Presentation is loading. Please wait.

Presentation is loading. Please wait.

NASA OSMA SAS '02 Software Fault Tree Analysis Dolores R. Wallace SRS Information Services Software Assurance Technology Center http://satc.gsfc.nasa.gov/

Published byAdelia Bradford Modified over 6 years ago

Similar presentations

Presentation on theme: "NASA OSMA SAS '02 Software Fault Tree Analysis Dolores R. Wallace SRS Information Services Software Assurance Technology Center http://satc.gsfc.nasa.gov/"— Presentation transcript:

1 NASA OSMA SAS '02 Software Fault Tree Analysis Dolores R. Wallace SRS Information Services Software Assurance Technology Center Dr. Massood Townidnejad Embry-Riddle University NASA OSMA SAS02

2 The Premise FTA applies to software (SFTA)1
SFTA uses same tools as FTA SFTA can apply FTA algorithms computing risk based on probability 1 Several researchers have explored SFTA to some extent, e.g., Leveson, Lutz, Dugan, Heimdahl Measurement uses (as one of several data points): When to release system Test Scheduling Quality measurement Ability to estimate latent faults Who uses this: Managers Developers IV&Vers QEs NASA OSMA SAS02

3 Tasks Understand the methodology, including symbology
Develop tool evaluation criteria Identify commercial tools Get demonstration copies Apply tools to software Measurement uses (as one of several data points): When to release system Test Scheduling Quality measurement Ability to estimate latent faults Who uses this: Managers Developers IV&Vers QEs NASA OSMA SAS02

4 FTA Methodology Hierarchical, graphical representation of events
Notation to represent Boolean expression recording relationships between states/ events Qualitative: ID of design weaknesses,e.g., single point of failure and safety critical failure combinations Quantitative: event’s probability of occurrence to identify paths most likely to occur Starting point (top of tree): system failure or hazard Backward progression id’ing parallel and sequence combinations of events causing top event to occur NASA OSMA SAS02

5 Probability Issue Hardware Large collections of historic data
Classification of failure types Degradation Software Limited availability of software failure data Classification of cause more relevant Degradation not same for software Probability values not available, though subject of research efforts NASA OSMA SAS02

6 FTA Symbology EVENTS GATES BASIC AND OR CONDITIONING UNDEVELOPED
EXCLUSIVE OR EXTERNAL PRIORITY AND INTERMEDIATE INHIBIT TRANSFERS OUT IN NASA OSMA SAS02

7 Tool Evaluation Criteria Categories
User Interface Functionality Output SFTA Model Security Operational Issues Adaptability *** Cost of Tool (consider functionality not usable by SFTA) Return on Investment NASA OSMA SAS02

8 Commercial Tools Approximately 33
Most embody two or more analyses (e.g., FMEA) All compute risk with algorithms applying values of probability of failure Many claim adaptability for SFTA Two claimed specific use for SFTA, but … Lack of specific SFTA tools caused our redirection! NASA OSMA SAS02

9 New Focus: Life Cycle Approach
Requirements Identify weaknesses and modify, eliminate them Identify those with direct impact on safety of system Design Apply to design, smaller than related code Identify components/modules, subcomponents with direct impact on safety of system Code Apply only to those subcomponents already identified as having direct impact on safety of system NASA OSMA SAS02

10 Application of SFTA to Software Design
The Challenge Focus SFTA on OODs Develop a relationship between OOD charts and diagrams to symbology of FTA Initial Issues Attempt to fit activity diagram to general template Recognize loops as a feature of activity diagram Allow for concurrency found in many real-time systems Applied commercial tool- identified probable cause of failure successfully in each case Next Steps Generate fault trees directly from several activity diagrams NASA OSMA SAS02

11 Activity Diagram Drink not available Drink available
Deliver drink Choose drink Show drink menu Check enough money is inserted Insert coins into machine Drink not available Drink available NASA OSMA SAS02

12 Software Fault Tree NASA OSMA SAS02

13 Resulting Fault Tree Analysis
NASA OSMA SAS02

14 FUTURE Identify the general features of activity, state, and sequence diagrams as related to FTA symbology Apply this approach to real, larger designs Have commercial tool vendor work with us to build the interface between these OOD types and the FTA symbology Hoped for result: practical means of applying FTA to software across the life cycle! Make sure I mention that after all this, we would like to do a comparison study, or shadow project, to measure how well SFTA ranks against other known methods NASA OSMA SAS02

Download ppt "NASA OSMA SAS '02 Software Fault Tree Analysis Dolores R. Wallace SRS Information Services Software Assurance Technology Center http://satc.gsfc.nasa.gov/"

Similar presentations

Integra Consult A/S Safety Assessment. Integra Consult A/S SAFETY ASSESSMENT Objective Objective –Demonstrate that an acceptable level of safety will.

Integra Consult A/S Safety Assessment. Integra Consult A/S SAFETY ASSESSMENT Objective Objective –Demonstrate that an acceptable level of safety will.
99/11/12. When to use it Fig. 1. Fault Tree Analysis in problem solving.

99/11/12. When to use it Fig. 1. Fault Tree Analysis in problem solving.
6/6/2014 Risk Management for Medical Devices Safe and Effective Products Paul McDaniel ASQ CQM/OE Executive VP Operations and QA Sicel Technologies.

6/6/2014 Risk Management for Medical Devices Safe and Effective Products Paul McDaniel ASQ CQM/OE Executive VP Operations and QA Sicel Technologies.
Frequencies Estimation Ricki M Mulia, ST. MSc. Unsafe Act Unsafe Condition HAZARD EXPOSURE Penyakit Akibat kerja RISK Kecelakaan kerja Higiene Industri.

Frequencies Estimation Ricki M Mulia, ST. MSc. Unsafe Act Unsafe Condition HAZARD EXPOSURE Penyakit Akibat kerja RISK Kecelakaan kerja Higiene Industri.
Systems Analysis and Design 9th Edition

Systems Analysis and Design 9th Edition
1 Chapter 2: Product Development Process and Organization Introduction Importance of human resources: Most companies have similar technology resources.

1 Chapter 2: Product Development Process and Organization Introduction Importance of human resources: Most companies have similar technology resources.
Software Engineering 1 Evolutionary Processes Lesson 11.

Software Engineering 1 Evolutionary Processes Lesson 11.
© Janice Regan, CMPT 102, Sept. 2006 0 CMPT 102 Introduction to Scientific Computer Programming The software development method algorithms.

© Janice Regan, CMPT 102, Sept CMPT 102 Introduction to Scientific Computer Programming The software development method algorithms.
Risk Management Chapter 7.

Risk Management Chapter 7.
Combining Product Risk Management & Design Controls

Combining Product Risk Management & Design Controls
Prof. Seppo Virtanen TUT PURESAFE Final Conference Tuesday 20 January 2015, 14:20 – 14:40 RAMS Methods and Tools: From LHC to FCC.

Prof. Seppo Virtanen TUT PURESAFE Final Conference Tuesday 20 January 2015, 14:20 – 14:40 RAMS Methods and Tools: From LHC to FCC.
Computer Engineering 203 R Smith Risk Management 7/2009 1 Risk Management The future can never be predicted with 100% accuracy. Failure to plan for risks.

Computer Engineering 203 R Smith Risk Management 7/ Risk Management The future can never be predicted with 100% accuracy. Failure to plan for risks.
1 Risk evaluation Risk treatment. 2 Risk Management Process Risk Management Process.

1 Risk evaluation Risk treatment. 2 Risk Management Process Risk Management Process.
SQM - 1DCS - ANULECTURE 11-2005 Software Quality Management Software Quality Management Processes V & V of Critical Software & Systems Ian Hirst.

SQM - 1DCS - ANULECTURE Software Quality Management Software Quality Management Processes V & V of Critical Software & Systems Ian Hirst.
CSC 402, Fall 20001 Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)

CSC 402, Fall Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)
Tony Gould Quality Risk Management. 2 | PQ Workshop, Abu Dhabi | October 2010 Introduction Risk management is not new – we do it informally all the time.

Tony Gould Quality Risk Management. 2 | PQ Workshop, Abu Dhabi | October 2010 Introduction Risk management is not new – we do it informally all the time.
Software Process and Product Metrics

Software Process and Product Metrics
West Virginia University A Bayesian Approach to Reliability Predication of Component Based Systems H. Singh, V. Cortellessa, B. Cukic, E. Gunel, V. Bharadwaj.

West Virginia University A Bayesian Approach to Reliability Predication of Component Based Systems H. Singh, V. Cortellessa, B. Cukic, E. Gunel, V. Bharadwaj.
Fault Tree Analysis Applied to a tiny ― Computer Startup ― (2-3 people)

Fault Tree Analysis Applied to a tiny ― Computer Startup ― (2-3 people)
Basics of Fault Tree and Event Tree Analysis Supplement to Fire Hazard Assessment for Nuclear Engineering Professionals Icove and Ruggles (2011) Funded.

Basics of Fault Tree and Event Tree Analysis Supplement to Fire Hazard Assessment for Nuclear Engineering Professionals Icove and Ruggles (2011) Funded.

Similar presentations

Ads by Google