Protecting the Public, Astronauts and Pilots, the NASA Workforce, and High-Value Equipment and Property Mission Success Starts With Safety Believe it or.

Slides:

Advertisements

Similar presentations

Configuration Management

Advertisements

Safety Software QA at BNL’s Collider-Accelerator Department (C-AD) Accelerator Safety Workshop E. Lessard Collider-Accelerator Department August 12-14,

EECE499 Computers and Nuclear Energy Electrical and Computer Eng Howard University Dr. Charles Kim Fall 2013 Webpage:

System/Software Testing Error detection and removal determine level of reliability well-planned procedure - Test Cases done by independent quality assurance.

Software Quality Assurance Plan

Software Quality Assurance (SQA). Recap SQA goal, attributes and metrics SQA plan Formal Technical Review (FTR) Statistical SQA – Six Sigma – Identifying.

Ask Pete Acquired Software Knowledge Project - Estimation- Tool - Effort Presented to the NASA OSMA SAS ‘01 NASA IV&V Facility September 5-7, 2001 Tim.

Integration of Quality Into Accident Investigation Processes ASQ Columbia Basin Section 614 John Cornelison January 2008.

1 Independent Verification and Validation Current Status, Challenges, and Research Opportunities Dan McCaugherty IV&V Program Manager Titan Systems Corporation.

Chapter 19: Network Management Business Data Communications, 4e.

Reliability and Safety Lessons Learned. Ways to Prevent Problems Good computer systems Good computer systems Good training Good training Accountability.

COMP8130 and 4130Adrian Marshall 8130 and 4130 Test Execution and Reporting Adrian Marshall.

Software Engineering for Safety : A Roadmap Presentation by: Manu D Vij CS 599 Software Engineering for Embedded Systems.

Verification and Validation of Programmable Logic Devices James A. Cercone Ph.D., P.E.,James A. Cercone Ph.D., P.E., Chair and Professor of Computer ScienceChair.

OHT 3.1 Galin, SQA from theory to implementation © Pearson Education Limited 2004 The need for comprehensive software quality requirements Classification.

Software Fault Injection Kalynnda Berens Science Applications International Corporation NASA Glenn Research Center.

IV&V Facility Model-based Design Verification IVV Annual Workshop September, 2009 Tom Hempler.

Effective Methods for Software and Systems Integration

CYPRESS PNSQC (15-17 Oct. 2001) 1 Testing a Bluetooth Product With Web and Embedded Software Rick Clements cypress.com Cypress Semiconductors 9125.

Security Operations. 2 Domain Objectives Protection and Control of Data Processing Resources Media Management Backups and Recovery Change Control Privileged.

Commercial Database Applications Testing. Test Plan Testing Strategy Testing Planning Testing Design (covered in other modules) Unit Testing (covered.

CCSB223/SAD/CHAPTER141 Chapter 14 Implementing and Maintaining the System.

File: 1 The OECD Halden Reactor Project The OECD Halden Reactor Project (HRP) is an International Research Project between 19 countries in Europe, America.

S/W Project Management Software Process Models. Objectives To understand  Software process and process models, including the main characteristics of.

1 Chapter 2 Socio-technical Systems (Computer-based System Engineering)

Standard WBS Version 1.0 WBS2-3.pptPage 1 Standard Work Breakdown Structure Legend = Decomposes to lower level WBS elements 4.0 Implementation 4.0 Implementation.

S oftware Q uality A ssurance Part One Reviews and Inspections.

University of Coimbra, DEI-CISUC

How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.

Intent Specification Intent Specification is used in SpecTRM

 Chapter 13 – Dependability Engineering 1 Chapter 12 Dependability and Security Specification 1.

Slide 1V&V 10/2002 Software Quality Assurance Dr. Linda H. Rosenberg Assistant Director For Information Sciences Goddard Space Flight Center, NASA

Breakout Group 2: Software Quality Assurance Objectives and Goals 8/18/10 1.

LSST Camera CD-3 Review Brookhaven National Laboratory, Brookhaven, NY LSST Safety Council Camera Review Bremerton, WA 2015 LSST Camera Environment,

West Virginia University Towards Practical Software Reliability Assessment for IV&V Projects B. Cukic, E. Gunel, H. Singh, V. Cortellessa Department of.

1 FRENCH PROPOSAL FOR ESARR6 1 - BACKGROUND - 15/02/00 : Kick-off meeting, Presentation of the CAA/SRG input (SW01), Request from the chairman to comment.

JLab Software Assurance Program A Risk Based Approach to Software Management.

Advanced Computer Networks Topic 2: Characterization of Distributed Systems.

July LEReC Review July 2014 Low Energy RHIC electron Cooling Edward T. Lessard ESHQ.

Programmable Logic Educating Assurance Engineers NASA Glenn Research Center Kalynnda Berens (PI) Jackie Somos (Course designer)

1 Reducing the Software Impact to System Safety Paul Mayo – SafeEng Limited.

Quality Assurance.

Software quality factors

Safety-Critical Systems 7 Summary T V - Lifecycle model System Acceptance System Integration & Test Module Integration & Test Requirements Analysis.

RELIABILITY ENGINEERING 28 March 2013 William W. McMillan.

Over View of CENELC Standards for Signalling Applications

Software QA Safety Systems at SLAC Enzo Carrone Controls Department – Safety Systems SLAC National Accelerator Laboratory.

Network design Topic 6 Testing and documentation.

Assurance of Programmable Logic Devices NASA Glenn Research Center Kalynnda Berens, SAIC Coursework: Jacqueline Somos, SAIC.

CS451 Software Implementation and Integration Yugi Lee STB #555 (816) Note: This lecture was designed.

Erman Taşkın. Information security aspects of business continuity management Objective: To counteract interruptions to business activities and to protect.

SAS_05_Contingency_Lutz_Tal1 Contingency Software in Autonomous Systems Robyn Lutz, JPL/Caltech & ISU Doron Tal, USRA at NASA Ames Ann Patterson-Hine,

CS3320-Chap21 Office Hours TR 1:00-2:15 PM W 2:30-3:30 PM By appointment.

SwCDR (Peer) Review 1 UCB MAVEN Particles and Fields Flight Software Critical Design Review Peter R. Harvey.

More SQA Reviews and Inspections. Types of Evaluations  Verification Unit Test, Integration Test, Usability Test, etc  Formal Reviews  aka "formal.

Safety-Critical Systems 3 T Designing Safety Software Ilkka Herttua.

Failure Modes, Effects and Criticality Analysis

Process Safety Management Soft Skills Programme Nexus Alliance Ltd.

Chapter 19: Network Management

PRA: Validation versus Participation in Risk Analysis PRA as a Risk Informed Decision Making Tool Richard T. Banke– SAIC

Presented to the NASA OSMA SAS ‘01

Software Independent Verification and Validation (IV&V)

Programmable Logic Devices

Introduction to Software Testing

RISK REDUCTION PROCESS

Knowing When to Stop: An Examination of Methods to Minimize the False Negative Risk of Automated Abort Triggers RAM XI Training Summit October 2018 Patrick.

Software Engineering for Safety: a Roadmap

PSS verification and validation

Computer in Safety-Critical Systems

HRA: Aerospace Challenges

Presentation transcript:

Protecting the Public, Astronauts and Pilots, the NASA Workforce, and High-Value Equipment and Property Mission Success Starts With Safety Believe it or not, Software Assurance Affects You Too Martha S. Wetherholt NASA Office of Safety & Mission Assurance

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (2) What is Software Assurance Software Assurance (SA) includes: Software Quality Engineering Software Assurance of Product and Processes Software Safety Software Independent Verification & Validation (IV&V) Software Reliability It is, Software Risk Management

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (3) What Makes Software, Safety Critical? Software that directly or indirectly contributes to the occurrence of a hazardous system state

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (4) What Makes Software Hazardous? Software is hazardous if it: Controls hazardous or safety critical hardware Monitors safety critical hardware as part of a hazard control Provides information upon which a safety-related decision is made Performs analysis that impacts automatic or manual hazardous operations Verifies hardware hazard controls Is used to verify safety critical hardware and/or software Is used to model or simulate safety critical applications

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (5) Software Safety - Why care? One or more people are injured or worse Regulatory requirements (e.g. OSHA, UL, etc.) NASA requirements Liability if software fails Reputation (business or personal) “Good practice” for mission critical or business critical software

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (6) Why Should We Care, What does it have to do with me? Software control of facilities – Wind tunnels – Simulators – Centrifuges – Shake & Bake – EMI testing – Engine Checkout – Etc. Software control and monitoring of safety critical projects which run in changeable labs Labs/Tools – Vibe tables ……..

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (7) What should be done Train Area Safety Managers/Health and Safety Personnel Invite Software Assurance along on Facility set up and changes Ask the right Questions – How is this experiment/facility controlled – How is it monitored – What is the human interface – Does software detect and react to safety critical situations How – what is it expected to do – What testing was performed on the Consumer Off the Shelf (COTS) Software Purchased to operate the Facility/Experiment – What software development processes are to be used to develop the software – including Application SW – How are the COTS and Applications written Configuration Managed – Does the Software perform a logging function to track faults, failures, errors, etc. How often is it viewed? By who?

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (8) Creating Safer Software & Safer Systems Good SW Development Process Development Tools Appropriate Reviews – Diverse Review Teams – Formal Inspections Communication Appropriate Analysis, both Safety & Development Caveat Emptor

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (9) Safety Verification Testing Safety tests designated for each hazard control. Verify partitions, firewalls, or other software constructs that isolate safety critical code. “Fail” the hazard controls in a multi-tolerant system. For example, in a two-fault-tolerant system (three controls), try all combinations of two failures. Verify hazardous commands. Verify software correctly handles out of sequence commands, hazardous commands issued in an incorrect state, and other possible errors. Software Safety (usually SQA) should witness all software safety testing.

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (10) When COTS Software Is Used SOUP (SW of Uncertain Parentage) Is this a case of Reuse? – Previous environmental criteria may or may not be valid in the new system. Must test COTS for ways it can fail. STAND-ALONE Must test for how system faults/failures affect the COTS and the applications they run on. How does your application software respond to those failures – how does it effect the system, humans, etc.? What of unused portions/features of COTS software? Can they influence the safety critical operations & monitoring. Stand-alone testing of all functionality prior to integration in lab or facility. How much Glue-ware and/or wrappers.

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (11) What are we asking you to do? Be AWARE – Know what to look for – What Questions to ask – What are you buying Be Proactive Put Software into Assessment process & plan Train your people Document safety requirements then Test for them Work with SW Assurance

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (12) Background/Extras

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (13) What Software is included Software Firmware Programmable Logic Devices ASICs - Application Specific Integrated Circuits FPGAs - Field Programmable Gate Arrays COTS Software – Program Logic Control – Databases – Operating Systems – Ad infinitum

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (14) Categories of S/W Safety Functions Caution And Warning Functions Failure Detection, Isolation, and R – Recovery – Restart – Reduced operation Automatic safing software – Hot, Warm, Cold Backup Autonomous Decision Making & Operation

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (15) Safety critical software is:  Software which controls or monitors safety critical functions including mitigation of hazards  Software which runs on the same system as safety critical software or impacts systems which run safety critical software  Software which handles safety critical data  Software used to verify and validate safety critical hardware and software

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (16) Categories of S/W Safety Functions Must work/must not work functions – Mode and State Dependent – Must never work – Must never fail to work Fault tolerance – Redundancy – How many levels and where are they best put Multiple Commanding (Ready, Arm, Fire)

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (17) Stability/Reliability Testing How well does the system operate for extended periods of time? System is run in normal mode of operation - occasional peak performance allowed, but not stress testing the system. Can the system handle intermittent bad data? Is there a sensitivity to event sequences? Does memory leakage cause problems after a period of time?

Success Starts with Safety NASA Office of Safety and Mission Assurance March 7, 2002 (18) Summary Determine software control and complexity Determine each software portions’ contribution to safety Establish categories with a cross index to hazard level Determine a level of effort needed to assure safer software Further tailor the effort to your particular needs and situation