SlideShare a Scribd company logo

Safety Critical Research

Jennifer (Hui) Li
Jennifer (Hui) Li
Technology
1 of 24
Download to read offline
SAFETY CRITICAL SYSTEM Jeremiah Lin Jennifer Li Vidisha Raj ChiaChuan Wu Sahil Kumar FSE - 2014 Fall Team SA5 - Jevi’s 1
AGENDA I. Introduction II. An Example III.Domain Characteristics 1. Constrains 2. Distribution & Users 3. Complexity 4. Quality Attributes 5. Volatility 6. Norms and Legacy IV. Impacts 1. Methods 2. Disciplines 3. Automation V. Summary 2
INTRO What is Safety Critical System? ✦ death or serious injury to people ✦ loss or severe damage to equipment ✦ environmental harm Aviation industry: ✦ Air traffic control systems ✦ Avionics, particularly Fly-by-wire systems ✦ Radio navigation systems ✦ Engine control systems ✦ Aircrew life support systems ✦ Flight planning to determine fuel requirements for a flight < 1 life per billion 3 hours of operation
AIR-TRAFFIC CONTROL SYSTEM 4
FLY-BY-WIRE 5
DOMAIN CHARACTERISTICS 6
DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines 7
DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines 8
DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines 9
DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines ✦ Unique Power 10
DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines ✦ Unique Power ✦ Well Trained Users 11
COMPLEXITY & CONSTRAINTS ✦ Multidimensional Domains ✦ Unexpected Scenarios ✦ False Alarm ✦ Human Factors ✦ Software Defects 12
Formalization of safety-critical requirements Static analysis of functional & non-functional system properties Architecture-centric model-based engineering QUALITY ATTRIBUTES System and software assurance 13
VOLATILITIES ✦ Tightly-coupled software components distributed across so many nodes may introduce problems ✦ Errors introduced during the software design phase are propagated in the implementation and may not be caught by testing efforts ✦ 70% of software defects are introduced during the requirements and architecture design phases - The UNKNOWNS of Safety Critical 14
NORMS & LEGACY V-lifecycle model Verification Validation Parallel with development process Coding language: High Reliability • ADA • Spark • Haskell 15
IMPACTS 16
DO178B Software Considerations in Airborne Systems and Equipment Certification 17
For Customer For Supplier CHALLENGES ✦ Expensive and time consuming ✦ Requirements come late to projects ✦ In big batches ✦ Does not reduce complexity ✦ Does not provide early feedback ✦ Compromises the reliability and the efficiency 18 • Loss of confidence in the reliability • Delay of final delivery • Big batches are not efficient • Safety-related activities performed late • Late feedback implies more rework
V-Model XP/Scrum + Lean Big Batches Small Batches Late Engagement Frequent Integration Test Failure TDD Delivery “Agile & Lean software development for avionic software” http://www.erts2012.org/Site/0P2RUC89/7A-4.pdf 19
Catastrophic Hazardous Major Minor No Effect Catastrophic – Failure may cause a crash. Error or loss of critical function required to safely fly and land aircraft. Hazardous – Failure has a large negative impact on safety or performance, or reduces the ability of the crew to operate the aircraft. Major – Failure is significant, but has a lesser impact than a Hazardous failure or significantly increases crew workload Minor – Failure is noticeable, but has a lesser impact than a Major failure No Effect – Failure has no impact on safety, aircraft operation, or crew workload. DESIGN ASSURANCE 20
QUALITY ASSURANCE Identify hazards as early as possible! • White box testing • Black box testing • Reviews • Static analysis • Dynamic analysis and coverage 21
AUTOMATION Coverage Analysis Performance Analysis 22
QUESTION? 23
Agile & Lean software development for avionic software http://www.erts2012.org/Site/0P2RUC89/7A-4.pdf http://staff.washington.edu/jon/pubs/safety-critical.html http://www.erts2012.org/Site/0P2RUC89/7A-4.pdf REFERENCES 24

Recommended

An Alternative Approach to DO-178B
An Alternative Approach to DO-178BAn Alternative Approach to DO-178B
An Alternative Approach to DO-178BAdaCore
 
Practical Application of Agile Techniques in Developing Safety Related Systems
Practical Application of Agile Techniques in Developing Safety Related SystemsPractical Application of Agile Techniques in Developing Safety Related Systems
Practical Application of Agile Techniques in Developing Safety Related SystemsAdaCore
 
Safety life cycle seminar IEC61511
Safety life cycle seminar IEC61511Safety life cycle seminar IEC61511
Safety life cycle seminar IEC61511Luis Atencio
 
MDG Agile for Medical Device Software
MDG Agile for Medical Device SoftwareMDG Agile for Medical Device Software
MDG Agile for Medical Device SoftwareMike Attili
 
Best Practices in SIS Documentation
Best Practices in SIS DocumentationBest Practices in SIS Documentation
Best Practices in SIS DocumentationEmerson Exchange
 
The Best of Both Worlds: Agile Development and Fast Compliance
The Best of Both Worlds: Agile Development and Fast ComplianceThe Best of Both Worlds: Agile Development and Fast Compliance
The Best of Both Worlds: Agile Development and Fast CompliancePerforce
 
Qualification of Eclipse-based Tools according to ISO 26262
Qualification of Eclipse-based Tools according to ISO 26262Qualification of Eclipse-based Tools according to ISO 26262
Qualification of Eclipse-based Tools according to ISO 26262Oscar Slotosch
 
Software Requirements for Safety-related Systems
Software Requirements for Safety-related SystemsSoftware Requirements for Safety-related Systems
Software Requirements for Safety-related SystemsVittorio Giovara
 

Recommended

An Alternative Approach to DO-178B
An Alternative Approach to DO-178BAn Alternative Approach to DO-178B
An Alternative Approach to DO-178BAdaCore
 
Practical Application of Agile Techniques in Developing Safety Related Systems
Practical Application of Agile Techniques in Developing Safety Related SystemsPractical Application of Agile Techniques in Developing Safety Related Systems
Practical Application of Agile Techniques in Developing Safety Related SystemsAdaCore
 
Safety life cycle seminar IEC61511
Safety life cycle seminar IEC61511Safety life cycle seminar IEC61511
Safety life cycle seminar IEC61511Luis Atencio
 
MDG Agile for Medical Device Software
MDG Agile for Medical Device SoftwareMDG Agile for Medical Device Software
MDG Agile for Medical Device SoftwareMike Attili
 
Best Practices in SIS Documentation
Best Practices in SIS DocumentationBest Practices in SIS Documentation
Best Practices in SIS DocumentationEmerson Exchange
 
The Best of Both Worlds: Agile Development and Fast Compliance
The Best of Both Worlds: Agile Development and Fast ComplianceThe Best of Both Worlds: Agile Development and Fast Compliance
The Best of Both Worlds: Agile Development and Fast CompliancePerforce
 
Qualification of Eclipse-based Tools according to ISO 26262
Qualification of Eclipse-based Tools according to ISO 26262Qualification of Eclipse-based Tools according to ISO 26262
Qualification of Eclipse-based Tools according to ISO 26262Oscar Slotosch
 
Software Requirements for Safety-related Systems
Software Requirements for Safety-related SystemsSoftware Requirements for Safety-related Systems
Software Requirements for Safety-related SystemsVittorio Giovara
 
Beyond JIRA: When Issue Tracking Alone Isn't Enough
Beyond JIRA: When Issue Tracking Alone Isn't Enough Beyond JIRA: When Issue Tracking Alone Isn't Enough
Beyond JIRA: When Issue Tracking Alone Isn't Enough Perforce
 
Testing in a Continuous Delivery Pipeline - Better, Faster, Cheaper
Testing in a Continuous Delivery Pipeline - Better, Faster, CheaperTesting in a Continuous Delivery Pipeline - Better, Faster, Cheaper
Testing in a Continuous Delivery Pipeline - Better, Faster, CheaperGene Gotimer
 
Introduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL CertificationIntroduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL CertificationISA Boston Section
 
Software Failure Modes Effects Analysis Overview
Software Failure Modes Effects Analysis OverviewSoftware Failure Modes Effects Analysis Overview
Software Failure Modes Effects Analysis OverviewAnn Marie Neufelder
 
Failure Mode Effects & Analysis
Failure Mode Effects & AnalysisFailure Mode Effects & Analysis
Failure Mode Effects & AnalysisMuhammad Rezvani
 
Automation on the go ict
Automation on the go ictAutomation on the go ict
Automation on the go ictIndium Software
 
Revised IEEE 1633 Recommended Practices for Software Reliability
Revised IEEE 1633 Recommended Practices for Software ReliabilityRevised IEEE 1633 Recommended Practices for Software Reliability
Revised IEEE 1633 Recommended Practices for Software ReliabilityAnn Marie Neufelder
 
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts Mike Boudreaux
 
Cost Effective Outcomes from FPSO Safety Case
Cost Effective Outcomes from FPSO Safety CaseCost Effective Outcomes from FPSO Safety Case
Cost Effective Outcomes from FPSO Safety CaseIQPC
 
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...AdaCore
 
RCM
RCMRCM
RCMDaniela Villa
 
Introduction to Software Failure Modes Effects Analysis
Introduction to Software Failure Modes Effects AnalysisIntroduction to Software Failure Modes Effects Analysis
Introduction to Software Failure Modes Effects AnalysisAnn Marie Neufelder
 
Five Common Mistakes made when Conducting a Software FMECA
Five Common Mistakes made when Conducting a Software FMECAFive Common Mistakes made when Conducting a Software FMECA
Five Common Mistakes made when Conducting a Software FMECAAnn Marie Neufelder
 
Top 5 best practice for delivering secure in-vehicle software
Top 5 best practice for delivering secure in-vehicle softwareTop 5 best practice for delivering secure in-vehicle software
Top 5 best practice for delivering secure in-vehicle softwareRogue Wave Software
 
Piyush_Kant_Singh_updated_resume
Piyush_Kant_Singh_updated_resumePiyush_Kant_Singh_updated_resume
Piyush_Kant_Singh_updated_resumePIYUSH SINGH
 
ISO 62304 & TIR 45
ISO 62304 & TIR 45ISO 62304 & TIR 45
ISO 62304 & TIR 45Havas Lynx Group
 
Rx for FDA Software Compliance
Rx for FDA Software ComplianceRx for FDA Software Compliance
Rx for FDA Software ComplianceParasoft
 
FDA software compliance 2016
FDA software compliance 2016FDA software compliance 2016
FDA software compliance 2016Engineering Software Lab
 
No Devops Without Continuous Testing
No Devops Without Continuous TestingNo Devops Without Continuous Testing
No Devops Without Continuous TestingParasoft
 
Create code confidence for better application security
Create code confidence for better application security Create code confidence for better application security
Create code confidence for better application security Rogue Wave Software
 
Safety for life: Bringing new Life to Process Safety
Safety for life: Bringing new Life to Process SafetySafety for life: Bringing new Life to Process Safety
Safety for life: Bringing new Life to Process SafetySchneider Electric
 
Critical Systems
Critical SystemsCritical Systems
Critical SystemsUsman Bin Saad
 

More Related Content

What's hot

Beyond JIRA: When Issue Tracking Alone Isn't Enough
Beyond JIRA: When Issue Tracking Alone Isn't Enough Beyond JIRA: When Issue Tracking Alone Isn't Enough
Beyond JIRA: When Issue Tracking Alone Isn't Enough Perforce
 
Testing in a Continuous Delivery Pipeline - Better, Faster, Cheaper
Testing in a Continuous Delivery Pipeline - Better, Faster, CheaperTesting in a Continuous Delivery Pipeline - Better, Faster, Cheaper
Testing in a Continuous Delivery Pipeline - Better, Faster, CheaperGene Gotimer
 
Introduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL CertificationIntroduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL CertificationISA Boston Section
 
Software Failure Modes Effects Analysis Overview
Software Failure Modes Effects Analysis OverviewSoftware Failure Modes Effects Analysis Overview
Software Failure Modes Effects Analysis OverviewAnn Marie Neufelder
 
Failure Mode Effects & Analysis
Failure Mode Effects & AnalysisFailure Mode Effects & Analysis
Failure Mode Effects & AnalysisMuhammad Rezvani
 
Automation on the go ict
Automation on the go ictAutomation on the go ict
Automation on the go ictIndium Software
 
Revised IEEE 1633 Recommended Practices for Software Reliability
Revised IEEE 1633 Recommended Practices for Software ReliabilityRevised IEEE 1633 Recommended Practices for Software Reliability
Revised IEEE 1633 Recommended Practices for Software ReliabilityAnn Marie Neufelder
 
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts Mike Boudreaux
 
Cost Effective Outcomes from FPSO Safety Case
Cost Effective Outcomes from FPSO Safety CaseCost Effective Outcomes from FPSO Safety Case
Cost Effective Outcomes from FPSO Safety CaseIQPC
 
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...AdaCore
 
Introduction to Software Failure Modes Effects Analysis
Introduction to Software Failure Modes Effects AnalysisIntroduction to Software Failure Modes Effects Analysis
Introduction to Software Failure Modes Effects AnalysisAnn Marie Neufelder
 
Five Common Mistakes made when Conducting a Software FMECA
Five Common Mistakes made when Conducting a Software FMECAFive Common Mistakes made when Conducting a Software FMECA
Five Common Mistakes made when Conducting a Software FMECAAnn Marie Neufelder
 
Top 5 best practice for delivering secure in-vehicle software
Top 5 best practice for delivering secure in-vehicle softwareTop 5 best practice for delivering secure in-vehicle software
Top 5 best practice for delivering secure in-vehicle softwareRogue Wave Software
 
Piyush_Kant_Singh_updated_resume
Piyush_Kant_Singh_updated_resumePiyush_Kant_Singh_updated_resume
Piyush_Kant_Singh_updated_resumePIYUSH SINGH
 
Rx for FDA Software Compliance
Rx for FDA Software ComplianceRx for FDA Software Compliance
Rx for FDA Software ComplianceParasoft
 
No Devops Without Continuous Testing
No Devops Without Continuous TestingNo Devops Without Continuous Testing
No Devops Without Continuous TestingParasoft
 
Create code confidence for better application security
Create code confidence for better application security Create code confidence for better application security
Create code confidence for better application security Rogue Wave Software
 

What's hot (20)

Beyond JIRA: When Issue Tracking Alone Isn't Enough
Beyond JIRA: When Issue Tracking Alone Isn't Enough Beyond JIRA: When Issue Tracking Alone Isn't Enough
Beyond JIRA: When Issue Tracking Alone Isn't Enough
 
Testing in a Continuous Delivery Pipeline - Better, Faster, Cheaper
Testing in a Continuous Delivery Pipeline - Better, Faster, CheaperTesting in a Continuous Delivery Pipeline - Better, Faster, Cheaper
Testing in a Continuous Delivery Pipeline - Better, Faster, Cheaper
 
Introduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL CertificationIntroduction to Functional Safety and SIL Certification
Introduction to Functional Safety and SIL Certification
 
Software Failure Modes Effects Analysis Overview
Software Failure Modes Effects Analysis OverviewSoftware Failure Modes Effects Analysis Overview
Software Failure Modes Effects Analysis Overview
 
Failure Mode Effects & Analysis
Failure Mode Effects & AnalysisFailure Mode Effects & Analysis
Failure Mode Effects & Analysis
 
Automation on the go ict
Automation on the go ictAutomation on the go ict
Automation on the go ict
 
Revised IEEE 1633 Recommended Practices for Software Reliability
Revised IEEE 1633 Recommended Practices for Software ReliabilityRevised IEEE 1633 Recommended Practices for Software Reliability
Revised IEEE 1633 Recommended Practices for Software Reliability
 
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts
Safety Lifecycle Management - Emerson Exchange 2010 - Meet the Experts
 
Cost Effective Outcomes from FPSO Safety Case
Cost Effective Outcomes from FPSO Safety CaseCost Effective Outcomes from FPSO Safety Case
Cost Effective Outcomes from FPSO Safety Case
 
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
 
RCM
RCMRCM
RCM
 
Introduction to Software Failure Modes Effects Analysis
Introduction to Software Failure Modes Effects AnalysisIntroduction to Software Failure Modes Effects Analysis
Introduction to Software Failure Modes Effects Analysis
 
Five Common Mistakes made when Conducting a Software FMECA
Five Common Mistakes made when Conducting a Software FMECAFive Common Mistakes made when Conducting a Software FMECA
Five Common Mistakes made when Conducting a Software FMECA
 
Top 5 best practice for delivering secure in-vehicle software
Top 5 best practice for delivering secure in-vehicle softwareTop 5 best practice for delivering secure in-vehicle software
Top 5 best practice for delivering secure in-vehicle software
 
Piyush_Kant_Singh_updated_resume
Piyush_Kant_Singh_updated_resumePiyush_Kant_Singh_updated_resume
Piyush_Kant_Singh_updated_resume
 
ISO 62304 & TIR 45
ISO 62304 & TIR 45ISO 62304 & TIR 45
ISO 62304 & TIR 45
 
Rx for FDA Software Compliance
Rx for FDA Software ComplianceRx for FDA Software Compliance
Rx for FDA Software Compliance
 
FDA software compliance 2016
FDA software compliance 2016FDA software compliance 2016
FDA software compliance 2016
 
No Devops Without Continuous Testing
No Devops Without Continuous TestingNo Devops Without Continuous Testing
No Devops Without Continuous Testing
 
Create code confidence for better application security
Create code confidence for better application security Create code confidence for better application security
Create code confidence for better application security
 

Viewers also liked

Safety for life: Bringing new Life to Process Safety
Safety for life: Bringing new Life to Process SafetySafety for life: Bringing new Life to Process Safety
Safety for life: Bringing new Life to Process SafetySchneider Electric
 
Hazard Control Safety Training
Hazard Control Safety TrainingHazard Control Safety Training
Hazard Control Safety Trainingsafety113
 

Viewers also liked (6)

Safety for life: Bringing new Life to Process Safety
Safety for life: Bringing new Life to Process SafetySafety for life: Bringing new Life to Process Safety
Safety for life: Bringing new Life to Process Safety
 
Critical Systems
Critical SystemsCritical Systems
Critical Systems
 
Safety Integrity Levels
Safety Integrity LevelsSafety Integrity Levels
Safety Integrity Levels
 
Importance of industrial safety
Importance of industrial safetyImportance of industrial safety
Importance of industrial safety
 
Hazard Control Safety Training
Hazard Control Safety TrainingHazard Control Safety Training
Hazard Control Safety Training
 
Industrial safety
Industrial safetyIndustrial safety
Industrial safety
 

Similar to Safety Critical Research

Webinar manage risk using traceability fnl (2)
Webinar manage risk using traceability fnl (2)Webinar manage risk using traceability fnl (2)
Webinar manage risk using traceability fnl (2)Perforce
 
18 Jul 2018 - FMEA and Risk Management in Practice
18 Jul 2018 - FMEA and Risk Management in Practice 18 Jul 2018 - FMEA and Risk Management in Practice
18 Jul 2018 - FMEA and Risk Management in Practice Intland Software GmbH
 
IRPS rev 3-19-2012
IRPS rev 3-19-2012IRPS rev 3-19-2012
IRPS rev 3-19-2012Abe Salloum
 
CI/CT/CD and Role of Quality Engineering
CI/CT/CD and Role of Quality EngineeringCI/CT/CD and Role of Quality Engineering
CI/CT/CD and Role of Quality EngineeringSushma
 
Ten Things You Should not Forget in Mainframe Security
Ten Things You Should not Forget in Mainframe Security Ten Things You Should not Forget in Mainframe Security
Ten Things You Should not Forget in Mainframe Security CA Technologies
 
Risk management and business protection with Coding Standardization & Static ...
Risk management and business protection with Coding Standardization & Static ...Risk management and business protection with Coding Standardization & Static ...
Risk management and business protection with Coding Standardization & Static ...Itris Automation Square
 
Threat modelling & apps testing
Threat modelling & apps testingThreat modelling & apps testing
Threat modelling & apps testingAdrian Munteanu
 
Unified Systems Engineering feasibility
Unified Systems Engineering feasibilityUnified Systems Engineering feasibility
Unified Systems Engineering feasibilityEric Verhulst
 
SF Chaos Engineering Meetup: Building Disaster Recovery via Resilience Engine...
SF Chaos Engineering Meetup: Building Disaster Recovery via Resilience Engine...SF Chaos Engineering Meetup: Building Disaster Recovery via Resilience Engine...
SF Chaos Engineering Meetup: Building Disaster Recovery via Resilience Engine...Michael Kehoe
 
Safe, Reliable, Available, High‒Integrity, and Fault Tolerant Embedded Softwa...
Safe, Reliable, Available, High‒Integrity, and Fault Tolerant Embedded Softwa...Safe, Reliable, Available, High‒Integrity, and Fault Tolerant Embedded Softwa...
Safe, Reliable, Available, High‒Integrity, and Fault Tolerant Embedded Softwa...Glen Alleman
 
Reliability Levels of Subsea Production Systems During Operations
Reliability Levels of Subsea Production Systems During OperationsReliability Levels of Subsea Production Systems During Operations
Reliability Levels of Subsea Production Systems During OperationsLloyd's Register Energy
 
Asset Integrity Management for purpose-built FPSOs and subsea system facilities
Asset Integrity Management for purpose-built FPSOs and subsea system facilitiesAsset Integrity Management for purpose-built FPSOs and subsea system facilities
Asset Integrity Management for purpose-built FPSOs and subsea system facilitiesAdvisian
 
Building an application security program
Building an application security programBuilding an application security program
Building an application security programOutpost24
 
real simple reliable software
real simple reliable software real simple reliable software
real simple reliable software AnnMarieNeufelder1
 
Model-Based Design & Analysis.ppt
Model-Based Design & Analysis.pptModel-Based Design & Analysis.ppt
Model-Based Design & Analysis.pptRajuRaju183149
 
Continuous Performance Testing
Continuous Performance TestingContinuous Performance Testing
Continuous Performance TestingGrid Dynamics
 
Software Testing - Sajid Sidi
Software Testing - Sajid SidiSoftware Testing - Sajid Sidi
Software Testing - Sajid SidiSajid Sidi
 

Similar to Safety Critical Research (20)

Webinar manage risk using traceability fnl (2)
Webinar manage risk using traceability fnl (2)Webinar manage risk using traceability fnl (2)
Webinar manage risk using traceability fnl (2)
 
18 Jul 2018 - FMEA and Risk Management in Practice
18 Jul 2018 - FMEA and Risk Management in Practice 18 Jul 2018 - FMEA and Risk Management in Practice
18 Jul 2018 - FMEA and Risk Management in Practice
 
IRPS rev 3-19-2012
IRPS rev 3-19-2012IRPS rev 3-19-2012
IRPS rev 3-19-2012
 
CI/CT/CD and Role of Quality Engineering
CI/CT/CD and Role of Quality EngineeringCI/CT/CD and Role of Quality Engineering
CI/CT/CD and Role of Quality Engineering
 
Ten Things You Should not Forget in Mainframe Security
Ten Things You Should not Forget in Mainframe Security Ten Things You Should not Forget in Mainframe Security
Ten Things You Should not Forget in Mainframe Security
 
Risk management and business protection with Coding Standardization & Static ...
Risk management and business protection with Coding Standardization & Static ...Risk management and business protection with Coding Standardization & Static ...
Risk management and business protection with Coding Standardization & Static ...
 
Threat modelling & apps testing
Threat modelling & apps testingThreat modelling & apps testing
Threat modelling & apps testing
 
Unified Systems Engineering feasibility
Unified Systems Engineering feasibilityUnified Systems Engineering feasibility
Unified Systems Engineering feasibility
 
SF Chaos Engineering Meetup: Building Disaster Recovery via Resilience Engine...
SF Chaos Engineering Meetup: Building Disaster Recovery via Resilience Engine...SF Chaos Engineering Meetup: Building Disaster Recovery via Resilience Engine...
SF Chaos Engineering Meetup: Building Disaster Recovery via Resilience Engine...
 
Safe, Reliable, Available, High‒Integrity, and Fault Tolerant Embedded Softwa...
Safe, Reliable, Available, High‒Integrity, and Fault Tolerant Embedded Softwa...Safe, Reliable, Available, High‒Integrity, and Fault Tolerant Embedded Softwa...
Safe, Reliable, Available, High‒Integrity, and Fault Tolerant Embedded Softwa...
 
PS19 SQA Presentation
PS19 SQA PresentationPS19 SQA Presentation
PS19 SQA Presentation
 
Reliability Levels of Subsea Production Systems During Operations
Reliability Levels of Subsea Production Systems During OperationsReliability Levels of Subsea Production Systems During Operations
Reliability Levels of Subsea Production Systems During Operations
 
Asset Integrity Management for purpose-built FPSOs and subsea system facilities
Asset Integrity Management for purpose-built FPSOs and subsea system facilitiesAsset Integrity Management for purpose-built FPSOs and subsea system facilities
Asset Integrity Management for purpose-built FPSOs and subsea system facilities
 
MANAGING RISKS IN IT PROJECTS ... get the complete set and others at www.gafm...
MANAGING RISKS IN IT PROJECTS ... get the complete set and others at www.gafm...MANAGING RISKS IN IT PROJECTS ... get the complete set and others at www.gafm...
MANAGING RISKS IN IT PROJECTS ... get the complete set and others at www.gafm...
 
Building an application security program
Building an application security programBuilding an application security program
Building an application security program
 
real simple reliable software
real simple reliable software real simple reliable software
real simple reliable software
 
Model-Based Design & Analysis.ppt
Model-Based Design & Analysis.pptModel-Based Design & Analysis.ppt
Model-Based Design & Analysis.ppt
 
Continuous Performance Testing
Continuous Performance TestingContinuous Performance Testing
Continuous Performance Testing
 
Sdlc models
Sdlc modelsSdlc models
Sdlc models
 
Software Testing - Sajid Sidi
Software Testing - Sajid SidiSoftware Testing - Sajid Sidi
Software Testing - Sajid Sidi
 

Recently uploaded

Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 

Recently uploaded (20)

Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 

Safety Critical Research

  • 1. SAFETY CRITICAL SYSTEM Jeremiah Lin Jennifer Li Vidisha Raj ChiaChuan Wu Sahil Kumar FSE - 2014 Fall Team SA5 - Jevi’s 1
  • 2. AGENDA I. Introduction II. An Example III.Domain Characteristics 1. Constrains 2. Distribution & Users 3. Complexity 4. Quality Attributes 5. Volatility 6. Norms and Legacy IV. Impacts 1. Methods 2. Disciplines 3. Automation V. Summary 2
  • 3. INTRO What is Safety Critical System? ✦ death or serious injury to people ✦ loss or severe damage to equipment ✦ environmental harm Aviation industry: ✦ Air traffic control systems ✦ Avionics, particularly Fly-by-wire systems ✦ Radio navigation systems ✦ Engine control systems ✦ Aircrew life support systems ✦ Flight planning to determine fuel requirements for a flight < 1 life per billion 3 hours of operation
  • 7. DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines 7
  • 8. DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines 8
  • 9. DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines 9
  • 10. DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines ✦ Unique Power 10
  • 11. DISTRIBUTION & USERS ✦ Specific Purpose ✦ Proprietary Machines ✦ Unique Power ✦ Well Trained Users 11
  • 12. COMPLEXITY & CONSTRAINTS ✦ Multidimensional Domains ✦ Unexpected Scenarios ✦ False Alarm ✦ Human Factors ✦ Software Defects 12
  • 13. Formalization of safety-critical requirements Static analysis of functional & non-functional system properties Architecture-centric model-based engineering QUALITY ATTRIBUTES System and software assurance 13
  • 14. VOLATILITIES ✦ Tightly-coupled software components distributed across so many nodes may introduce problems ✦ Errors introduced during the software design phase are propagated in the implementation and may not be caught by testing efforts ✦ 70% of software defects are introduced during the requirements and architecture design phases - The UNKNOWNS of Safety Critical 14
  • 15. NORMS & LEGACY V-lifecycle model Verification Validation Parallel with development process Coding language: High Reliability • ADA • Spark • Haskell 15
  • 17. DO178B Software Considerations in Airborne Systems and Equipment Certification 17
  • 18. For Customer For Supplier CHALLENGES ✦ Expensive and time consuming ✦ Requirements come late to projects ✦ In big batches ✦ Does not reduce complexity ✦ Does not provide early feedback ✦ Compromises the reliability and the efficiency 18 • Loss of confidence in the reliability • Delay of final delivery • Big batches are not efficient • Safety-related activities performed late • Late feedback implies more rework
  • 19. V-Model XP/Scrum + Lean Big Batches Small Batches Late Engagement Frequent Integration Test Failure TDD Delivery “Agile & Lean software development for avionic software” http://www.erts2012.org/Site/0P2RUC89/7A-4.pdf 19
  • 20. Catastrophic Hazardous Major Minor No Effect Catastrophic – Failure may cause a crash. Error or loss of critical function required to safely fly and land aircraft. Hazardous – Failure has a large negative impact on safety or performance, or reduces the ability of the crew to operate the aircraft. Major – Failure is significant, but has a lesser impact than a Hazardous failure or significantly increases crew workload Minor – Failure is noticeable, but has a lesser impact than a Major failure No Effect – Failure has no impact on safety, aircraft operation, or crew workload. DESIGN ASSURANCE 20
  • 21. QUALITY ASSURANCE Identify hazards as early as possible! • White box testing • Black box testing • Reviews • Static analysis • Dynamic analysis and coverage 21
  • 22. AUTOMATION Coverage Analysis Performance Analysis 22
  • 24. Agile & Lean software development for avionic software http://www.erts2012.org/Site/0P2RUC89/7A-4.pdf http://staff.washington.edu/jon/pubs/safety-critical.html http://www.erts2012.org/Site/0P2RUC89/7A-4.pdf REFERENCES 24