Industrial Avionics Working Group 19/04/07 The Relationship Between the Design and Safety Domains in IAWG Modular Certification What are DGRs and How are.

Slides:



Advertisements
Similar presentations
Module N° 4 – ICAO SSP framework
Advertisements

Module N° 3 – ICAO SARPs related to safety management
Cyber Defence Data Exchange and Collaboration Infrastructure (CDXI)
Whole Airspace Safety Case Meeting – Overview of Prior Work – 1 Whole Airspace Safety Case Meeting Overview of Prior Work Tim Kelly John McDermid Department.
Mapping Assurance to the Software Engineering Process Alfred H. Kromholz, Ph.D. The MITRE Corporation mitre.org Copyright © 2004.
Chapter 11 Component-Level Design
Practical Assurance Case Design IV&V Workshop S. R. Brown KeyLogic Inc With my thanks and appreciation Don Ohi – Project Monitor Travis Dawson – Chief.
ArchE Presented By Samanvitha Ramayanam. TOPICS 1. Introduction 2. Theoretical assumptions 3. ArchE as an expert system 4. Overall flow of ArchE 5. Key.
ARTEMIS pSafeCer Grant Agreement number ARTEMIS nSafeCer Grant Agreement number Safety Certification of Software-intensive.
Industrial Avionics Working Group 18/04/07 Modular Certification Basic Concepts.
1 Certification Chapter 14, Storey. 2 Topics  What is certification?  Various forms of certification  The process of system certification (the planning.
Industrial Avionics Working Group 18/04/07 Propose Safety Case Architecture.
Industrial Avionics Working Group 19/04/07 Modular Certification Developing Safety Case Modules.
The Architecture Design Process
ACADEMIC INFRASTRUCTURE Framework for Higher Education Qualifications Subject Benchmark Statements Programme Specifications Code of Practice (for the assurance.
Industrial Avionics Working Group 18/04/07 Assessing the Safety Case Architecture Optimising the Design Architecture and Safety Case Architecture.
1 SYSTEM and MODULE DESIGN Elements and Definitions.
Process ITV Model-based Analysis and Design of Embedded Software Techniques and methods for Critical Software Anders P. Ravn Aalborg University August.
1 Building with Assurance CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 10, 2004.
Industrial Avionics Working Group 13/09/06 Incremental Certification Phil Williams – General Dynamics (UK) Ltd Representing the Industrial Avionics Working.
Industrial Avionics Working Group 18/04/07 AL Partitioning (1) – Physical Domain Application Layer P 1 P 2 P 3 P n App P S 1 S 2 S 3 S n App S R 1 R 2.
Industrial Avionics Working Group 18/04/07 Application Integration.
Documentation ITV Model-based Analysis and Design of Embedded Software Techniques and methods for Critical Software Anders P. Ravn Aalborg University August.
1/31 CS 426 Senior Projects Chapter 1: What is UML? Chapter 2: What is UP? [Arlow and Neustadt, 2005] January 22, 2009.
Industrial Avionics Working Group 19/04/07 Architecture Integration.
Industrial Avionics Working Group 18/04/07 Modular Certification Safety Case Contracts.
1 Objective of today’s lesson S oftware engineering occurs as a consequence of a process called system engineering. Instead of concentrating solely on.
Industrial Avionics Working Group 18/04/07 The Relationship Between the Design and Safety Domains in IAWG Modular Certification DGR Generation.
1 CS 426 Senior Projects Chapter 1: What is UML? Chapter 2: What is UP? [Arlow and Neustadt, 2002] January 26, 2006.
Industrial Avionics Working Group 19/04/07 Block, OSL and MSL Safety Argument Modules.
Industrial Avionics Working Group 18/04/07 Defining the Safety Case Architecture IAWG Modular Certification.
IV&V Facility Model-based Design Verification IVV Annual Workshop September, 2009 Tom Hempler.
Exmouth House 3–11 Pine Street London EC1R 0JH T F E W CAE – Next generation and Building.
Ships in Service Training Material A-M CHAUVEL QMS Terms & Definitions 2009.
Lecture 18: Specifications
Lesson 7 Guide for Software Design Description (SDD)
Chapter 2 Introduction to Requirements Management
Cybersecurity: Engineering a Secure Information Technology Organization, 1st Edition Chapter 7 Software Supporting Processes and Software Reuse.
Chief Examiner’s Checklist STANDARD OF MANUFACTURE Your final product should show a high standard of manufacture using appropriate methods, technologies.
Information ITIL Technology Infrastructure Library ITIL.
RUP Design RUP Artifacts and Deliverables
Entity Framework Overview. Entity Framework A set of technologies in ADO.NET that support the development of data-oriented software applications A component.
Draft – discussion only Content Standards WG (Documents and Data) Proposed HITSC Workgroup Evolution 1 Architecture, Services & APIs WG Transport and Security.
What is MOF? The Meta Object Facility (MOF) specification provides a set of CORBA interfaces that can be used to define and manipulate a set of interoperable.
Chapter 13 Architectural Design
Architectural Design Based on Chapter 11 of the textbook [SE-8] Ian Sommerville, Software Engineering, 8t h Ed., Addison-Wesley, 2006 and on the Ch11 PowerPoint.
Design Concepts By Deepika Chaudhary.
Develop a Safety Assurance approach for Complex Systems (Problem Definition) Supervisors: Tim Kelly, Rob Alexander Chris Leong HISE Group Giving a Presentation.
Open Platform for EvolutioNary Certification Of Safety-critical Systems Large-scale integrating project (IP) Nuanced Term-Matching to Assist in Compositional.
Copyright Prof. Dr. Shuichiro Yamamoto Prof. Dr. Shuichiro Yamamoto Nagoya University.
1 Chapter 8 Building the Analysis Model (1) Analysis Concepts and Principles.
16/11/ Semantic Web Services Language Requirements Presenter: Emilia Cimpian
Industrial Avionics Working Group 18/04/07 The Relationship Between the Design and Safety Domains in IAWG Modular Certification Part 2: Completeness of.
Chapter 19: Building Systems with Assurance Dr. Wayne Summers Department of Computer Science Columbus State University
Module N° 6 – SMS regulation
Software Engineering Lecture 10: System Engineering.
Industrial Avionics Working Group 18/04/07 Design for Safety IAWG Modular Certification.
Object Oriented Programming and Data Abstraction Earl Huff Rowan University.
Network Security The Parts of the Sum Stephen T. Walker Overview by Justin Childs.
What is EA? Program Pembudayaan EA & ISP KKM 2014 Ministry of Health 18 December 2014 Consulting.
Chapter 9 Architectural Design. Why Architecture? The architecture is not the operational software. Rather, it is a representation that enables a software.
Information ITIL Technology Infrastructure Library ITIL.
IC Conceptual Data Model (CDM)
Mapping Assurance to the Software Engineering Process
Component-Level Design
Chapter 19: Building Systems with Assurance
Chapter 5 Designing the Architecture Shari L. Pfleeger Joanne M. Atlee
CS 425/625 Software Engineering Architectural Design
Introduction to Requirements Management
Open Systems and Open Architecture – the benefits case
Presentation transcript:

Industrial Avionics Working Group 19/04/07 The Relationship Between the Design and Safety Domains in IAWG Modular Certification What are DGRs and How are DGRs used in the Safety Argument?

Industrial Avionics Working Group 19/04/07 Safety Case Architecture Safety_Req Block XBlock YBlock Z AL Int Arch Int OSL MSL RTBP

Industrial Avionics Working Group 19/04/07 Safety Argument Overview Argument over software related elements within the System –Blocks in the Application Layer –Modules in the OSL –Modules in the MSL Integration Arguments regarding –Architecture Integration of OSL and MSL Provision and Performance of services –Application Layer Integration of the Software Applications Integration of the Arguments for each Block –Overall Integration Integration of the Applications with the Architecture

Industrial Avionics Working Group 19/04/07 Dependencies / Guarantees & the Safety Argument (1) Overall Argument Strategy –Top Level Claims that each Safety Requirement is adequately assured –Supported by claims that guaranteed behaviour is adequately assured Use of DGRs –Provide Context for Arguments over the Software related elements (I.e. Application Block, OSL & MSL) –Identifies the guaranteed behaviour for each software related element –Guaranteed behaviour is defined by a set of ‘Guarantees’ –For each ‘Guarantee’ the related ‘Dependencies’ are identified –The related ‘Dependencies’ are the behaviour needed from other elements to meet the ‘Guarantee’

Industrial Avionics Working Group 19/04/07 A DGR for a Software Related Element G1 D1 D2 D3 G1 D1 D2 D3 DGR

Industrial Avionics Working Group 19/04/07 Dependencies / Guarantees & the Safety Argument (2) Integration of arguments –Integration of the arguments over the software related elements is achieved by linking the arguments over the ‘Dependencies’ and the ‘Guarantees’ between the elements Mechanism for the argument –Argument over the satisfaction of each ‘Dependency’ in one element by one or more ‘Guarantee’ in supporting elements –This may be specified in a Dependency Guarantee Contract (DGC) –Argument creates a ‘Daisy Chain’ that begins with a Safety Requirement in one element that is supported by a Guarantee in another element, whose associated Dependencies are supported in turn by Guarantees in another element ……….. Provision of Guarantees –‘Dependencies’ may be satisfied by ‘Guarantees’ provided by other application blocks or the architectural Services –A ‘useful’ set of Guarantees is provided by the architecture

Industrial Avionics Working Group 19/04/07 G1D2 Contract D1 G2 D3 Safety Case “Agreements” Software Related Elements G1 is Guaranteed, provided Dependency D1 is met. G2 is Guaranteed, provided Dependencies D2 & D3 are met. ‘Agreement’ (may be a DGC) –Between software related elements (G1-D2) –One or more Guarantees can be mapped to one Dependency Link ‘providing’ block Guarantees (e.g. G1) with ‘consuming’ block Dependencies (e.g. D2)

Industrial Avionics Working Group 19/04/07

Industrial Avionics Working Group 19/04/07 Example Argument Con:Sufficient Assurance Definition of what is necessary to sufficiently assure this argument. Goal::{Guarantee G} { },which describes behaviour of the product made available by { Component c }, is sufficiently assured. Con:Product The product baseline is identified here. An example DGR Requirements For Module Example source evidence Con:DGRs Each DGR records the Dependencies associated with a specific {Guarantee G}. {.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.