16.5.20021 VTT-STUK assessment method for safety evaluation of safety-critical computer based systems - application in BE-SECBS project.

Slides:



Advertisements
Similar presentations
FAA/Eurocontrol TIM 9 on Performance Metrics – INTEGRA Rod Gingell 16 May 2002.
Advertisements

The Robert Gordon University School of Engineering Dr. Mohamed Amish
Environment case Episode 3 - CAATS II Final Dissemination Event Brussels, 13 & 14 Oct 2009 Hellen Foster, Jarlath Molloy NATS, Imperial College London.
Prof. Seppo Virtanen TUT Dr. Seppo Virtanen, Professor, Faculty of Engineering Sciences Research and teaching interests: Reliability Engineering, Maintenance.
5 december 2011 Living Probabilistic Asset Management Dr.ir. J.A. van den Bogaard.
Decision Making: An Introduction 1. 2 Decision Making Decision Making is a process of choosing among two or more alternative courses of action for the.
1 Solution proposal Exam 19. Mai 2000 No help tools allowed.
SWE Introduction to Software Engineering
Lecture 13 Revision IMS Systems Analysis and Design.
Software Requirements
SE 450 Software Processes & Product Metrics 1 Defect Removal.
1 Risk evaluation Risk treatment. 2 Risk Management Process Risk Management Process.
SQM - 1DCS - ANULECTURE Software Quality Management Software Quality Management Processes V & V of Critical Software & Systems Ian Hirst.
CSC 402, Fall Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)
Software Verification and Validation (V&V) By Roger U. Fujii Presented by Donovan Faustino.
Software testing standards ISO/IEC and 33063
Statistical Natural Language Processing. What is NLP?  Natural Language Processing (NLP), or Computational Linguistics, is concerned with theoretical.
What is Business Analysis Planning & Monitoring?
S/W Project Management
INFORMATION SYSTEM APPLICATIONS System Development Life Cycle.
1 JRC – IE Petten Benchmark Exercise of Safety Evaluation of Computer Based Systems V.Kopustinskas 1, C.Kirchsteiger 1, B.Soubies 2, F.Daumas 2, J.Gassino.
Test Organization and Management
Introduction to SDLC: System Development Life Cycle Dr. Dania Bilal IS 582 Spring 2009.
BSBPMG407A Apply Risk Management Techniques 1 Apply Risk Management Techniques Project Risk Processes Part 2 C ertificate IV in Project Management
SE-02 SOFTWARE ENGINEERING LECTURE 3 Today: Requirements Analysis Requirements tell us what the system should do - not how it should do it. Requirements.
BSBPMG508A Manage Project Risk 11.4 Perform Quantitative Risk Analysis Adapted from PMBOK 4 th Edition InitiationPlanning ExecutionClose Monitor Control.
ITEC224 Database Programming
1 Department of Electrical and Computer Engineering University of Virginia Software Quality & Safety Assessment Using Bayesian Belief Networks Joanne Bechta.
Chapter 10 Information Systems Analysis and Design
West Virginia University Towards Practical Software Reliability Assessment for IV&V Projects B. Cukic, E. Gunel, H. Singh, V. Cortellessa Department of.
Project Life Cycle.
BE-SECBS FISA 2003 November 13th 2003 page 1 DSR/SAMS/BASP IRSN BE SECBS – IRSN assessment Context application of IRSN methodology to the reference case.
Enterprise Systems Architectures EGN 5621 Enterprise Systems Collaboration (Professional MSEM) Fall, 2012.
ES Model development Dr. Ahmed Elfaig The ES attempts to predict results from available information, data and knowledge The model should be able to infer.
Safety Critical Systems 5 Testing T Safety Critical Systems.
Fundamentals of Information Systems, Second Edition 1 Systems Development.
PMP Study Guide Chapter 6: Risk Planning. Chapter 6 Risk Planning Planning for Risks Plan Risk Management Identifying Potential Risk Analyzing Risks Using.
BSBPMG504A Manage Project Costs 7.1 Estimate Costs Adapted from PMBOK 4 th Edition InitiationPlanning ExecutionClose Monitor Control The process of developing.
Cmpe 589 Spring 2006 Lecture 2. Software Engineering Definition –A strategy for producing high quality software.
Software Safety Case Why, what and how… Jon Arvid Børretzen.
CS532 TERM PAPER MEASUREMENT IN SOFTWARE ENGINEERING NAVEEN KUMAR SOMA.
Chapter 6: THE EIGHT STEP PROCESS FOCUS: This chapter provides a description of the application of customer-driven project management.
Yazd University, Electrical and Computer Engineering Department Course Title: Advanced Software Engineering By: Mohammad Ali Zare Chahooki The Rational.
RLV Reliability Analysis Guidelines Terry Hardy AST-300/Systems Engineering and Training Division October 26, 2004.
Readings n Text: Riddick & Russell –Ch1 stakeholders – p10 –Ch 2 an evaluation system –Proposal p25-36 – Ch 4 – Lit Review n Coursepack –GAO report Ch.
SCOPE DEFINITION,VERIFICATION AND CONTROL Ashima Wadhwa.
Research Word has a broad spectrum of meanings –“Research this topic on ….” –“Years of research has produced a new ….”
SwCDR (Peer) Review 1 UCB MAVEN Particles and Fields Flight Software Critical Design Review Peter R. Harvey.
Analyzing Data Module 8. 2 Where are we in the Cycle? Resources Establish Need Analyze Data Interpret Data Communicate Results Use Results Plan Collect.
6/6/ SOFTWARE LIFE CYCLE OVERVIEW Professor Ron Kenett Tel Aviv University School of Engineering.
Overview of the handbook Chapter 5: Levee inspection, assessment and risk attribution.
HIGH SPEED RAIL ASSESSMENT NORGE
Unit F451 Computer Fundamentals Components of a Computer System Software Data: Its representation, structure and management in information.
The application of quantitative risk analysis (QRA) techniques for well construction in complex reservoirs West Vanguard Snorre cross-section.
The Information Systems Development Processes Chapter 9.
Project Management PTM721S
WP4 Models and Contents Quality Assessment
SQA project process standards IEEE software engineering standards
Project Cost Management
Project Quality Management
Chapter 6: Database Project Management
11.3 Perform Qualitative Risk Analysis
SQA project process standards IEEE software engineering standards
CHAPTER11 Project Risk Management
Engineering Processes
Fundamental Test Process
CIS12-3 IT Project Management
Georg Umgiesser and Natalja Čerkasova
MANAGING THE DEVELOPMENT AND PURCHASE OF INFORMATION SYSTEMS
PSS verification and validation
Presentation transcript:

VTT-STUK assessment method for safety evaluation of safety-critical computer based systems - application in BE-SECBS project

VTT INDUSTRIAL SYSTEMS CONTENTS 1. Method description 2. Qualitative assessment 3. Quantitative evaluation 4. Conclusions

VTT INDUSTRIAL SYSTEMS 1. METHOD DESCRIPTION

VTT INDUSTRIAL SYSTEMS 1. METHOD DESCRIPTION Quantitative analysis 1. Development of the map of evidence  identification of pieces of evidence to be included in the model (actually a result of qualitative safety evaluation)  identification of the relationship between the pieces of evidence by engineering judgement  identification of the relationship between the evidence and the failure probability of the system

VTT INDUSTRIAL SYSTEMS 1. METHOD DESCRIPTION Quantitative analysis 2. Definition the structure of the Bayes network model  definition of the variables (or the nodes) of the model; i.e. the definition of the variables measuring the degree of quality for evidence analysed in the tasks of the qualitative analysis  definition of the measurement of rating scales for each variable (usually a discrete or ordinal scale), by using expert judgement  definition of the probabilistic relationships and dependencies between the variables (e.g. the relationship between coverage of testing and failure probability) by expert judgement

VTT INDUSTRIAL SYSTEMS 1. METHOD DESCRIPTION Quantitative analysis 3 Quantification of the model  quantification of the variable ratings by expert judgement  quantification of the needed probability distributions by expert judgement (i.e. quantification of the weight of different pieces of evidence)  propagation of uncertainties through the Bayes network model

VTT INDUSTRIAL SYSTEMS 1. METHOD DESCRIPTION Quantitative analysis 4 Interpretation of the results  sensitivity analyses  importance analyses and analysis of need for further data or information

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT the evidence from each life cycle phase was analysed qualitatively on the basis of the material provided by the vendor additional information was asked during two meetings with the vendor no formal/computer-based tools were used the material was compared with the requirements of the STUK regulatory guide YVL-5.5 the aim of the qualitative analysis was to create “a map of evidence” evidence from platform development process was analysed separatelly

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT Analysis of the platform software Three types of information was introduced to the assessment teams: -Overall documentation of the platform -Reference list of the operational experience -References to the type tests

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT Analysis of the platform software Analysis of operating experience –Detailed knowledge of the operational experience of the software was presented to the assessment team. Additional information was obtained during assessment meetings –Operational experience of the platform is stored in the database with the developmental proposals and requests. The vendor was asked to demonstrate the use of database, detailed analyses were not possible

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT Analysis of the platform software Analysis of type-testing documentation –the quality of type-testing documentation was evaluated (partially with the vendor personnel) Analysis of development tools

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT The analysis of life-cycle phases analysed requirement specification concepts design (in documentation called also as system specification) detailed design code generation SIVAT simulation testing Code compiling and linking Testing

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT Analysis of the equirement specification critical analysis of documentation analysis of different blocks used in the block diagram presentation analysis with respect to IEEE 830 relevant events, response times, input and output signals,relation to other safety functions, signal identification scheme analysis of redundancy issues specification of system states ambiguity of notation

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT Analysis of the application software development process definition of the application development lifecycle assessment was made against software engineering references –the end product is software and the development propcess is analogous to the software engineering process –software engineering standards offer rigorous references to the assessment purposes (IEC60880) existence of V&V checklists etc. existence of quality targets existence of quality guidelines

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT Analysis of concept design dependence of the concept design on the platform: description consequences of the assumptions about the platform properties documentation of the selection of design solutions documentation of the test plan Analysis of detailed design documentation of design solutions documentation of the verification procedures

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT Analysis of code implementation and generation analysis of resource metrics analysis of simulation testing analysis of the possibilities of engineers to influence for the end result C-code simulation testing analysis of documentation practices and test strategy functional coverage of testing Code compiling and linking tools and their operational experience

VTT INDUSTRIAL SYSTEMS 2 QUALITATIVE ASSESSMENT Analysis of testing Although actual test results does not exist for the benchmark, information was gathered about the ‘typical’ test execution for assessment purposes test strategy, test acceptance criteria, test coverage analysis

VTT INDUSTRIAL SYSTEMS 3 QUANTITATIVE EVALUATION the "Bayes network model" is based on the life-cycle of the system the model was created as a expert judgement process the quality characteristics were quantified in expert panels the quantification is based on the observations from the qualitative analysis

VTT INDUSTRIAL SYSTEMS The Bayes network

VTT INDUSTRIAL SYSTEMS 2 QUANTITATIVE EVALUATION a “good standard” for rating the steps of the life cycle is needed the reliability estimates were not determined not enough information lot of uncertainties => difficult to interprete the evidence => difficult to make probability estimates

VTT INDUSTRIAL SYSTEMS 4, CONCLUSIONS the analysis of the (system and) application development was mainly qualitative no software based tools were used a map of evidence was created (as a Bayes network) –makes it possible to see the relationships between different pieces of evidence the quality of the requirement specification is important in the case of automated code generation quantitative analysis was experimented

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.