Setting the Stage for Next-Generation Certification

The modern flight deck, dominated by large-format displays, integrated autopilots, and touchscreen interfaces, is a far cry from the steam-gauge cockpits of even thirty years ago. Glass cockpits—electronic flight instrument systems (EFIS) that consolidate primary flight, navigation, engine, and system data onto digital screens—have become the de facto standard across commercial, business, and general aviation aircraft. Their ability to reduce pilot workload, provide real-time system monitoring, and enable sophisticated automation has transformed aviation safety and efficiency. Yet the very innovations that make glass cockpits powerful also create new certification challenges. Regulators must ensure that complex software, interconnected avionics, and human-machine interfaces remain safe and reliable over the life of the aircraft. This article examines the emerging regulatory frameworks that are reshaping the certification standards for glass cockpit systems, focusing on key areas such as system reliability, human factors, cybersecurity, and software assurance.

The Evolution of Glass Cockpit Certification

A Brief Historical Context

The first generation of glass cockpits, seen in business jets and early Airbus/Boeing models like the Airbus A320 and Boeing 777, relied on relatively closed systems with limited external connectivity. Certification standards at the time, primarily FAA Advisory Circulars and EASA Certification Specifications, focused on hardware reliability (e.g., TSO-C113 for EFIS), basic software assurance (DO-178B), and simple human factors checklists. As technology advanced, the limitations of these legacy standards became apparent. Modern glass cockpits integrate synthetic vision, terrain awareness, weather radar, ADS-B, and in-flight connectivity. They rely on complex, highly networked software running on multi-core processors. The certification environment had to evolve to address these complexities.

The Drive for New Regulatory Frameworks

In response to rapid technological change, both the FAA and EASA have launched multi-year initiatives to update certification guidance. The FAA’s Aviation Safety Information Analysis and Sharing (ASIAS) program and EASA’s “Safe and Sustainable Aviation” strategy each identify glass cockpit certification as a critical focus area. A key driver is the recognition that traditional “guidance material” cannot keep pace with iterative software development (DevOps, continuous deployment) and the growing attack surface of connected avionics. Industry bodies such as RTCA and EUROCAE have developed new standards—for example, DO-178C for software, DO-254 for complex electronic hardware, and DO-326A/DO-356A for cybersecurity—that regulators are increasingly adopting as means of compliance. These emerging regulations aim to harmonize requirements across jurisdictions while preserving the flexibility needed for innovation.

Key Emerging Regulatory Frameworks

FAA: Updated Advisory Circulars and Policy Memos

The FAA has released a series of new Advisory Circulars (ACs) and policy memoranda that directly address glass cockpit systems. Notable examples include AC 20-145 “Guidance for Integrated Modular Avionics (IMA) that Implement Reconfiguration,” AC 25-11B “Electronic Flight Deck Displays,” and AC 25-28 “Compliance of Avionics Systems with Airworthiness Standards for Transport Category Airplanes.” These documents provide detailed guidance on display symbology, decluttering, luminance, and failure annunciation. The FAA has also published draft guidance on the use of touchscreens and the integration of externally sourced data (e.g., weather and traffic) into primary flight displays. A critical shift is the move from prescriptive requirements to performance-based standards, allowing manufacturers to propose novel architectures if they can demonstrate equivalent safety levels through analysis and test.

EASA: Certification Specifications and Acceptable Means of Compliance

EASA has similarly revised its Certification Specifications (CS-25, CS-23, CS-27/29) and related Acceptable Means of Compliance (AMC) and Guidance Material (GM). The EASA CS-25 Amendment 27 introduced new provisions for flight crew alerts, system integration, and the prevention of visual clutter. In 2023, EASA published a new AMC on Human Factors for Cockpit Design (AMC No. 1 to CS 25.1302) that emphasises usability testing, pilot workload assessment, and error tolerance. EASA’s “Special Condition” process has been used to approve novel features such as head-mounted displays and full-authority digital engine controls (FADEC) integrated with glass cockpits. The agency also collaborates with the FAA through the Part 23/CS-23 Reorganization to ensure smaller aircraft benefit from streamlined, risk-based certification pathways that still address glass cockpit complexities.

ICAO and Global Harmonization Efforts

The International Civil Aviation Organization (ICAO) is working to harmonize certification standards through its “Global Aviation Safety Plan” and “Aviation System Block Upgrades.” While ICAO does not directly certify aircraft, it sets high-level standards (SARPs) that influence national regulations. Recent ICAO Annex 8 amendments require States to adopt risk-based oversight, which includes evaluating the certification basis for advanced avionics. The “ICAO Next Generation of Aviation Professionals” initiative also addresses the need for updated training and licensing standards that reflect glass cockpit capabilities. These global efforts reduce redundant certification work, enabling manufacturers to design one system that meets multiple authorities’ requirements.

Core Focus Areas of Emerging Regulations

System Reliability and Failure Modes

Glass cockpits rely on dozens of interconnected Line Replaceable Units (LRUs) and software functions. Regulators now require comprehensive system safety assessments (SSAs) that go beyond traditional fault tree analysis. They demand consideration of common-cause failures (e.g., a single software bug affecting multiple displays) and cascading failures across systems. New guidance, such as DO-297 (Integrated Modular Avionics) and SAE ARP4754B, emphasises incremental certification with clear partitioning. The goal is to ensure that no single failure causes loss of all critical flight information. Emerging regulations also specify minimum performance requirements for backup instruments (e.g., an independent standby attitude indicator) and require the primary displays to automatically reconfigure in a controlled manner if a display fails.

Human-Machine Interaction and Pilot Workload

One of the most heavily scrutinized areas is human-machine interface (HMI) design. Regulators are moving beyond static checklists to require dynamic evaluation of pilot workload under normal, abnormal, and emergency conditions. This includes testing for “task saturation,” automation surprises (e.g., unexpected mode transitions), and the readability of data-rich displays in turbulence. New HMI guidance mandates that all critical flight parameters must be available on at least two separate displays, and that information be presented in a consistent, standardized format. Touchscreen interfaces, now common in business jets like the Gulfstream G700, require special certification: they must be immune to inadvertent touches, work reliably with gloves, and provide tactile feedback or audible confirmation. EASA’s recent Special Condition for touchscreens mandates a minimum actuation force and a “dead zone” around screen edges.

Cybersecurity in Connected Cockpits

As glass cockpits become more connected—receiving data from ground networks, satellite communications, electronic flight bags, and even passenger Wi-Fi—cybersecurity has become a top regulatory priority. The FAA released its Cybersecurity Roadmap for Aviation in 2023, outlining a risk-based approach. EASA issued an initial airworthiness security (IAS) framework based on DO-326A/ED-202A. Emerging regulations require manufacturers to conduct a security risk assessment (SRA) that identifies threats, vulnerabilities, and potential attack vectors. They must implement security controls that mitigate the likelihood of successful cyberattacks without compromising flight performance. Areas of focus include secure data loading, encrypted communication links, and the prevention of malware injection through portable devices connected to cockpit USB ports. Regulators also require a Software and Airworthiness Security Plan (SASP) for any software that can affect safety.

Redundancy, Fail-Safe Features, and Independent Backup

Certification standards now explicitly require that glass cockpit systems provide graceful degradation. If the primary displays are lost, independent backup instruments must present sufficient attitude, altitude, airspeed, and heading data to enable a safe landing. This goes beyond the traditional six-pack backup; new regulations demand that backup systems themselves be free from single-point failures in power, data, and display. For example, some modern designs incorporate a separate, battery-powered standby display unit that is completely independent of the main display avionics bus. The use of dissimilar hardware and software (to avoid common-mode failures) is encouraged, though not always mandated. These redundancy requirements drive up development costs but provide a safety net that has proven effective in accident prevention.

Software Assurance and Continuous Compliance

With glass cockpit functionality increasingly defined in software, certification processes must address the unique challenges of iterative development. DO-178C introduced objectives for tool qualification, model-based development, and formal methods. Emerging regulations are going a step further by exploring “continuous certification” concepts that allow approved incremental updates without requiring full recertification. The FAA and EASA are currently evaluating industry proposals for a “Safety Case” approach, where the manufacturer maintains a living safety case that demonstrates continued compliance even as software evolves via over-the-air updates. This is critical for modern aircraft that receive periodic upgrades to navigation databases, terrain models, and even new operational capabilities. The new guidance also emphasizes the importance of software integrity levels (DAL) for each function, and requires traceability from requirements to code to test.

Impact on Certification Processes and Manufacturers

Increased Rigor in Testing and Documentation

Manufacturers now face significantly more demanding certification submission packages. Beyond the traditional compliance matrix, they must include comprehensive system safety assessments, cybersecurity risk assessments, human factors validation reports, and software accomplishment summaries. The testing burden has expanded to include large-scale integration tests, real-time system simulation, and pilot-in-the-loop evaluations that exceed 100 hours for new display formats. Regulators increasingly expect evidence of “robustness” testing that stresses the system beyond its normal operating envelope. This can be costly and time-consuming, especially for smaller manufacturers. However, the use of model-based systems engineering (MBSE) and digital twins is helping to streamline some aspects by enabling early virtual certification.

New Opportunities for Innovation within a Clear Framework

While the regulatory burden is heavier, the clarity provided by these frameworks enables manufacturers to innovate with confidence. Knowing precise performance, HMI, and cybersecurity requirements allows development teams to design headroom into their systems. The shift to performance-based standards means that novel architectures—for example, an all-touchscreen flight deck with no physical buttons—can be approved if the manufacturer can prove equivalency to traditional designs. Companies like Garmin, Honeywell, and Collins Aerospace have embraced these new certification pathways to bring advanced features like voice control, runway overrun awareness alerts (ROAAS), and AI-based weather prediction to the market. The clear rules also foster competition, as start-ups with new ideas can understand the certification path without ambiguity.

Training and Continued Airworthiness Considerations

Emerging regulations do not stop at initial type certification. They also address training requirements for pilots and maintenance technicians. The FAA and EASA now mandate that operators provide specific training for glass cockpit features such as synthetic vision (SVS), enhanced flight vision systems (EFVS), and electronic checklists. This training must be recurring and include simulator sessions that replicate system failures and complex automation modes. On the maintenance side, updated guidance requires that technicians be trained on software loading procedures, cybersecurity hygiene (e.g., password management, USB inspection), and the correct handling of sensitive avionics. Regulators encourage the use of competency-based training rather than simple hours-based curricula.

Challenges in Implementing the New Standards

The Pace of Technological Innovation

A perennial challenge is that technology evolves faster than regulatory processes. Concepts like artificial intelligence for weather detection, adaptive machine learning for autopilot decision-making, and quantum-secured cockpit data links are already in active development. Existing certification standards were not written to handle non-deterministic behaviors or data that is constantly updated from multiple sources. Regulators are struggling to write guidance that is specific enough to ensure safety without blocking beneficial innovation. They are experimenting with “agile certification” pilots and sandbox environments where novel systems can be tested under controlled conditions before full certification.

Global Divergence and Cost Implications

Despite harmonization efforts, differences between FAA, EASA, and other authorities (such as CAAC, ANAC, or ICAO) remain. A glass cockpit system certified by the FAA may require additional testing or modifications to receive EASA approval. These divergences increase development costs and delay market entry, particularly for business jet manufacturers that sell globally. The latest regulatory harmonization initiatives, such as the “FAA/EASA Common Approach” and the “ASTM F3269-18” standard for unmanned aircraft, are promising but have not yet fully resolved disparities in cybersecurity or human factors requirements. Manufacturers often must design multiple software variants or contain features that are disabled in certain markets, adding complexity.

Balancing Redundancy with Weight and Cost

Adding independent backup systems, extra displays, and redundant sensors satisfies regulators but adds weight, wiring, and expense. In an industry where every kilogram counts, designers face difficult trade-offs. Emerging regulations aim to be performance-based, but the default expectation often leans toward physical duplication. There is growing interest in “virtual backups” where a single display can host multiple independent functions, but certifying the partitioning and integrity of such software remains challenging. Regulators are exploring the use of predictive analytics to reduce required redundancy if proven reliability data supports it, but this is still a long-term goal.

Looking Ahead: The Next Decade of Glass Cockpit Certification

The trajectory of glass cockpit regulation points toward a more integrated, adaptive, and proactive certification ecosystem. We can expect to see the following developments in the coming years:

  • AI and Machine Learning Certification Frameworks: Regulators, in partnership with industry, are developing specific guidance for certifying systems that use machine learning for functions like obstacle detection, predictive maintenance, and flight envelope protection. This will likely involve a combination of statistical validation, interpretability requirements, and “safe fallback” modes.
  • Real-Time Cybersecurity Monitoring: Future glass cockpits may require continuous health monitoring for cyber threats, with automatic alerting to the flight crew and ground support. Standards like DO-356A may be updated to include real-time threat response.
  • Seamless Data Integration: Regulations will evolve to allow the safe integration of data from multiple external sources (e.g., ADS-B, satellite weather, air traffic control data). This will require new requirements for data authentication, latency, and display prioritization.
  • Lifecycle Certification: The concept of “type certification of a system,” rather than a fixed software version, will become more common. Manufacturers will submit certification maintenance procedures that allow for regular updates without a new certification program for each change.
  • Increased Pilot and Operator Inclusion: Regulators will likely demand more comprehensive data from operational experience and incident reports to refine certification standards. The use of “safety management systems” (SMS) that feed back into certification will become standard practice.

The path forward requires close collaboration between regulatory bodies, manufacturers, pilots, and researchers. The positive outcome of these efforts will be a new generation of glass cockpits that are not only safer and more reliable but also more capable and easier to use. While the regulatory burden will remain significant, the emerging standards provide a clear, well-researched framework that encourages innovation within a firm safety boundary. As the skies become busier and aircraft more automated, the integrity of glass cockpit certification will remain one of aviation’s most critical pillars.