SlideShare a Scribd company logo

cupdf.com_1-developing-safety-critical-systems-chapter-5-storey.ppt

Download as PPT, PDF
Y
YoussefElsamman

software critical system

Software
1 of 21
1 Developing safety critical systems Chapter 5, Storey
2 Safety-critical systems • There are several approaches to the design of safety- critical systems. • In order of precedence these are. 1. To produce a system that is intrinsically safe. 2. To adopt design techniques that prevent or minimize the occurrence of hazards (interlocks, guards). 3. To use techniques to control hazards when they occur (failsafe devices, damage control, containment). 4. To adopt methods that aim to reduce the impact of hazards (use of warning devices, training of staff in emergency procedures). • We are primarily concerned with the second of these approaches.
3 Lifecycle models • Lifecycle models are a means of describing the different phases of the development process. • A safety lifecycle emphasizes those aspects that have particular relevance to safety. • The lifecycle from IEC 61508 is widely used. This cover all aspects of the development process from an initial concept through to decommissioning (see figure 5.2). • A general lifecycle model:
4 Different types of lifecycle models Waterfall model: • This is the most common and classic of lifecycle models, also referred to as a linear- sequential life cycle model. • A sequential software development model in which development is seen as flowing steadily downwards through the phases (requirements, design, implementation…) • Proceeds from one phase to the next in a purely sequential manner, only when each phase is fully completed, one proceeds to the next phase.
5 Different types of lifecycle models Iterative and incremental model: • Each iteration result in an increment, which is a release of a system that contains added or improved functionality compared to the previous release. • All iterations will include work in most of the process disciplines( requirement, design, implementation and testing) • “The process for constructing several partial deliverables, each having incrementally more functionality.”
6 Different types of lifecycle models Spiral model: • The spiral model is similar to the iterative incremental model, with more emphasis placed on risk analysis. • The spiral model has four phases: planning, risk analysis, engineering and evaluation. • A software project repeatedly passes through these phases in iterations. Each iteration of the spiral results in a deliverable. • Requirements are gathered in the planning phase. In the risk analysis phase, risks are identified and a prototype is produced. Software is produced in the engineering phase, along with testing. In the evaluation phase the customer evaluates the output of the project, before the project continues to the next spiral.
7 Different types of lifecycle models V-model: • The model identifies the major elements of the development process. • Just like the waterfall model, the V- shaped lifecycle is a sequential path of execution of processes. Each phase must be completed before the next phase begins. • One of the attractions of this model is that its form emphasises a top- down approach to the design and a bottom-up approach to testing.
8 Developing safety-critical systems • The process of developing a safety-critical system may be both complicated and time consuming. • Like all development projects it has various phases, which can be presented diagrammatically using a lifecycle model. • The main elements of the development of a safety-critical system are, in general, similar to those of less critical units. • However, in critical applications the development process is dominated by a need to produce and demonstrate dependability. • Consequently, each phase is carefully structured and documented to ensure that it is performed correctly. • IEC 61508 also describes an overall safety lifecycle (see figure 5.3). The form of the safety lifecycle is very similar to that of the overall system lifecycle, with the addition of phase concerned with hazard and risk analysis.
9 Phases of the development process Requirements: - The starting point of any development project is determined by the system requirements (customer requirements), which is an almost abstract definition of what the system should do. - Before the system can be implemented these abstract requirements must be formalised into a functional requirements document (user requirements specification), which attempt to describe what the system should do.
10 Phases of the development process Hazard and risk analysis: - Once the functional requirements of the system have been established, hazard and risk analysis is performed to identify potential dangers in the system and to allocate an overall level of integrity. - One of the outputs from these analyses is the safety requirements, which defines what the system must and must not do, in order to ensure safety.
11 Phases of the development process Specification: - From the functional requirements and the safety requirements of the system a specification is produced, which will include measures for safety assurance in line with the integrity level assigned. - The specification attempts to define, in an unambiguous manner, a system that will completely fulfil these requirements. - In reality this is hard and it is easy to make mistakes at this stage. - Requirements are often written in natural languages, which are subject to ambiguity. - A misunderstanding of some aspect of the requirements may lead to a specification that is incomplete or incorrect. - the testing performed is aimed at establishing that the system meets its specification.
12 Phases of the development process An ideal specification should be: - Correct - Complete - Consistent - Unambiguous - The problems associated with the production of unambiguous specifications may be tackled by using: - semiformal methods - formal methods
13 Software animation of the specification - prototyping • Faults within the specification represent one of the greatest problems in the development of safety-critical systems – inadequacies in the requirements documents – specification does not accurately reflect the requirements • Software animation can be used to illustrate various characteristics of the system defined by the specification. • Investigates particular aspects of the system rather than to satisfy the complete specification. • Involves writing software that models the system defined in a specification in order to investigate the characteristics of that specification. • This technique differs from simulation which emulates the performance of trial design. • Software animation is used to validate the specification, whereas simulation is used to investigate a design.
14 Phases of the development process Top-level design: - Once the specification has been produced, this is used as the basis for the top-level design that defines the systems architecture. - One of the major aspect of this process is to partition the system into hardware and software. - The top-level design will split the project into a number of more manageable modules to simplify the design and testing processes. - Specifications will than be produced for each module and later used for module testing.
15 Phases of the development process Detailed design: - Top-level design is followed by the detailed design of both the hardware and the software for each of the modules. - Often the process of decomposition is iterative, which modules being broken into successively smaller sub modules, each with its own specification. Module implementation / Module test: - When the design stage is complete the modules are constructed and tested individually. - Testing methods may be divided into : - Dynamic techniques: involves operating and executing the module to investigate its characteristics - Static techniques: looks at the characteristics of the module without executing it (design reviews, code walkthroughs) - This testing forms part of the process of verification which is used to establish that each module satisfies its specification.
16 Phases of the development process System integration: • Once the various modules have been completed and verified, the process of system integration may begin. This can be done by various approaches: 1. Progressively integration: here a small number of modules are combined to make a minimal system, which is then tested and any problems removed. Additional modules are then added successively, performing testing at each stage. This process continues until the system is complete. 2. Big-bang approach: here all the modules are combined immediately and the complete system is tested.
17 Phases of the development process System test (verification and validation): • Once the system is complete and appears to be functioning correctly, the verification and validation of the entire system may begin. - Verification: the process of determining that the system, or module, meets its specification. - Validation: the process of determining that the system is appropriate for its purpose. • From these definitions we see that verification seeks to show that the system corresponds to its specification, whereas the validation sets out to determine whether the system as a whole accurately meets the requirements of the user. It therefore includes considerations of the correctness of the specification itself.
18 Phases of the development process Certification: - For highly critical systems the final stage is to convince some external regulating body that the system is safe and thereby to achieve certification. - This will necessitate the provision of documentary evidence to support all aspects of work, and full details on the tests and their results. - For this reason the certification process must be planned at the beginning of the project. - It is a benefit to use standards and guidelines during development, in order to achieve certification.
19 Safety analysis • Safety analysis is the process of assessing the safety of a system by looking at the associated hazards and the methods used by the system to cope with them • In IEC 61508 this subject is referred to as overall safety validation • The major components of the safety analysis process are described in the UK Health and Safety Executive (HSE) guidelines and other standards.
20 Safety analysis • The main activities in a safety analysis process are: 1. Analyse the hazards a) Identify the potential hazards b) Evaluate the event leading to these hazards 2. Identify the safety-related systems within the plant 3. Decide on the required level of safety integrity for the safety-related systems 4. Design the safety-related systems using the safety integrity criteria appropriate for the specific application 5. Carry out safety integrity analysis to assess the level of safety integrity achieved by the safety-related systems 6. Ensure, from the analysis of 5, that the integrity levels of 3 have been achieved. • Safety analysis is an ongoing process that continues throughout the lifecycle.
21 Exercises - Chapter 5: 1, 6, 7, 9, 10, 11, 12, 13, 18, 23 - Chapter 6: 3, 4, 14, 15, 16, 17, 18, 34, 35, 36, 37, 38

Recommended

System models of sdlc- v model
System models of sdlc- v modelSystem models of sdlc- v model
System models of sdlc- v modelMinal Kashyap
 
SDLC models testing
SDLC models testingSDLC models testing
SDLC models testingJadavsejal
 
Structured system analysis and design
Structured system analysis and design Structured system analysis and design
Structured system analysis and design Jayant Dalvi
 
2015-HNDIT1212 Lecture 3.pptx
2015-HNDIT1212 Lecture 3.pptx2015-HNDIT1212 Lecture 3.pptx
2015-HNDIT1212 Lecture 3.pptxusama537223
 
Software Engineering : Process Models
Software Engineering : Process ModelsSoftware Engineering : Process Models
Software Engineering : Process ModelsAjit Nayak
 
System development
System developmentSystem development
System developmentPraveen Minz
 
Software development life cycle (SDLC) Models
Software development life cycle (SDLC) ModelsSoftware development life cycle (SDLC) Models
Software development life cycle (SDLC) ModelsAOmaAli
 
system development life cycle
system development life cyclesystem development life cycle
system development life cycleFLYMAN TECHNOLOGY LIMITED
 

Recommended

System models of sdlc- v model
System models of sdlc- v modelSystem models of sdlc- v model
System models of sdlc- v modelMinal Kashyap
 
SDLC models testing
SDLC models testingSDLC models testing
SDLC models testingJadavsejal
 
Structured system analysis and design
Structured system analysis and design Structured system analysis and design
Structured system analysis and design Jayant Dalvi
 
2015-HNDIT1212 Lecture 3.pptx
2015-HNDIT1212 Lecture 3.pptx2015-HNDIT1212 Lecture 3.pptx
2015-HNDIT1212 Lecture 3.pptxusama537223
 
Software Engineering : Process Models
Software Engineering : Process ModelsSoftware Engineering : Process Models
Software Engineering : Process ModelsAjit Nayak
 
System development
System developmentSystem development
System developmentPraveen Minz
 
Software development life cycle (SDLC) Models
Software development life cycle (SDLC) ModelsSoftware development life cycle (SDLC) Models
Software development life cycle (SDLC) ModelsAOmaAli
 
system development life cycle
system development life cyclesystem development life cycle
system development life cycleFLYMAN TECHNOLOGY LIMITED
 
process models- software engineering
process models- software engineeringprocess models- software engineering
process models- software engineeringArun Nair
 
Quality assuarance bharath anche (1)
Quality assuarance bharath anche (1)Quality assuarance bharath anche (1)
Quality assuarance bharath anche (1)bharathanche
 
Generic Software Process Models
Generic Software Process ModelsGeneric Software Process Models
Generic Software Process ModelsEducation Front
 
6. oose testing
6. oose testing6. oose testing
6. oose testingAshenafi Workie
 
Process Model in Software Engineering.ppt
Process Model in Software Engineering.pptProcess Model in Software Engineering.ppt
Process Model in Software Engineering.pptAtharvaBavge
 
1. object oriented concepts & principles
1. object oriented concepts & principles 1. object oriented concepts & principles
1. object oriented concepts & principles poonam bora
 
Agile Development and Continuous Testing
Agile Development and Continuous TestingAgile Development and Continuous Testing
Agile Development and Continuous TestingTestinium
 
Software Development Life Cycle (SDLC )
Software Development Life Cycle (SDLC )Software Development Life Cycle (SDLC )
Software Development Life Cycle (SDLC )eshtiyak
 
Ncerc rlmca202 adm m3 ssm
Ncerc rlmca202 adm m3 ssmNcerc rlmca202 adm m3 ssm
Ncerc rlmca202 adm m3 ssmssmarar
 
Testing throughout the software life cycle - Testing & Implementation
Testing throughout the software life cycle - Testing & ImplementationTesting throughout the software life cycle - Testing & Implementation
Testing throughout the software life cycle - Testing & Implementationyogi syafrialdi
 
Creating Functional Testing Strategy.pptx
Creating Functional Testing Strategy.pptxCreating Functional Testing Strategy.pptx
Creating Functional Testing Strategy.pptxMohit Rajvanshi
 
software Engineering process
software Engineering processsoftware Engineering process
software Engineering processRaheel Aslam
 
01-Introduction to System Engineering & System Engineering Life cycle.pptx
01-Introduction to System Engineering & System Engineering Life cycle.pptx01-Introduction to System Engineering & System Engineering Life cycle.pptx
01-Introduction to System Engineering & System Engineering Life cycle.pptxssuseraaa4d6
 
Chapter 2.pptx
Chapter 2.pptxChapter 2.pptx
Chapter 2.pptxAmnaAhsaan1
 
Models of SDLC (Contd..) & Feasibility Study
Models of SDLC (Contd..) & Feasibility StudyModels of SDLC (Contd..) & Feasibility Study
Models of SDLC (Contd..) & Feasibility StudyAmity University | FMS - DU | IMT | Stratford University | KKMI International Institute | AIMA | DTU
 
2 approaches to system development
2 approaches to system development2 approaches to system development
2 approaches to system developmentcymark09
 
Models of SDLC (Software Development Life Cycle / Program Development Life Cy...
Models of SDLC (Software Development Life Cycle / Program Development Life Cy...Models of SDLC (Software Development Life Cycle / Program Development Life Cy...
Models of SDLC (Software Development Life Cycle / Program Development Life Cy...Amity University | FMS - DU | IMT | Stratford University | KKMI International Institute | AIMA | DTU
 
Sanjay
SanjaySanjay
Sanjayrehana00
 
What are the software development life cycle
What are the software development life cycle What are the software development life cycle
What are the software development life cycle Shivam Rathi
 
SDLC presentation-1.pptx
SDLC presentation-1.pptxSDLC presentation-1.pptx
SDLC presentation-1.pptxEvelynChinnu
 
[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse
[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse
[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypseTomasz Kowalczewski
 
architecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdfarchitecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdfWSO2
 

More Related Content

Similar to cupdf.com_1-developing-safety-critical-systems-chapter-5-storey.ppt

process models- software engineering
process models- software engineeringprocess models- software engineering
process models- software engineeringArun Nair
 
Quality assuarance bharath anche (1)
Quality assuarance bharath anche (1)Quality assuarance bharath anche (1)
Quality assuarance bharath anche (1)bharathanche
 
Generic Software Process Models
Generic Software Process ModelsGeneric Software Process Models
Generic Software Process ModelsEducation Front
 
Process Model in Software Engineering.ppt
Process Model in Software Engineering.pptProcess Model in Software Engineering.ppt
Process Model in Software Engineering.pptAtharvaBavge
 
1. object oriented concepts & principles
1. object oriented concepts & principles 1. object oriented concepts & principles
1. object oriented concepts & principles poonam bora
 
Agile Development and Continuous Testing
Agile Development and Continuous TestingAgile Development and Continuous Testing
Agile Development and Continuous TestingTestinium
 
Software Development Life Cycle (SDLC )
Software Development Life Cycle (SDLC )Software Development Life Cycle (SDLC )
Software Development Life Cycle (SDLC )eshtiyak
 
Ncerc rlmca202 adm m3 ssm
Ncerc rlmca202 adm m3 ssmNcerc rlmca202 adm m3 ssm
Ncerc rlmca202 adm m3 ssmssmarar
 
Testing throughout the software life cycle - Testing & Implementation
Testing throughout the software life cycle - Testing & ImplementationTesting throughout the software life cycle - Testing & Implementation
Testing throughout the software life cycle - Testing & Implementationyogi syafrialdi
 
Creating Functional Testing Strategy.pptx
Creating Functional Testing Strategy.pptxCreating Functional Testing Strategy.pptx
Creating Functional Testing Strategy.pptxMohit Rajvanshi
 
software Engineering process
software Engineering processsoftware Engineering process
software Engineering processRaheel Aslam
 
01-Introduction to System Engineering & System Engineering Life cycle.pptx
01-Introduction to System Engineering & System Engineering Life cycle.pptx01-Introduction to System Engineering & System Engineering Life cycle.pptx
01-Introduction to System Engineering & System Engineering Life cycle.pptxssuseraaa4d6
 
2 approaches to system development
2 approaches to system development2 approaches to system development
2 approaches to system developmentcymark09
 
What are the software development life cycle
What are the software development life cycle What are the software development life cycle
What are the software development life cycle Shivam Rathi
 
SDLC presentation-1.pptx
SDLC presentation-1.pptxSDLC presentation-1.pptx
SDLC presentation-1.pptxEvelynChinnu
 

Similar to cupdf.com_1-developing-safety-critical-systems-chapter-5-storey.ppt (20)

process models- software engineering
process models- software engineeringprocess models- software engineering
process models- software engineering
 
Quality assuarance bharath anche (1)
Quality assuarance bharath anche (1)Quality assuarance bharath anche (1)
Quality assuarance bharath anche (1)
 
Generic Software Process Models
Generic Software Process ModelsGeneric Software Process Models
Generic Software Process Models
 
6. oose testing
6. oose testing6. oose testing
6. oose testing
 
Process Model in Software Engineering.ppt
Process Model in Software Engineering.pptProcess Model in Software Engineering.ppt
Process Model in Software Engineering.ppt
 
1. object oriented concepts & principles
1. object oriented concepts & principles 1. object oriented concepts & principles
1. object oriented concepts & principles
 
Agile Development and Continuous Testing
Agile Development and Continuous TestingAgile Development and Continuous Testing
Agile Development and Continuous Testing
 
Software Development Life Cycle (SDLC )
Software Development Life Cycle (SDLC )Software Development Life Cycle (SDLC )
Software Development Life Cycle (SDLC )
 
Ncerc rlmca202 adm m3 ssm
Ncerc rlmca202 adm m3 ssmNcerc rlmca202 adm m3 ssm
Ncerc rlmca202 adm m3 ssm
 
Testing throughout the software life cycle - Testing & Implementation
Testing throughout the software life cycle - Testing & ImplementationTesting throughout the software life cycle - Testing & Implementation
Testing throughout the software life cycle - Testing & Implementation
 
Creating Functional Testing Strategy.pptx
Creating Functional Testing Strategy.pptxCreating Functional Testing Strategy.pptx
Creating Functional Testing Strategy.pptx
 
software Engineering process
software Engineering processsoftware Engineering process
software Engineering process
 
01-Introduction to System Engineering & System Engineering Life cycle.pptx
01-Introduction to System Engineering & System Engineering Life cycle.pptx01-Introduction to System Engineering & System Engineering Life cycle.pptx
01-Introduction to System Engineering & System Engineering Life cycle.pptx
 
Chapter 2.pptx
Chapter 2.pptxChapter 2.pptx
Chapter 2.pptx
 
Models of SDLC (Contd..) & Feasibility Study
Models of SDLC (Contd..) & Feasibility StudyModels of SDLC (Contd..) & Feasibility Study
Models of SDLC (Contd..) & Feasibility Study
 
2 approaches to system development
2 approaches to system development2 approaches to system development
2 approaches to system development
 
Models of SDLC (Software Development Life Cycle / Program Development Life Cy...
Models of SDLC (Software Development Life Cycle / Program Development Life Cy...Models of SDLC (Software Development Life Cycle / Program Development Life Cy...
Models of SDLC (Software Development Life Cycle / Program Development Life Cy...
 
Sanjay
SanjaySanjay
Sanjay
 
What are the software development life cycle
What are the software development life cycle What are the software development life cycle
What are the software development life cycle
 
SDLC presentation-1.pptx
SDLC presentation-1.pptxSDLC presentation-1.pptx
SDLC presentation-1.pptx
 

Recently uploaded

[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse
[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse
[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypseTomasz Kowalczewski
 
architecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdfarchitecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdfWSO2
 
Community is Just as Important as Code by Andrea Goulet
Community is Just as Important as Code by Andrea GouletCommunity is Just as Important as Code by Andrea Goulet
Community is Just as Important as Code by Andrea GouletAndrea Goulet
 
The Strategic Impact of Buying vs Building in Test Automation
The Strategic Impact of Buying vs Building in Test AutomationThe Strategic Impact of Buying vs Building in Test Automation
The Strategic Impact of Buying vs Building in Test AutomationElement34
 
Modern binary build systems - PyCon 2024
Modern binary build systems - PyCon 2024Modern binary build systems - PyCon 2024
Modern binary build systems - PyCon 2024Henry Schreiner
 
GraphSummit Milan - Visione e roadmap del prodotto Neo4j
GraphSummit Milan - Visione e roadmap del prodotto Neo4jGraphSummit Milan - Visione e roadmap del prodotto Neo4j
GraphSummit Milan - Visione e roadmap del prodotto Neo4jNeo4j
 
Navigation in flutter – how to add stack, tab, and drawer navigators to your ...
Navigation in flutter – how to add stack, tab, and drawer navigators to your ...Navigation in flutter – how to add stack, tab, and drawer navigators to your ...
Navigation in flutter – how to add stack, tab, and drawer navigators to your ...Flutter Agency
 
COMPUTER AND ITS COMPONENTS PPT.by naitik sharma Class 9th A mittal internati...
COMPUTER AND ITS COMPONENTS PPT.by naitik sharma Class 9th A mittal internati...COMPUTER AND ITS COMPONENTS PPT.by naitik sharma Class 9th A mittal internati...
COMPUTER AND ITS COMPONENTS PPT.by naitik sharma Class 9th A mittal internati...naitiksharma1124
 
Effective Strategies for Wix's Scaling challenges - GeeCon
Effective Strategies for Wix's Scaling challenges - GeeConEffective Strategies for Wix's Scaling challenges - GeeCon
Effective Strategies for Wix's Scaling challenges - GeeConNatan Silnitsky
 
Rapidoform for Modern Form Building and Insights
Rapidoform for Modern Form Building and InsightsRapidoform for Modern Form Building and Insights
Rapidoform for Modern Form Building and Insightsrapidoform
 
BusinessGPT - Security and Governance for Generative AI
BusinessGPT - Security and Governance for Generative AIBusinessGPT - Security and Governance for Generative AI
BusinessGPT - Security and Governance for Generative AIAGATSoftware
 
Transformer Neural Network Use Cases with Links
Transformer Neural Network Use Cases with LinksTransformer Neural Network Use Cases with Links
Transformer Neural Network Use Cases with LinksJinanKordab
 
Microsoft365_Dev_Security_2024_05_16.pdf
Microsoft365_Dev_Security_2024_05_16.pdfMicrosoft365_Dev_Security_2024_05_16.pdf
Microsoft365_Dev_Security_2024_05_16.pdfMarkus Moeller
 
Incident handling is a clearly defined set of procedures to manage and respon...
Incident handling is a clearly defined set of procedures to manage and respon...Incident handling is a clearly defined set of procedures to manage and respon...
Incident handling is a clearly defined set of procedures to manage and respon...Varun Mithran
 
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024MulesoftMunichMeetup
 
Your Ultimate Web Studio for Streaming Anywhere | Evmux
Your Ultimate Web Studio for Streaming Anywhere | EvmuxYour Ultimate Web Studio for Streaming Anywhere | Evmux
Your Ultimate Web Studio for Streaming Anywhere | Evmuxevmux96
 
The mythical technical debt. (Brooke, please, forgive me)
The mythical technical debt. (Brooke, please, forgive me)The mythical technical debt. (Brooke, please, forgive me)
The mythical technical debt. (Brooke, please, forgive me)Roberto Bettazzoni
 
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdf
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdfThe Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdf
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdfkalichargn70th171
 

Recently uploaded (20)

[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse
[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse
[GeeCON2024] How I learned to stop worrying and love the dark silicon apocalypse
 
architecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdfarchitecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdf
 
Community is Just as Important as Code by Andrea Goulet
Community is Just as Important as Code by Andrea GouletCommunity is Just as Important as Code by Andrea Goulet
Community is Just as Important as Code by Andrea Goulet
 
The Strategic Impact of Buying vs Building in Test Automation
The Strategic Impact of Buying vs Building in Test AutomationThe Strategic Impact of Buying vs Building in Test Automation
The Strategic Impact of Buying vs Building in Test Automation
 
Modern binary build systems - PyCon 2024
Modern binary build systems - PyCon 2024Modern binary build systems - PyCon 2024
Modern binary build systems - PyCon 2024
 
GraphSummit Milan - Visione e roadmap del prodotto Neo4j
GraphSummit Milan - Visione e roadmap del prodotto Neo4jGraphSummit Milan - Visione e roadmap del prodotto Neo4j
GraphSummit Milan - Visione e roadmap del prodotto Neo4j
 
Navigation in flutter – how to add stack, tab, and drawer navigators to your ...
Navigation in flutter – how to add stack, tab, and drawer navigators to your ...Navigation in flutter – how to add stack, tab, and drawer navigators to your ...
Navigation in flutter – how to add stack, tab, and drawer navigators to your ...
 
Abortion Pill Prices Germiston ](+27832195400*)[ 🏥 Women's Abortion Clinic in...
Abortion Pill Prices Germiston ](+27832195400*)[ 🏥 Women's Abortion Clinic in...Abortion Pill Prices Germiston ](+27832195400*)[ 🏥 Women's Abortion Clinic in...
Abortion Pill Prices Germiston ](+27832195400*)[ 🏥 Women's Abortion Clinic in...
 
COMPUTER AND ITS COMPONENTS PPT.by naitik sharma Class 9th A mittal internati...
COMPUTER AND ITS COMPONENTS PPT.by naitik sharma Class 9th A mittal internati...COMPUTER AND ITS COMPONENTS PPT.by naitik sharma Class 9th A mittal internati...
COMPUTER AND ITS COMPONENTS PPT.by naitik sharma Class 9th A mittal internati...
 
Effective Strategies for Wix's Scaling challenges - GeeCon
Effective Strategies for Wix's Scaling challenges - GeeConEffective Strategies for Wix's Scaling challenges - GeeCon
Effective Strategies for Wix's Scaling challenges - GeeCon
 
Rapidoform for Modern Form Building and Insights
Rapidoform for Modern Form Building and InsightsRapidoform for Modern Form Building and Insights
Rapidoform for Modern Form Building and Insights
 
BusinessGPT - Security and Governance for Generative AI
BusinessGPT - Security and Governance for Generative AIBusinessGPT - Security and Governance for Generative AI
BusinessGPT - Security and Governance for Generative AI
 
Transformer Neural Network Use Cases with Links
Transformer Neural Network Use Cases with LinksTransformer Neural Network Use Cases with Links
Transformer Neural Network Use Cases with Links
 
Abortion Pill Prices Mthatha (@](+27832195400*)[ 🏥 Women's Abortion Clinic In...
Abortion Pill Prices Mthatha (@](+27832195400*)[ 🏥 Women's Abortion Clinic In...Abortion Pill Prices Mthatha (@](+27832195400*)[ 🏥 Women's Abortion Clinic In...
Abortion Pill Prices Mthatha (@](+27832195400*)[ 🏥 Women's Abortion Clinic In...
 
Microsoft365_Dev_Security_2024_05_16.pdf
Microsoft365_Dev_Security_2024_05_16.pdfMicrosoft365_Dev_Security_2024_05_16.pdf
Microsoft365_Dev_Security_2024_05_16.pdf
 
Incident handling is a clearly defined set of procedures to manage and respon...
Incident handling is a clearly defined set of procedures to manage and respon...Incident handling is a clearly defined set of procedures to manage and respon...
Incident handling is a clearly defined set of procedures to manage and respon...
 
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024
Anypoint Code Builder - Munich MuleSoft Meetup - 16th May 2024
 
Your Ultimate Web Studio for Streaming Anywhere | Evmux
Your Ultimate Web Studio for Streaming Anywhere | EvmuxYour Ultimate Web Studio for Streaming Anywhere | Evmux
Your Ultimate Web Studio for Streaming Anywhere | Evmux
 
The mythical technical debt. (Brooke, please, forgive me)
The mythical technical debt. (Brooke, please, forgive me)The mythical technical debt. (Brooke, please, forgive me)
The mythical technical debt. (Brooke, please, forgive me)
 
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdf
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdfThe Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdf
The Evolution of Web App Testing_ An Ultimate Guide to Future Trends.pdf
 

cupdf.com_1-developing-safety-critical-systems-chapter-5-storey.ppt

  • 1. 1 Developing safety critical systems Chapter 5, Storey
  • 2. 2 Safety-critical systems • There are several approaches to the design of safety- critical systems. • In order of precedence these are. 1. To produce a system that is intrinsically safe. 2. To adopt design techniques that prevent or minimize the occurrence of hazards (interlocks, guards). 3. To use techniques to control hazards when they occur (failsafe devices, damage control, containment). 4. To adopt methods that aim to reduce the impact of hazards (use of warning devices, training of staff in emergency procedures). • We are primarily concerned with the second of these approaches.
  • 3. 3 Lifecycle models • Lifecycle models are a means of describing the different phases of the development process. • A safety lifecycle emphasizes those aspects that have particular relevance to safety. • The lifecycle from IEC 61508 is widely used. This cover all aspects of the development process from an initial concept through to decommissioning (see figure 5.2). • A general lifecycle model:
  • 4. 4 Different types of lifecycle models Waterfall model: • This is the most common and classic of lifecycle models, also referred to as a linear- sequential life cycle model. • A sequential software development model in which development is seen as flowing steadily downwards through the phases (requirements, design, implementation…) • Proceeds from one phase to the next in a purely sequential manner, only when each phase is fully completed, one proceeds to the next phase.
  • 5. 5 Different types of lifecycle models Iterative and incremental model: • Each iteration result in an increment, which is a release of a system that contains added or improved functionality compared to the previous release. • All iterations will include work in most of the process disciplines( requirement, design, implementation and testing) • “The process for constructing several partial deliverables, each having incrementally more functionality.”
  • 6. 6 Different types of lifecycle models Spiral model: • The spiral model is similar to the iterative incremental model, with more emphasis placed on risk analysis. • The spiral model has four phases: planning, risk analysis, engineering and evaluation. • A software project repeatedly passes through these phases in iterations. Each iteration of the spiral results in a deliverable. • Requirements are gathered in the planning phase. In the risk analysis phase, risks are identified and a prototype is produced. Software is produced in the engineering phase, along with testing. In the evaluation phase the customer evaluates the output of the project, before the project continues to the next spiral.
  • 7. 7 Different types of lifecycle models V-model: • The model identifies the major elements of the development process. • Just like the waterfall model, the V- shaped lifecycle is a sequential path of execution of processes. Each phase must be completed before the next phase begins. • One of the attractions of this model is that its form emphasises a top- down approach to the design and a bottom-up approach to testing.
  • 8. 8 Developing safety-critical systems • The process of developing a safety-critical system may be both complicated and time consuming. • Like all development projects it has various phases, which can be presented diagrammatically using a lifecycle model. • The main elements of the development of a safety-critical system are, in general, similar to those of less critical units. • However, in critical applications the development process is dominated by a need to produce and demonstrate dependability. • Consequently, each phase is carefully structured and documented to ensure that it is performed correctly. • IEC 61508 also describes an overall safety lifecycle (see figure 5.3). The form of the safety lifecycle is very similar to that of the overall system lifecycle, with the addition of phase concerned with hazard and risk analysis.
  • 9. 9 Phases of the development process Requirements: - The starting point of any development project is determined by the system requirements (customer requirements), which is an almost abstract definition of what the system should do. - Before the system can be implemented these abstract requirements must be formalised into a functional requirements document (user requirements specification), which attempt to describe what the system should do.
  • 10. 10 Phases of the development process Hazard and risk analysis: - Once the functional requirements of the system have been established, hazard and risk analysis is performed to identify potential dangers in the system and to allocate an overall level of integrity. - One of the outputs from these analyses is the safety requirements, which defines what the system must and must not do, in order to ensure safety.
  • 11. 11 Phases of the development process Specification: - From the functional requirements and the safety requirements of the system a specification is produced, which will include measures for safety assurance in line with the integrity level assigned. - The specification attempts to define, in an unambiguous manner, a system that will completely fulfil these requirements. - In reality this is hard and it is easy to make mistakes at this stage. - Requirements are often written in natural languages, which are subject to ambiguity. - A misunderstanding of some aspect of the requirements may lead to a specification that is incomplete or incorrect. - the testing performed is aimed at establishing that the system meets its specification.
  • 12. 12 Phases of the development process An ideal specification should be: - Correct - Complete - Consistent - Unambiguous - The problems associated with the production of unambiguous specifications may be tackled by using: - semiformal methods - formal methods
  • 13. 13 Software animation of the specification - prototyping • Faults within the specification represent one of the greatest problems in the development of safety-critical systems – inadequacies in the requirements documents – specification does not accurately reflect the requirements • Software animation can be used to illustrate various characteristics of the system defined by the specification. • Investigates particular aspects of the system rather than to satisfy the complete specification. • Involves writing software that models the system defined in a specification in order to investigate the characteristics of that specification. • This technique differs from simulation which emulates the performance of trial design. • Software animation is used to validate the specification, whereas simulation is used to investigate a design.
  • 14. 14 Phases of the development process Top-level design: - Once the specification has been produced, this is used as the basis for the top-level design that defines the systems architecture. - One of the major aspect of this process is to partition the system into hardware and software. - The top-level design will split the project into a number of more manageable modules to simplify the design and testing processes. - Specifications will than be produced for each module and later used for module testing.
  • 15. 15 Phases of the development process Detailed design: - Top-level design is followed by the detailed design of both the hardware and the software for each of the modules. - Often the process of decomposition is iterative, which modules being broken into successively smaller sub modules, each with its own specification. Module implementation / Module test: - When the design stage is complete the modules are constructed and tested individually. - Testing methods may be divided into : - Dynamic techniques: involves operating and executing the module to investigate its characteristics - Static techniques: looks at the characteristics of the module without executing it (design reviews, code walkthroughs) - This testing forms part of the process of verification which is used to establish that each module satisfies its specification.
  • 16. 16 Phases of the development process System integration: • Once the various modules have been completed and verified, the process of system integration may begin. This can be done by various approaches: 1. Progressively integration: here a small number of modules are combined to make a minimal system, which is then tested and any problems removed. Additional modules are then added successively, performing testing at each stage. This process continues until the system is complete. 2. Big-bang approach: here all the modules are combined immediately and the complete system is tested.
  • 17. 17 Phases of the development process System test (verification and validation): • Once the system is complete and appears to be functioning correctly, the verification and validation of the entire system may begin. - Verification: the process of determining that the system, or module, meets its specification. - Validation: the process of determining that the system is appropriate for its purpose. • From these definitions we see that verification seeks to show that the system corresponds to its specification, whereas the validation sets out to determine whether the system as a whole accurately meets the requirements of the user. It therefore includes considerations of the correctness of the specification itself.
  • 18. 18 Phases of the development process Certification: - For highly critical systems the final stage is to convince some external regulating body that the system is safe and thereby to achieve certification. - This will necessitate the provision of documentary evidence to support all aspects of work, and full details on the tests and their results. - For this reason the certification process must be planned at the beginning of the project. - It is a benefit to use standards and guidelines during development, in order to achieve certification.
  • 19. 19 Safety analysis • Safety analysis is the process of assessing the safety of a system by looking at the associated hazards and the methods used by the system to cope with them • In IEC 61508 this subject is referred to as overall safety validation • The major components of the safety analysis process are described in the UK Health and Safety Executive (HSE) guidelines and other standards.
  • 20. 20 Safety analysis • The main activities in a safety analysis process are: 1. Analyse the hazards a) Identify the potential hazards b) Evaluate the event leading to these hazards 2. Identify the safety-related systems within the plant 3. Decide on the required level of safety integrity for the safety-related systems 4. Design the safety-related systems using the safety integrity criteria appropriate for the specific application 5. Carry out safety integrity analysis to assess the level of safety integrity achieved by the safety-related systems 6. Ensure, from the analysis of 5, that the integrity levels of 3 have been achieved. • Safety analysis is an ongoing process that continues throughout the lifecycle.
  • 21. 21 Exercises - Chapter 5: 1, 6, 7, 9, 10, 11, 12, 13, 18, 23 - Chapter 6: 3, 4, 14, 15, 16, 17, 18, 34, 35, 36, 37, 38