Software Testing and Quality Assurance Software Quality Assurance 1.

Slides:



Advertisements
Similar presentations
Steven F. Mattern Science and Engineering Associates, Inc. (505)
Advertisements

Integra Consult A/S Safety Assessment. Integra Consult A/S SAFETY ASSESSMENT Objective Objective –Demonstrate that an acceptable level of safety will.
Accident and Incident Investigation
ICAO Aerodrome Safety Workshop Almaty, Kazakhstan – 18 to 22 November 2002 NON-CONFORMITIES AND EXEMPTIONS AERONAUTICAL STUDIES.
Incident Review Meeting Guidance Material & Presentation Template
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 24 Slide 1 Critical Systems Validation 2.
System Safety Concepts Dave Balderston Office of System Safety March 26, 2003.
Accident Causes, Prevention and Control
Chapter 21: Product Issues Design of Biomedical Devices and Systems By: Paul H. King Richard C. Fries.
ACCIDENT INVESTIGATION
Identifying Causes of Accidents
1 Software Testing and Quality Assurance Lecture 38 – Software Quality Assurance.
1 Software Testing and Quality Assurance Lecture 37 – Software Quality Assurance.
1 Software Testing and Quality Assurance Lecture 34 – Software Quality Assurance.
1 Software Testing and Quality Assurance Lecture 39 – Software Quality Assurance.
SWE Introduction to Software Engineering
CSC 402, Fall Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)
Title slide PIPELINE QRA SEMINAR. PIPELINE RISK ASSESSMENT INTRODUCTION TO RISK IDENTIFICATION 2.
Lucas Phillips Anurag Nanajipuram FAILURE MODE AND EFFECT ANALYSIS.
Hazards Analysis & Risks Assessment By Sebastien A. Daleyden Vincent M. Goussen.
©Ian Sommerville 2006Critical Systems Slide 1 Critical Systems Engineering l Processes and techniques for developing critical systems.
Accident Investigation.
What is Fault Tree Analysis?
Basics of Fault Tree and Event Tree Analysis Supplement to Fire Hazard Assessment for Nuclear Engineering Professionals Icove and Ruggles (2011) Funded.
Introduction to Computer Technology
Unit 3a Industrial Control Systems
Software Dependability CIS 376 Bruce R. Maxim UM-Dearborn.
EE551 Real-Time Operating Systems
University of Palestine software engineering department Testing of Software Systems Fundamentals of testing instructor: Tasneem Darwish.
CPIS 357 Software Quality & Testing I.Rehab Bahaaddin Ashary Faculty of Computing and Information Technology Information Systems Department Fall 2010.
CLEANROOM SOFTWARE ENGINEERING.
WHAT IS SYSTEM SAFETY? The field of safety analysis in which systems are evaluated using a number of different techniques to improve safety. There are.
ERT 312 SAFETY & LOSS PREVENTION IN BIOPROCESS RISK ASSESSMENT Prepared by: Miss Hairul Nazirah Abdul Halim.
ERT 322 SAFETY AND LOSS PREVENTION RISK ASSESSMENT
1 Software Testing and Quality Assurance Lecture 33 – Software Quality Assurance.
FAULT TREE ANALYSIS (FTA). QUANTITATIVE RISK ANALYSIS Some of the commonly used quantitative risk assessment methods are; 1.Fault tree analysis (FTA)
Blaine Best David Mette Katie Kodrich Allie Pitchler Kyle Killam “An error doesn’t become a mistake until you refuse to correct it.” - Orlando A. Battista.
GE 116 Lecture 1 ENGR. MARVIN JAY T. SERRANO Lecturer.
Safety-Critical Systems T Ilkka Herttua. Safety Context Diagram HUMANPROCESS SYSTEM - Hardware - Software - Operating Rules.
Failure Analysis Requirements Maintenance. Anticipating Failure ● We cannot engineer away all possible failures – System only has partial control over.
1 Reducing the Software Impact to System Safety Paul Mayo – SafeEng Limited.
1 Safety - definitions Accident - an unanticipated loss of life, injury, or other cost beyond a pre-determined threshhold.  If you expect it, it’s not.
Hazard Identification
Quality Assurance.
Safety-Critical Systems 7 Summary T V - Lifecycle model System Acceptance System Integration & Test Module Integration & Test Requirements Analysis.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 9 Slide 1 Critical Systems Specification 1.
CMSC 345 Fall 2000 Requirements Overview. Work with customers to elicit requirements by asking questions, demonstrating similar systems, developing prototypes,
Objectives Students will be able to:
Over View of CENELC Standards for Signalling Applications
I DENTIFYING C AUSES OF A CCIDENTS Surface vs. Root Causes Surface causes are: the hazardous conditions or unsafe work practices that directly or indirectly.
Copyright , Dennis J. Frailey CSE Software Measurement and Quality Engineering CSE8314 M00 - Version 7.09 SMU CSE 8314 Software Measurement.
Failure Modes and Effects Analysis (FMEA)
1 Software Testing and Quality Assurance Lecture 38 – Software Quality Assurance.
Toward a New ATM Software Safety Assessment Methodology dott. Francesca Matarese.
LECTURE 7 AVIATION SAFETY & SECURITY
Failure Modes, Effects and Criticality Analysis
ON “SOFTWARE ENGINEERING” SUBJECT TOPIC “RISK ANALYSIS AND MANAGEMENT” MASTER OF COMPUTER APPLICATION (5th Semester) Presented by: ANOOP GANGWAR SRMSCET,
October 22, 2005 Parvaiz Ahmed Khand An Overview of Software Safety.
KEVIN BEDAL LISA CARLIN MATT CARROLL ERIN NICHOLS Product Safety & Failure Analysis.
An Integrated Model-Based Approach to System Safety and Aircraft System Architecture Development Eric Villhauer – Systems Engineer Brian Jenkins – System.
PRA: Validation versus Participation in Risk Analysis PRA as a Risk Informed Decision Making Tool Richard T. Banke– SAIC
Dept. of Nuclear and Quantum Engineering
Safety and Risk.
Air Carrier Continuing Analysis and Surveillance System (CASS)
Design for Quality Design for Quality and Safety Design Improvement
Project Risk Management Jiwei Ma
Accident Investigation.
Review and comparison of the modeling approaches and risk analysis methods for complex ship system. Author: Sunil Basnet.
Presentation transcript:

Software Testing and Quality Assurance Software Quality Assurance 1

Reading Assignment bielefeld.de/publications/Incidents/DOCS/ ComAndRep/Warsaw/warsaw- report.html bielefeld.de/publications/Incidents/DOCS/ ComAndRep/Warsaw/warsaw- report.html 2

3 Objectives Software Safety ◦ Software safety is not just software Reliability Safety Engineering Approach

4 Software Safety Safety in systems involving software is becoming important. For example, ◦ Computer Aided Dispatch Systems (CAD); ◦ Electronic Flight Control Systems (EFCS). ◦ Train Protection Systems; ◦ Chemical Plant control systems.

5 Software Safety We wish to avoid in engineering and operating our platforms is ◦ Accidents. The system that we build must avoid the hazards that lead to accidents.

6 Software Safety Accident – an event of sequence of events leading to harm; that is, death, injury, environmental damage or financial loss. Hazard – a physical situation or state of the platform that can lead to an accident.

7 Software Safety To understand the safety of a system ◦ Understand how they can fail. Investigate accidents and accident sequences ◦ To understand the sequence of events leading to the accident and to try and determine which subsystem failed. Accidents are usually caused by combination of failures and circumstances.

8 Software Safety Hazards are really accidents “waiting to happen”. ◦ They are the pre-conditions for an accident. In hazard identification ◦ We are concerned with thinking about the safety of the personnel or the platform. ◦ Start from known accidents or consider possible accidents and work back to hazards. ◦ Brainstorming exercise.

9 Software safety is not just software Reliability Failure is key to understanding software reliability. ◦ Failure is deviation from the specified behavior of the system. For safety, ◦ it is always a deviation from the intended behavior; and where the deviation can lead to harm or damage.

10 Software safety is not just software Reliability In normal usage of word failure ◦ A system may be unreliable but still safe; ◦ It may be completely reliable but totally unsafe. What failure of the system lead to an unsafe system?

11 Safety Engineering Approach Hazard analysis technique to determine the safety aspects of the system ◦ Early in the development process, then ◦ Monitoring safety throughout the product development process; and ◦ Ensuring that there is enough evidence to build a safety case at the end of the product development process.

12 Safety Engineering Approach Requirements Analysis and Product Definition ◦ Exploratory analyzes in the form a preliminary hazard analysis (PHA). ◦ The hazards, potential situations that can cause harm or environmental damage ◦ The potential cause list. Good understanding of the safely aspects of the software prior to going into the design and implementation phases.

13 Safety Engineering Approach Design and Implementation Phase ◦ A deductive Approach – starts with potential situations of harm and works back to design or implementation elements. ◦ An inductive Approach – Starts from components or subsystems failures and  Works back through sub-systems to see if hazard result is used to verify the safety elements in the design.

14 Safety Engineering Approach Defending in Depth - System that must defend against situations of harm ◦ Must be ultra-reliable or ◦ There must be sufficient redundancy Thus, safety related subsystem failure does not lead to safety related system failure.

15 Language of Hazard Analysis Hazards needs to be identified and assessed as early in the development life cycle as possible. First step – hazard identification ◦ Process of identifying those situations which could lead to an accident under credible situations. ◦ Done as part of brainstorming methods.

16 Language of Hazard Analysis Hazards in turn are casued by failures or failure modes. Failures – are unintended or states of the system that can lead to a hazard. Failure mode – identify specific classes of failures

17 Language of Hazard Analysis Error – unintended states of the system that can lead to failure. Flaw – design/program defects that give rise to errors when certain conditions are activated. Fault – events that result when a flaw is activated.

18 A Case Study – The Okecie Accident Occurred because of an accident sequence. ◦ Plane landed 750m down the runway and traveling at 170 knots instead of the more usual 150 knots in torrential rain and heavy winds. ◦ Aircraft failed to brake in time and hit an earthen wall at the end of the runway and burst into flames.

19 A Case Study – The Okecie Accident

20 A Case Study – The Okecie Accident In normal conditions – A320 does not need a 2.8 KM runway to stop; ◦ Even in torrential rain it can land safely and stop in under 1500m. Consequences of the accident were assessed to be major, but not catastrophic.

21 A Case Study – The Okecie Accident Weather factors are believed to have contributed to the accident, ◦ Strong winds veered from a cross-wind to a tail-wind on final approach. ◦ It was raining heavily. Air Traffic Control (ATC) did not inform the crew of the change in wind direction.

22 A Case Study – The Okecie Accident

23 A Case Study – The Okecie Accident AG is true if (WoW > 12 tonnes) and wheels spinning > 72 Km/hr) or (wheels spinning > 72 km/hr and radio alt < 10 ft) AG  ‘at ground’ WoW  ‘weight on wheels’ & Function of both wheels Standing water on the runway caused the aircraft to Aquaplane while braking and wheels were not spinning at The required rate to activiate the braking logic.

24 A Case Study – The Okecie Accident AG = False (weight on both wheels) WS = False (wheels spinning at > 72 KM/hr) Radio Alt = True (radio altimeter) Logic was implemented correctly but the system failed. This is quite probability a failure in requirements.

25 A Case Study – The Okecie Accident Isolate the error, flaw and faults ◦ Error – was the assignment AG = False ◦ Flaw – we required AG = WoW > 12 tones for both wheels ◦ Failure – arose because the flaw was triggered in condition of wind and water on the runway.

26 Requirements in Safety Lifecycles

27 Requirements in Safety Lifecycles Initial Hazard List – the list of known hazards in the domain or a list of hazards obtained from similar systems or prior versions etc. Preliminary Hazard Analysis (PHA) ◦ Determining potential hazards for the new system as well as ◦ The causes of failure leading to these hazards

28 Requirements in Safety Lifecycles Consequence Analysis – we work from design elements to hazards. ◦ Is predictive in nature and is carried out before the design is completed. ◦ Used to provide information into the design processes and is aimed to choosing between design alternatives. ◦ Event trees, failure modes and effects analysis (FMEA) etc.

29 Requirements in Safety Lifecycles Causal Analysis – typcially performed top- down. ◦ Working from hazards to design or model element. ◦ Fault tree are the classic technique.

30 Key points Accidents and Hazards ◦ Accidents are usually caused by combination of failures and circumstances. ◦ Hazards are really accidents “waiting to happen”. ◦ Hazards needs to be identified and assessed as early in the development life cycle as possible. Safety Engineering Approach ◦ The safety lifecycle consists of a number of activities which are aimed at determining and verifying the safely functions of the system.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.