 Materials Selection 11-3
11.3.4 Vacuum Outgassing 11-6
11.3.5 Shelf-Life Controlled Materials 11-7
11.3.6 Inorganic Materials 11-7
11.3.7 Fasteners 11-8
11.3.8 Lubrication 11-8
11.3.9 Process Selection 11-8
11.4 Management of M&P Engineering Requirements 11-9
11.4.1 System Design 11-9
11.4.2 Incoming Inspection Requirements 11-10
11.5 Government Furnished Equipment 11-10
11.6 Commercial Off-the-Shelf Item Equipment 11-10
11.7 M&P Qualification 11-11
11.7.1 General 11-11
11.7.2 Manufacturing Baseline 11-11
11.7.3 Qualification by Extension 11-11
11.8 Failure Analysis 11-12
11.9 Preservation and Packing 11-12
11.10 Handling 11-12
11.11 Data Retention 11-13
12.0 EEE Parts Control Program Support 12-1
12.1 General 12-1
12.2 Parts Control Board 12-1
12.2.1 PCB Responsibilities 12-2
12.2.2 PCB Meetings and Notification 12-2
12.2.3 PCB Membership 12-2
12.3 Part Selection and Processing 12-2
12.3.1 Parts Selection 12-3
12.3.2 Radiation Requirements for Parts Selection 12-3
12.3.3 Custom or Advanced Technology Devices 12-4
12.3.4 Plastic Encapsulated Microcircuits 12-4
12.3.5 Verification Testing 12-4
12.3.6 Parts Approved on Prior Programs 12-5
12.4 Part Analysis 12-5
12.4.1 Destructive Physical Analysis 12-5
12.4.2 Failed EEE Parts 12-5
12.4.3 Failure Analysis 12-5
12.5 Additional Requirements 12-6
12.5.1 Parts Age Control 12-6
12.5.2 Derating 12-6
12.5.3 Alerts 12-7
12.5.4 Prohibited Metals 12-7
12.6 Parts List 12-7
12.6.1 Parts Identification List 12-7
12.6.2 Program Approved Parts List 12-7
12.6.3 As-Built Parts List 12-8
12.7 Data Requirements 12-8
12.7.1 Radiation Hardness 12-8
13.0 Contamination Control Requirements 13-1
13.1 General 13-1
13.2 Contamination Control Verification Process 13-1
13.3 Contamination Control Plan 13-1
13.4 Material Outgassing 13-1
13.5 Thermal Vacuum Bakeout 13-1
13.6 Hardware Handling 13-2
14.0 Electrostatic Discharge Control 14-1
14.1 General 14-1
14.2 Applicable Documents 14-1
14.3 Electrostatic Discharge Control Requirements 14-1
15.0 GIDEP Alerts and Problem Advisories 15-1
15.1 General 15-1
16.0 Applicable Documents List 16-1
17.0 Data Items Descriptions 17-1
Appendix A. Abbreviations and Acronyms A-1
Appendix B. Glossary/Definitions B-1
x
CHECK WITH RLEP DATABASE AT:
https://vsde.nasa.gov
TO VERIFY THAT THIS IS THE CORRECT VERSION PRIOR TO USE.
RLEP Mission Assurance Requirements 430-RQMT-000006
Revision -
DRAFT
LIST OF FIGURES
Figure Page
Figure 111. MUA 11-5
Figure 112. Stress Corrosion Evaluation Form 11-5
Figure 113. Polymerics Materials List 11-6
Figure 114. Inorganic Materials List 11-7
Figure 115. Lubricants Usage List 11-8
Figure 116. Materials Process Utilization List 11-9
LIST OF TABLES
Table Page
Table 41. Severity Categories 4-2
Table 171. DID 1-1: Heritage Hardware Matrix or Report 17-1
Table 172. DID 2-1: Quality Manual 17-2
Table 173. DID 2-2: Problem Failure Reports 17-3
Table 174. DID 2-3 Subcontractor Verification Matrix 17-3
Table 175. DID 3-1: System Safety Program Plan 17-4
Table 176. DID 3-2: Safety Assessment Report 17-5
Table 177. DID 3-3: Preliminary Hazard Analysis 17-6
Table 178. DID 3-4 Safety Data Package 17-7
Table 179. DID 3-5 Hazard Control Verification and Tracking 17-8
Table 1710. DID 3-6 Ground Operations Procedures 17-9
Table 1711. DID 3-7: Safety Noncompliance Request 17-10
Table 1712. DID 3-8: Orbital Debris Assessment 17-11
Table 1713. DID 3-9 Operations Hazard Analysis 17-12
Table 1714. DID 3-10: Safety Requirement Compliance Checklist 17-13
Table 1715. DID 4-1: Reliability Program Plan 17-14
Table 1716. DID 4-2: Probabilistic Risk Assessment 17-15
Table 1717. DID 4-3: Failure Mode and Effects Analysis and Critical Items 17-16
Table 1718. DID 4-4: Fault Tree Analysis 17-17
Table 1719. DID 4-5: Parts Stress Analysis 17-18
Table 1720. DID 4-6: Worst Case Analysis 17-18
Table 1721. DID 4-7: Reliability Assessments and Predictions 17-19
Table 1722. DID 4-8: Trend Analysis 17-19
Table 1723. DID 4-9: Limited-Life Items List 17-20
Table 1724. DID 5-1: Software Assurance Plan 17-21
Table 1725. DID 5-2: Software Management Plan 17-22
Table 1726. DID 5-3: Software Configuration Management Plan 17-23
Table 1727. DID 5-4: Software Reliability Plan 17-24
Table 1728. DID 5-5: Software Requirements Specification 17-25
Table 1729. DID 7-1: Risk Management Plan 17-26
Table 1730. DID 9-1: System Performance Verification Plan 17-27
Table 1731. DID 9-2: Performance Verification Procedure 17-28
Table 1732. DID 9-3: Verification Reports 17-28
Table 1733. DID 10-1: Printed Wiring Board Test Coupons 17-29
Table 1734. DID 11-1: Parts, Materials and Processes Control Program Plan 17-30
Table 1735. DID 11-2: As-Designed Parts, Materials and Processes List 17-31
Table 1736. DID 11-3: Materials Usage Agreement 17-32
Table 1737. DID 11-4: Stress Corrosion Evaluation Form 17-33
Table 1738. DID 11-5: Polymeric Materials and Composites Usage List 17-34
Table 1739. DID 11-8: Waiver 17-35
Table 1740. DID 11-9: Inorganic Materials and Composites Usage List 17-36
Table 1741. DID 11-10: Fastener Control Plan 17-37
Table 1742. DID 11-11: Lubrication Usage List 17-38
Table 1743. DID 11-12: Life Test Plan for Lubricate Mechanisms 17-39
Table 1744. DID 11-13: Material Process Utilization List 17-40
Table 1745. DID 11-14: Certificate of Raw Material Compliance 17-41
Table 1746. DID 12.1 Parts Control Plan (PCP) 17-42
Table 1747. DID 12.2 Parts Control Board (PCB) Reports 17-42
Table 1748. DID 12.3 Parts Stress Analysis 17-43
Table 1749. DID 12.4 Parts Identification List (PIL) 17-43
Table 1750. DID 12.5 Alert / Advisory Disposition and Preparation 17-44
Table 1751. DID 13-1: Contamination Control Plan 17-45
Table 1752. DID 14-1: Electrostatic Discharge Control Plan 17-45
x
CHECK WITH RLEP DATABASE AT:
https://vsde.nasa.gov
TO VERIFY THAT THIS IS THE CORRECT VERSION PRIOR TO USE.
RLEP Mission Assurance Requirements 430-RQMT-000006
Revision -
DRAFT
i Preface: Robotic Lunar Exploration Program (RLEP) Description
i.i Introduction
NASA’s Vision for Space Exploration has the fundamental goal of advancing scientific, security, and economic interests through a robust space exploration program. To help fulfill this vision, NASA will initiate a series of robotic missions to the Moon to prepare for and support future human exploration activities. The primary purpose of the robotic preparation is to reduce risk, enhance mission success, and reduce the cost of future human missions. These objectives will be accomplished by designing and implementing a lunar program of robotic missions to collect critical measurements, demonstrate key technologies, and emplace essential infrastructure. That program is the Robotic Lunar Exploration Program (RLEP).
The RLEP was formed on February 11, 2004, in response to a memorandum received from the Associate Administrator for Space Science, dated February 11, 2004, which assigned management responsibility of the RLEP to the Goddard Space Flight Center (GSFC) and requested the establishment of a dedicated program office to manage this new program. This memorandum was in direct response to the President’s Vision for U.S. Space Exploration (“A Renewed Spirit of Discovery” policy statement) issued in January 2004. The RLEP is a new initiative pending Congressional authorization and appropriation for FY05. In order to support the early Exploration milestones, NASA has directed that the Program Office begin planning and definition work for the early missions.
i.ii Program Overview
The RLEP consists of a series of robotic lunar exploration missions, launched on approximately an annual basis, starting no later than 2008. These missions are envisioned to be ‘Discovery-class’ in scope (i.e., approximately $400M, FY05 dollars, in total mission costs, progressing from phases A through E), and are designed to prepare for and support future human exploration activities. The program is managed by the RLEP office at GSFC.
The RLEP has a broad range of mission content, ranging from remote sensing of the lunar surface, assessment of lunar environment on human health, prospecting for in-situ resources, supporting technology maturation for manned Exploration systems, to the emplacement of infrastructure for manned activities. The series of robotic missions will progress from precursor mission activities for extended duration operations, to long duration operations, and ultimately to a sustained presence on the Moon.
The first project defined within the RLEP is chartered to develop the Lunar Reconnaissance Orbiter (LRO). This mission is to fly in 2008. The second project to be defined is chartered to develop a lunar landed element to be flown in 2009. Subsequent missions will be developed in conjunction with and in response to requirements still under definition by the Exploration Systems Mission Directorate (ESMD) at NASA Headquarters.
i.iii Program Objectives
The President’s Vision for U.S. Exploration laid out the following objectives relative to “Space Exploration Beyond Low Earth Orbit”, and specifically to the lunar program: